Latest News

17 hours ago
Joseph Cox and Jason Koebler / Motherboard

Trump-Loving Daters’ Information Exposed in Misconfigured Database for ‘Make America Date Again’

“Make America Date Again,” the website for the dating app Donald Daters, which aims to connect those seeking dates with fellow Trump supporters,  is exposing user information in an open database, security researcher Baptiste Robert, who goes by the handle Elliot Alderson. The leaked data includes biographical details such as names and profile photos, but also potentially tokens for logging into peoples’ accounts and private messages. The cause of the leak is a  misconfigured database which contains the Donald Daters user information.

18 hours ago
Yoko Kubota / Wall Street Journal

Apple Says It’s ‘Deeply Apologetic’ About iCloud Accounts That Were Hacked in China Using Stolen Apple IDs

Apple apologized in a statement regarding a situation, first reported last week, in which Chinese mobile payment companies Alipay and WeChat experienced thefts from hackers who used stolen Apple IDs. In its statement, Apple said “[w]er are deeply apologetic about the inconvenience caused to our customers by these phishing scams.” The victims whose IDs were stolen had not turned on two-factor authentication, according to Apple, although Apple didn’t specify how the hackers gained access to the IDs, nor how many users were affected nor how much money was stolen.

19 hours ago
Ricardo Alonso-zaldivar / Associated Press

Anthem Agrees to Pay HHS $16 Million to Settle Privacy Violations Stemming from 2015 Breach, An Amount Three Times That of Previous Record Penalty

Anthem, the nation’s second-largest health insurer, has agreed to pay the government a record $16 million to settle potential privacy violations for a data breach that exposed the personal information of nearly 79 million people in 2015. The settlement between Anthem and the U.S. Department of Health and Human Services (HHS) comes after HHS found that Anthem had failed to deploy adequate measures for countering hackers. It represents the largest amount collected the Department in a health-care related breach, nearly three times larger than the previous record amount. Anthem also agreed to a corrective action plan under government monitoring, which involves a process for the company to assess its electronic security risks, take appropriate countermeasures and maintain ongoing surveillance.

19 hours ago
Nitasha Tiku / Wired

Google CEO Discusses Censored ‘Project Dragonfly’ Search Engine for China, Says Over 99% of Queries Are Able to Be Served

Google CEO Sundar Pichai spoke publicly for the first time about the company’s controversial censored “Project Dragonfly” search engine under development for China, saying that tests show that Google will be able to serve well over 99 percent of the queries users submit, despite the state-mandated censorship. Pichai did concede that Google’s decision to move forward with the search engine “weighs heavily” on the company but that it also follows the rule of law in every country.

19 hours ago
Zack Whittaker / TechCrunch

Many Sensitive Government Departments and Agencies, Including DoD, CIA and NSA, Are Still Not Using Mandated Email Security Feature Despite Deadline

Some of the most sensitive U.S. government departments and agencies are still not using DMARC (domain-based message authentication), a basic email security feature that cuts down on incoming spam or phishing emails, security firm Agari reports. Among the government departments and agencies not using DMARC are the CIA, the NSA, and the Department of Defense, even though the deadline for adopting DMARC under a Homeland Security directive (BOD 18-01) passed on Tuesday.

20 hours ago
David Bond / Financial Times

NCSC: UK Hit by More Than 1,000 Serious Cyberattacks Over the Past Two Years, Catastrophic ‘Category One’ Attack On the Way

According to the latest annual report by the UK’s National Cyber Security Centre, an arm of the country’s top intel agency, GCHQ, the UK was hit by more than 1,000 serious cyberattacks over the past two years, with more than 70% launched by hostile state hackers such as Russia, China and North Korea. Between September 2017 and August 2018, the NCSC handled what it described as 577 “front line” cyber attacks, attacks that require detailed analysis and investigation by GCHQ, slightly down from the 590 such attacks handled in the previous 12 months. But the persistence and frequency of these attacks mean the UK must stay on high alert, Ciaran Martin, chief executive of NCSC, said. Martin said there is little doubt the UK would eventually be tested by a category one attack, which causes “sustained disruption of UK essential services or affects UK national security, leading to severe economic or social consequences or to loss of life.”

