Time for another news round-up. Hope you are feeling better than me, but cold or no cold there is news to talk about!
- First, not to feel left out by WannaCry a bug in Samba has been patched that’s been there for 7 years, that could allow for similar worm spreading capability as the bug exploited by WannaCry. Granted this is definitely not on the same scale, you should still patch.
- Read More @ https://arstechnica.com/security/2017/05/a-wormable-code-execution-bug-has-lurked-in-samba-for-7-years-patch-now/
- Next, Chipotle has confirmed that it’s Payment systems were hacked and most of its restaurants are affected. Yet another PoS system breach, these are becoming quite routine.
- Read More @ http://fortune.com/2017/04/25/chipotles-restaurants-hacked/
- Next, not good news in terms of breaches for 2017, as so far there has been about 1200, which puts this year on pace for the worst year ever. It’s only going to get worse too, if I had to guess.
- Read More @ https://www.infosecurity-magazine.com/news/2017-has-already-racked-up-1200
- There has been a lot of talk about WannaCry being linked to North Korea, or at least the Lazarus group, and now Symantec has revealed some additional evidence linking the ransomware family to Lazarus.
- Read More @ https://www.scmagazine.com/lazarus-code-used-in-wannacry-but-north-korea-link-not-in-evidence/article/663759/
- Next, a rather interesting article that asked a good question I believe. With spending on cybersecurity at an all time high, why does it seem like things are still getting worse? Good read.
- Read More @ http://www.darkreading.com/application-security/with-billions-spent-on-cybersecurity-why-are-problems-getting-worse/a/d-id/1328896?_mc=RSS_DR_EDT
- This was a bit surprising, but it seems like Chinese hacking activity has been reducing significantly since the agreement reached in 2015. I have to say, I didn’t think that would do much. Pleasantly surprised.
- Read More @ https://www.cyberscoop.com/china-us-hacking-odni-dan-coats-2017/
- Next, a very interesting study of network traffic has yielded some really interesting results when it comes to spotting malware in network traffic, and the abuse of DDNS. Really good read.
- Read More @ https://www.scmagazine.com/malware-can-be-spotted-via-network-traffic-study/article/664222/
- Next, some numbers were reported on the total cost of ransomware for the past year and it’s estimated to be over $1B. And this number is expected to grow significantly this year. Oh fun.
- Read More @ http://blog.trendmicro.com/trendlabs-security-intelligence/ransomware-past-present-future/
- Next, I have to try and fit an exploit kit story if at all possible and luckily there is one on the “Astrum EK” and the recent changes to it that seem to be testing the waters for future activity.
- Read More @ blog.trendmicro.com/trendlabs-security-intelligence/astrum-exploit-kit-abuses-diffie-hellman-key-exchange/
- And last story of the week, a real treat if you ask me, is one on the history and evolution of the infamous Dridex banking trojan. Given how rampant this malware has become I found this a really interesting read.
- Read More @ https://securelist.com/analysis/publications/78531/dridex-a-history-of-evolution/