Sorry for the lack of news post last week. I got rather sick, so I spent my weekend sleeping and generally cursing my stomach which I was pretty sure was trying to kill me. But we are back, so let’s get to it.
- First news of the week is of another PoS system breach, brought to us by Krebs. This time it looks like the PoS software vendor “24×7 Hospitality Technology” was breached. Breach seems to have occurred from October 2016 to January 2017, and based on early reports all of their PoS systems were potentially affected.
- Read More @ https://krebsonsecurity.com/2017/03/google-points-to-another-pos-vendor-breach/
- Wikileaks said before that they want to work with tech companies in order to fix the vulnerabilities identified in the Vault 7 leaks, however it seems like Wikileaks has some “conditions” it has placed on these companies prior to revealing the technical details.
- Read More @ http://thehackernews.com/2017/03/wikileaks-cia-hacking-exploits.html
- Keeping up with the theme of Point of Sale malware this week, Trend Micro has disclosed a new piece of PoS malware named “MagikPoS”. Check it out.
- Read More @ http://www.darkreading.com/attacks-breaches/new-magikpos-malware-targets-point-of-sale-systems-in-us-and-canada-/d/d-id/1328434
- Next, some interesting news by Mandiant, that claim that these days financially motivated cyber attacks are starting to resemble nation state APT campaigns more and more. Showing that the days of “Smash and grab” financial cyber crime are coming to an end.
- Read More @ http://www.darkreading.com/mandiant-financial-cybercriminals-looking-more-like-nation-states/d/d-id/1328426
- Next, Symantec is claiming that a North Korean hacking group known as “Lazarus” is behind several high profile hacks including “SPE”, Bangladesh Bank and others. For anyone interested in a very detailed technical report on the Lazarus group please check out https://www.operationblockbuster.com/. Absolutely fantastic read. Highly recommended.
- Read More @ www.tnp.sg/news/world/symantec-north-korean-hacking-group-behind-attacks-31-countries
- Lastly, responses from Russia and the industry at large to the indictment of 4 people responsible for the Yahoo breach. Interesting part here being the fact that 2 of the four were previous Russian FSB officers.
- Read More @ https://www.scmagazine.com/russia-security-industry-responds-to-indictments-in-yahoo-breach-case/article/644541/
- First webcast of the week is about the skills shortage in InfoSec, which has been well publicized. With that in mind, this webcast takes a look at the ways to attract talent, as well as how to keep the people you already have.
- Watch @ https://www.brighttalk.com/webcast/13225/228993
- Next, a very interesting webcast by the folks at Dell SecureWorks that takes a look at a few use cases where the companies’ security tools were actually used against them during an attack. Interesting watch.
- Watch @ https://www.brighttalk.com/webcast/5416/230607