20 hours ago
Ingrid Lunden / TechCrunch

Temasek to Acquire Israeli Cybersecurity Start-Up Sygnia for a Reported $250 Million

Singaporean government-controlled company Temasek has acquired Israeli cybersecurity company Sygnia for a reported $250 million. Sygnia, which came out of stealth less than a year ago after being incubated by cybersecurity-focused Team8, was co-founded by a team of elite security specialists from Israel, and had received only $4.3 million in investments by Team8. Sygnia has apparently been generating revenue even before it came out of stealth mode, supplying customers with technology to combat cyber threats.

22 hours ago

North Carolina Water Utility Hit by Ransomware Attack, Account, Engineering and Human Resources Will Run Manually for Weeks to Come

In echoes of a major ransomware attack that crippled the city of Atlanta’s systems last year, the internal computer system for Onslow Water and Sewer Authority (ONWASA) in North Carolina was hit by banking trojan EMOTET malware Saturday, which was followed by an infestation of the RYUK ransomware. ONWASA has received one email from the cybercriminals, who may be based in a foreign country, and is working with the FBI, which has advised ONWASA not to pay the ransom. ONWASA is also working with cybersecurity firms. Although no customer data was compromised, ONWASA says it has to rebuild all of its customer databases entirely. Although no water and wastewater services have been disrupted, the utility said the timeliness of payment service will be impaired for weeks to come and all service orders, account creation, connections, disconnections, development review, backflow program, engineering, and human resources will utilize manual processes until the computer systems are restored.

23 hours ago
Catalin Cimpanu / ZDNet

Voter Records for Around 36 Million U.S. Citizens Offered for Sale on Dark Web for $42,000

Voter information for approximately 35 million US citizens is being offered for sale on a popular hacking forum, according to researchers from Anomali Labs and Intel471. The data for sale include full name, phone numbers, physical addresses, voting history, and other voting-related information. Many of the states involved already offer the information for download but not all states have this policy. The data covers 19 states and is priced at $42,000 for all of them combined. The seller claims the data is being refreshed every Monday. Many of the forum users have pooled money to buy one or more databases and share them with the rest of the forum’s users. The forum administrator, known as Omnipotent, has a long history of sharing voter data on the forum.

2 days ago
Jon Fingas / Engadget

Malicious Message Bug in PlayStation 4 Causes Consoles to Crash, Renders Them Unable to Start Properly

Numerous PlayStation 4 (PS4) owners have reported receiving malicious Playstation Network messages where an unrecognized character effectively bricks their consoles, making them crash and leaving them unable to start properly. Deleting the messages doesn’t solve the problem; the only solution is to rebuild the database in Safe Mode or factory reset the system. Users can apparently protect themselves from the malicious messages by restricting messages on their consoles. Whatever malicious message bug is afflicting PS4 has in some instances been used during matches to cause the opposing team to crash and be unable to complete a match.

2 days ago
BBC News

UK Government Issues Voluntary Code of Practice for Manufacturers to Strengthen IoT Device Security

The UK’s Department for Digital, Culture, Media and Sport (DCMS) and the National Cyber Security Centre have published a code of practice to strengthen the security of Internet-connected devices such as home alarm systems, fridges and toys. The goal is to stop Internet-of-things (IoT) devices from being hijacked for use in cyber attacks. The code outlines 13 separate steps that manufacturers can take to make their IoT devices more secure, such as securely storing customer data, regularly updating software, requiring users to employ stronger passwords and more. The code, however, is voluntary but so far two top electronics makers, HP and Hive Centrica, have agreed to follow it.

2 days ago
Jonathan Chadwick / Computer Business Review

UK-Based Secure Browsing Start-Up Garrison Raises Another $30 Million in Venture Round

UK-based secure web browsing start-up Garrison has raised $30 million (£22.7 million) in its latest funding round, the biggest venture funding round in cybersecurity by UK investors since Digital Shadows secured a $26 million investment 13 months ago. The round was led by Dawn Capital with IP Group, BGF, and NM Capital also participating. Garrison lays claim to developing the first truly secure web browser, applying national-security-grade levels of protection to the commercial environment.

