SecurityLab, [22.11.19 08:23]
French company Edenred reported a cyberattack using malware that affected an unknown number of computer systems. The company has launched an investigation to determine the extent of the contamination.
Payment solution provider Edenred has been the victim of a cyber attack (https://www.securitylab.ru/news/502791.php)
SecurityLab, [22.11.19 08:23]
Social network Twitter has allowed its users to deactivate the default two-factor authentication by SMS.
Note that previously such a possibility was absent.
Twitter has the ability to disable two-factor authentication by SMS (https://www.securitylab.ru/news/502792.php)
SecurityLab, [22.11.19 09:03]
Russian citizen Stanislav Vitalievich Lisov, also known as Black and Blackf, was found guilty by a Federal court in the southern district of new York of conspiring to infect victims ‘ computers with neverquest malware to steal their online banking credentials and funds stored in their accounts.
For the crimes committed, the court sentenced the 34-year-old Russian to four years in prison, three years probation and a fine of $50,000.
The court also ordered him to pay $481,000 in compensation.
Botnet operator NeverQuest sentenced to 4 years in prison (https://www.securitylab.ru/news/502793.php)
SecurityLab, [22.11.19 10:13]
Google’s Android Security Rewards vulnerability search program has been around since 2015 and has brought millions of dollars to researchers who discovered problems in the mobile operating system.
Now Google has expanded the program and is willing to pay up to $ 1.5 million for certain types of exploits.
Google is ready to pay up to $1.5 million for the exploit for Titan M (https://www.securitylab.ru/news/502798.php)
SecurityLab, [22.11.19 10:23]
The US government has allowed Microsoft to supply its software to Chinese company Huawei Technologies.
Microsoft will resume deliveries of its products for Huawei (https://www.securitylab.ru/news/502801.php)
SecurityLab, [22.11.19 11:43]
At the CyberwarCon conference in Arlington, Virginia (USA), security researchers from Google spoke about the malicious campaigns of the cybercrime group Sandworm (also known as BlackEnergy, TeleBots, Electrum, TEMP.Noble and Quedagh).
Since 2017, criminals have not only attacked public officials of the European Parliament, but also for a long time tried to infect Android phones with fraudulent applications.
The attackers also tried to compromise Android developers in order to introduce malware into legitimate applications, according to Wired.
The sandworm group has been attacking Android devices for several years (https://www.securitylab.ru/news/502812.php)
SecurityLab, [22.11.19 13:23]
Sysdig has unveiled the latest release of its intrusion detection platform, Sysdig Secure.
Among other things, Sysdig Secure 3.0 includes an audit and threat response tool for Kubernetes.
This release focuses on securing the Kubernetes environment throughout the lifecycle: detecting vulnerabilities and incorrect configurations at the development stage, blocking threats without affecting performance, responding to threats, conducting expertise and auditing.
New IB solutions of the week: November 22, 2019 (https://www.securitylab.ru/news/502817.php)
SecurityLab, [22.11.19 13:53]
The Prosecutor’s office of the Partizansky district of Minsk supported the state prosecution in the criminal case of attempts to break into two ATMs using malware to steal money.
A resident of Minsk twice tried to hack ATMs (https://www.securitylab.ru/news/502820.php)
SecurityLab, [22.11.19 15:33]
At a meeting of the security Council on Friday, November 22, the Russian President instructed to expand the line of laser and hypersonic weapons, combat robots and unmanned aerial vehicles until 2033.
Russian President instructed to expand the line of robots and drones (https://www.securitylab.ru/news/502823.php)
SecurityLab, [22.11.19 15:33]
The European Union’s cybersecurity Agency (ENISA), with the support of EU member States, the European Commission and the expert group, has published an extensive report on threats posed by fifth-generation (5G) mobile networks.
ENISA published a report on threats to 5G networks (https://www.securitylab.ru/news/502824.php)
SecurityLab, [23.11.19 12:43]
Chinese smartphone maker OnePlus has reported a data leak that left some of its customers’ order details (names, contact phone numbers, email addresses and shipping addresses) in the hands of third parties.
