Welcome to the Christmas 2015 edition of the news. I hope you are all having a wonderful Christmas wherever you might be. Let’s see what security news Santa brought us for the week.
- First, a quick update from SANS noting that they are seeing exploit attempts for the Juniper Backdoor that we mentioned last week against their honeypot.
- Read More @ https://isc.sans.edu/diary/First+Exploit+Attempts+For+Juniper+Backdoor+Against+Honeypot/20525
- Next, it looks like MegaUpload founder Kim Dotcom will not be having a very merry Christmas this year, as he has lost his fight against extradition to the US. The Court cited “overwhelming evidence” as the reason for the verdict. He plans to appeal the verdict, but it’s not looking great.
- Read More @ http://thehackernews.com/2015/12/kim-dotcom-extradition.html
- After the discovery of the two backdoors in the Juniper NetScreenOS, Cisco has announced that they will be conducting an audit of their code for backdoors as well, in order to ensure their code is secure.
- Read More @ it.slashdot.org/story/15/12/22/1558211/cisco-systems-will-be-auditing-their-code-for-backdoors
- Next, another week, another PoS breach. This time “Hyatt” hotel chain has disclosed news of a breach that they discovered on November 30th. Right now there is no news on customers and data affected by the breach but they did say they hired a third party firm to investigate the scope of the breach. We will keep you updated with any additional news.
- Read More @ http://thehackernews.com/2015/12/hyatt-hotel-hack.html
- This next one is a rather funny one. It looks like someone attempted to convince the Raspberry Pi executive to install malware on their devices, and was asking for the price for such things. Didn’t quite think people would be that upfront with such matters.
- Read More @ news.slashdot.org/story/15/12/25/1532204/somebody-tried-to-convince-a-raspberry-pi-exec-to-install-malware-on-its-devices
- So this one, I am not even sure what to make of it, but apparently the Australian government has been telling people to turn off 2 factor authentication on their main portal site used to manage a number of different services. This is a strange one folks, I have to say.
- Read More @ yro.slashdot.org/story/15/12/25/035219/australian-government-tells-citizens-to-turn-off-two-factor-authentication
- Lastly, a man has been arrested for attempting to sell celebrity private videos, movie scripts, etc to an undercover officer. The man supposedly accessed information of up to 130 celebrities through a phishing scam and then attempted to sell the data.
- Read More @ http://www.scmagazine.com/man-arrested-for-hacking-into-celebrity-accounts-to-steal-sex-tapes-scripts-and-pii-to-sell/article/461456/