2 days ago
Janene Pieters / NL Times

Dutch Defense Minister Says Her Country Is In a ‘Cyber War’ With Russia, Has Offered ‘Cyber Soldiers’ to Help NATO Countries

Defense Minister Ank Bijleveld said The Netherlands is the midst of a “cyber war” with Russia after the country’s security forces a foiled cyber attack by the Russian secret service on chemical weapons watchdog OPCW. Calling what the Russians are doing “dangerous,” Bijleveld said that The Netherlands “offered to NATO that we can deploy our cyber soldiers. We are actively looking into where we can secure and increase resilience, but also where we can do things offensively if necessary.”

2 days ago
Rohan Pearce / Computerworld

Cisco, Mozilla Join Growing List of Australia’s Encryption-Busting Bill Critics, Express ‘Grave Concern’ Over Loss of Security

Tech giant Cisco has joined other Silicon Valley giants in expressing “grave concern” about Australia’s encryption-busting bill, the Telecommunications Assistance and Access legislation designed to give law enforcement access to encrypted communications. I a submission to Parliament, Cisco said the bill would “undercut sustained efforts by Cisco and others to develop, deploy and maintain technologies that are secure, trustworthy, transparent and accountable.” Mozilla also weighed in with its objections, saying the “breadth and lack of clarity” of the proposed legislation “would result in a net loss for security and due process, and would introduce substantial international complexities impacting both developers and users of technology.”

2 days ago
Ionut Ilascu / Bleeping Comptuer

Slick, Spyware-Installing Android Trojan ‘GPlayed’ Mimics Google Apps With the Label ‘Google Play Marketplace’

A new, sophisticated, spyware-installing Android trojan dubbed GPlayed is extremely flexible and comes with many built-in capabilities and uses an icon very similar to Google Apps, with the label “Google Play Marketplace” to disguise itself, researchers at Cisco Talos report. GPlayed is capable of exfiltrating information like texts and contacts, track geolocation, change the lock screen password and collect payment credentials. The Cisco Talos researchers say GPlayed is in its testing stage but given its potential, every Android mobile user should be aware of it.

4 days ago
Olivia Beavers / The Hill

Senators Urge Canadian Prime Minister Trudeau to Ban Huawei in Its 5G Network Development Due to National Security Implications

Senate Intelligence Committee Vice Chairman Mark Warner (D-VA) and Sen. Marco Rubio (R-FL), a member of the intelligence committee, sent a letter to Canadian Prime Minister Justin Trudeau not to incorporate Chinese telecommunications company Huawei in its ongoing 5G network development, warning that doing so could have national security implications for Canada, the U.S. and other allies. “There is ample evidence to suggest that no major Chinese company is independent of the Chinese government and Communist Party — and Huawei, which China’s government and military tout as a ‘national champion,’ is no exception,” the Senators wrote. The letter follows Scott Jones of the Canadian Center for Cyber Security telling the Canadian House of Commons late last month that it was not necessary to ban Huawei, pointing to Canada’s “very advanced relationship with our telecommunications providers.”

4 days ago
Lolita C. Baldor / Associated Press

Breach of Defense Department Travel Records Compromised PII, Credit Card Data of At Least 30,000 Workers, Vendor Responsible Has Been Ordered to ‘Cease Performance’

The Pentagon is investigating a cyber breach of Defense Department travel records that compromised the personal information and credit card data of U.S. military and civilian personnel. The breach, which happened months ago but was only recently discovered and reported to top brass on October 4, could affect as many as 30,000 workers, but that number may grow as the investigation continues. The breach involved a single commercial vendor to the Pentagon and the Defense Department “has taken steps to have the vendor cease performance under its contracts.”

4 days ago
Shaun Nichols / The Register

FDA Issues Warning About Equipment Used to Monitor Heart Implants Made by Medtronic Due to Security Bugs in Updating Process

The U.S. Food and Drug Administration (FDA) has warned health professionals about the equipment they use to monitor pacemakers and other heart implants supplied by Irish medical device maker Medtronic due to security bugs in Medtronic’s software update service. Medtronic said it will lock some of its equipment out of its software update service and is advising health professionals to install the updates by hand via USB using a Medtronic technician. Two models, the Carelink 2090 and the Carelink Encore 2091, could have been tampered with by an attacker modifying their firmware and, in turn, change how the programmers configured the implants.