The incident was discovered last week.
According to the company, payment information, passwords and user accounts are not threatened.
Oneplus user data ended up in the hands of third parties (https://www.securitylab.ru/news/502827.php)
SecurityLab, [24.11.19 11:54]
American security researcher Vinny Troia (Vinny Troia) found an accessible database containing more than 4 TB of information.
A total of 1.2 billion records, including data from the profiles of hundreds of millions of users of social networks Facebook, Twitter, LinkedIn and Github, including 50 million phone numbers, 622 million unique email addresses and records from the history of employment.
The database does not contain passwords, payment card numbers or social security numbers.
The data of more than 1 billion users of social networks were in the public domain (https://www.securitylab.ru/news/502829.php)
SecurityLab, [25.11.19 08:14]
Microsoft has blocked users of older versions of Avast and AVG Antivirus from upgrading to Windows 10 version 1903 or Windows 10 version 1909 until these antivirus solutions are updated.
Users of older versions of Avast and AVG Antivirus will not be able to upgrade to Windows 10 (1903) (https://www.securitylab.ru/news/502831.php)
SecurityLab, [25.11.19 08:34]
Software developer can Bölük has published PoC code for the vulnerability, the exploitation of which bypasses the Microsoft Kernel Patch Protection (KPP) security feature, better known as PatchGuard.
The workaround is called ByePg.
SecurityLab, [25.11.19 09:14]
Control panels for runway lighting equipment are available over the Internet and will allow anyone to turn off the lights that ensure aircraft safe landing and takeoff.
Airport lighting equipment is available via the Internet to everyone (https://www.securitylab.ru/news/502833.php)
SecurityLab, [25.11.19 10:14]
Although Facebook has recently changed its approach to using facial recognition, its initial interest in the technology was much greater than is commonly believed.
According to Business Insider, between 2015 and 2016, Facebook created an internal app that identifies employees and their friends.
All you had to do was point your smartphone’s camera at a person and the app would display their name and profile picture.
Facebook has created an app to identify employees (https://www.securitylab.ru/news/502839.php)
SecurityLab, [25.11.19 10:14]
Researcher Eraz Ahmed (Ehraz Ahmed) discovered a vulnerability in the popular mobile application to block calls Truecaller.
Its operation allows the disclosure of user data, system information and location.
A vulnerability in the Truecaller application has put 150 million users at risk (https://www.securitylab.ru/news/502840.php)
SecurityLab, [25.11.19 11:44]
Chinese is company Qihoo 360 has published a report on the exposure of a large-scale malicious campaign against Kazakhstan.
The cybercrime group, dubbed the Golden Falcon (or APT-C-34), targeted individuals, government agencies, the military, foreign diplomats, researchers, journalists, private companies, the education sector, religious figures and government dissidents.
Large-scale malicious campaign discovered in Kazakhstan (https://www.securitylab.ru/news/502842.php)
SecurityLab, [25.11.19 13:44]
At the beginning of last week, unknown persons infected The official website of monero cryptocurrency with malware to steal digital money from users who downloaded a cryptocurrency wallet from the site.
Several users have already lost funds due to the malicious wallet.
Whether the vulnerability that led to the hack was fixed is not reported.
Review of security incidents from 18 to 24 November 2019 (https://www.securitylab.ru/news/502846.php)
SecurityLab, [25.11.19 14:14]
The Federal Communications Commission (FCC) of the United States unanimously voted to prohibit U.S. telecommunications providers to use government subsidies to buy equipment from Huawei or ZTE.
The FCC also proposed to withdraw from companies receiving government subsidies any equipment from Huawei and ZTE that they already have, according to Reuters news Agency.
The US has banned broadcasters from buying equipment from Huawei and ZTE (https://www.securitylab.ru/news/502848.php)
SecurityLab, [25.11.19 15:34]
IT-the company serving the new York police Department (New York Police Department, NYPD), for a few hours disabled the high-tech database with the help of an infected mini-computer.
“Would-be it workers” infected the New York police Department with malware (https://www.securitylab.ru/news/502849.php)