4 days ago
Catalin Cimpanu / ZDNet

Russian Grey Hat Hacker Has Been Breaking Into Unpatched MikroTik Routers and Patching Them

A Russian-speaking grey hat hacker who goes by the name of Alexey has been breaking into people’s MikroTik routers and patching them so they can’t be abused by cyber-criminals. Alexey, who says he works as a server administrator, claims to have disinfected over 100,000 servers so far, changing settings to prevent further abuse by adding firewall rules that block access to the router from outside the local network. Only 50  or so of the affected users have reached out to him, most of whom were angry about his intrusion. He says he is only fixing routers against a MikroTik vulnerability that came to light in late April.

4 days ago
Cassandra Morgan / Sydney Morning Herald

Apple Blasts Australian Government’s Anti-Encryption Bill, Calling it ‘Dangerously Ambiguous’

In a seven-page submission to Australia’s federal Parliament, Apple has slammed the government’s proposed anti-encryption bill, the Access and Assistance Bill, calling it “dangerously ambiguous” and “alarming to every Australian.” The bill would compel tech companies to help federal authorities gain access to encrypted communications, which Apple, in its submission, said “will just weaken the security and privacy of regular customers while pushing criminals further off the grid” by further jeopardizing protective encryption technologies through the “breadth and vagueness of the bill’s authorities, coupled with ill-defined restrictions.”


19 hours ago
ISC StormCast

CVE-2018-8495 PoE Exploit; Fake Mining Appsi; Fake Google Photo App

Johannes Ullrich talks about Proof Of Concept Exploit for Microsoft Edge Vulnerability CVE-2018-8495, Fake Mining Apps, Fake Google Photo App Turns out to be Ad-Clicker.

19 hours ago
Security Ledger

Podcast Episode 116: Cryptojacking and MikroTik’s Bad-Feeling Feel Good Patch Story

Troy Mursch of the Bad Packets Report talks about the recent surge in crypto-jacking malware attacks and the role played by a months-old security hole in RouterOS, software that runs on routers by the firm MikroTik has helped fuel the surge in crypto-jacking attacks.

23 hours ago
National Cyber Security Centre

Podcast: behind the scenes of an incident

The NCSC’s first ever podcast gives a rare peek behind the curtain of our world-class incident management service. Six members of the NCSC team, part of the GCHQ, talk through the methodology behind the tactics they have deployed in more than 1,000 incidents since launching two years ago.

2 days ago
ISC StormCast Bug Affects Millions; Medtronics; WebLogic; MSFT JET Database

Johannes Ullrich talks aboutMany Large Websites Affected by XSS Flaw, Medtronics Pacemakers Disable Remote Update, IBM Updates WebSphere Update, Incomplete JET Database Patch .


Cybersecurity Events

Oct. 15-16Cyber Recoded 2018LondonUK
Oct. 16-17Privacy. Security. Risk. 2018Austin, TXUSA
Oct. 17SecureWorld CincinnatiCincinnati, OHUSA
Oct. 19Hacking Politics: SymposiumBerkeley, CAUSA
Otct. 22-25ICS Cyber Security ConferenceAtlanta, GAUSA
Oct. 24Cyber Security Summit Minneapolis, MNUSA
Oct. 25Belgian Cybersecurity ConventionMECHELENBelgium
Oct. 25-26WildWildWest HackFestDeadwood, SDUSA
Oct. 29-Nov. 2Code BlueTokyoJapan
Oct. 30Swiss Cyber StormBerneSwitzerland
Oct. 31-Nov. 1SecureWorld DenverDenver, COUSA
Nov. 2-3Hackfest 2018Quebec CityCanada
Nov. 2-3BSidesBDXBordeauxFrance
Nov. 2-4International Conference on Communication and Network SecurityQingdaoChina

Sign Up for Our Daily Newsletter!

[mailpoet_form id=”1″]

Support Us!

Listen to Us on Alexa!

Join hundreds of your peers who listen to our concise summaries on Amazon Alexa every day. Search for cybersecurity news or go here.