News Items

Researchers at Saarland University are developing ways to efficiently detect security vulnerabilities before they are discovered by hackers. Test data generators are used to rapidly generate test inputs for examined programs, however invalid inputs are immediately rejected. These researchers have discovered how to extract valid input descriptions from examined programs to generate millions of valid inputs in a matter of minutes. This article discusses the prototype, "Autogram", and its functionalities.

https://phys.org/news/2017-03-automatic-complex.html

There has been a noticeable increase in the use of online videos and images to launch cyberattacks. A researcher at Ben-Gurion University has discovered a way to protect online videos and images from being infiltrated by hackers through a set a of algorithms. These algorithms are said to prevent steganography, a process in which the hacker hides malicious input in video and image files. This article discusses how these security algorithms work, potential attack scenarios, and how firewall and antivirus companies are expected to utilize these algorithms.

http://gsnmagazine.com/node/48101?c=cyber_security

The developers of popular communication service apps, WhatsApp and Telegram, have recently patched their application code after being notified by security researchers of vulnerabilities that would allow attackers to infiltrate user accounts through the distribution of malicious files. Researchers discovered ways in which hackers can bypass implemented security verifications to upload HTML files instead of actual image and video files. This article discusses how attackers could exploit this vulnerability as well as what they might do with this unauthorized access.

http://www.computerworld.com/article/3180979/security/malicious-uploads-allowed-hijacking-of-whatsapp-and-telegram-accounts.html

According to a White House report, there have been 30,899 hacking incidents that have targeted federal government agencies in 2016. While there has been an increased effort to develop stronger cyber defense, major advancements still need to be made in order to protect networks and data of these federal agencies. A large percent of these attacks are a form of phishing. This article discusses the specific attack incidents involving multifactor authentication and attacks targeting the Pentagon.

https://www.bloomberg.com/politics/articles/2017-03-10/white-house-report-finds-cybersecurity-gaps-at-federal-agencies

The Task 2 deadline will be moved to 15 March. If you're looking for advice on how to tackle the Task, head on over to the forums and ask a question, or suggest an idea for a video tutorial.

WikiLeaks strikes again as it exposes classified documents of the U.S. Central Intelligence Agency. Leaked documents reveal confidential information pertaining to hacking programs and weaponized malware such as trojans and viruses. This article discusses more of what these leaks reveal, the loss of hacking tools, as well as how this will impact U.S. security.

http://www.technewsworld.com/story/84353.html

Research company, ZeroFOX, performed an investigation on impersonators on social media by creating honeypot accounts within a sandboxed environment and observing the different social engineering tactics performed. This article discusses the motives and targets of impersonator attacks, how impersonators could appear to be credible online, as well as how this could be a big security concern for retailers and firms.

http://www.csoonline.com/article/3177458/social-engineering/honeypot-catches-social-engineering-scams-on-social-media.html

Security researchers reveal that foreign hacking groups have been recruited to examine U.S. and Europe critical infrastructure systems in management of oil, gas, and power. This article discusses cases in which these foreign actors allegedly attempted to steal confidential information from energy companies as well as how they were attempting to perform such malicious activities.

http://fuelfix.com/blog/2017/03/07/foreign-actors-probe-systems-of-oil-and-gas-operations-say-cybersecurity-researchers/

Security researchers at anti-virus company, MacKeeper, have discovered backup databases that hold about 1.37 million records of names, IP addresses, zip codes, and other personal addresses. These databases were left exposed by marketing company, River City Media, due to the lack of proper authentication measures. This article discusses how RCM may have collected this data, possible spamming techniques performed, as well as the massive impact a leakage of this data could have.

http://www.govinfosecurity.com/backup-error-exposes-137-billion-record-spamming-database-a-9755

Cyberattacks are becoming increasingly harder to detect as shown by the latest attack, DNSMessenger. Researchers from Cisco Systems' Talos team have discovered the DNSMessenger, which is distributed through email phishing tactics and when opened, allows malicious activity to be launched with PowerShell script. This article discusses the capabilities of this new attack, the difficulties of detection, and the importance of filtering network protocols.

http://www.computerworld.com/article/3176669/security/fileless-powershell-malware-uses-dns-as-covert-channel.html

IOActive researchers point out the many cybersecurity flaws within multiple home, business, and industrial robots that could easily be exploited by hackers. These vulnerabilities were discovered after in-depth security tests and evaluations of mobile applications, operating systems, and other software implemented into different robots. This article discusses why cybersecurity should be better practiced with robots, how robotic vendors should take measures to improve security, and identifies major robot brands and manufacturers with the most security vulnerabilities.

https://www.theregister.co.uk/2017/03/01/robots_security_vulns/

News organizations such as the Washington Post, NY Times, and ProPublica are taking advantage of end-to-end encryption technology by welcoming the public to send them anonymous tips through several encrypted messaging applications and services. This article discusses the legalities, ethics, and conflicts of news media leaks and government surveillance.

http://www.npr.org/sections/alltechconsidered/2017/02/27/517037537/how-the-media-are-using-encryption-tools-to-collect-anonymous-tips

A new version of the Dridex banking Trojan has been discovered and this time it is being injected through a newly developed technique called AtomBombing. This new code injection technique has already been performed to attack multiple online banking organizations all over Europe. AtomBombing can bypass usual security measures and inject malicious code into atom tables, which are used by Windows OS to store data for some applications. This article discusses how this new code injection is performed as well as the difficulty of detecting it.

http://www.darkreading.com/attacks-breaches/new-version-of-dridex-banking-trojan-uses-atombombing-to-infect-systems/d/d-id/1328299?

Security researchers at Google and the CWI Institute have revealed that the Secure Hash Algorithm-1 (SHA-1) cryptographic function is still susceptible to being cracked by hackers. Researchers were able to mathematically generate identical SHA-1 hashes for different sets of data, which defeats the purpose of implementing a cryptographic hash function. This article discusses the purpose of cryptographic hash functions as well as how industries are expected to implement higher forms of encrypted hash functions.

http://www.eweek.com/security/researchers-from-google-cti-break-sha-1-hash-encryption-function.html

Security researchers at Google have discovered a new malicious Cloudflare bug, Cloudbleed, which is responsible for leaking sensitive information of millions of people. This sensitive information includes private messages, passwords to online profiles and hotel bookings. This article discusses how this information was leaked, how Cloudflare is responding to this data breach as well as how this situation is likely to affect current strategies of cloud computing security.

http://www.esecurityplanet.com/network-security/cloudflare-cloudbleed-flaw-leaks-millions-of-peoples-personal-data.html

Amazon has partnered up with Virginia to improve cybersecurity education. Governor Terry McAuliffe has announced a new partnership between Amazon Web Services and the Virginia Cyber Range, which will help to maintain cloud infrastructure and build upon efforts to improve cybersecurity education through accessible training tools, hands-on training labs, mentorships, and internships. This article discusses other benefits of this collaboration as well as the current workings of the Virginia Cyber Range.

http://www.ecampusnews.com/top-news/amazon-cybersecurity-education/

Microsoft wishes to develop a "Digital Geneva Convention" through the cooperation of governments around the world with the hopes of establishing international strategies and rules to combat cybersecurity threats and safeguard the internet for civilian use. This article discusses major economic impacts of cyberattacks and the responses of organizations such as Microsoft and the Electronic Privacy Information Center.

http://www.technewsworld.com/story/84311.html

Security researchers have discovered security vulnerabilities in Southern Rail ticket kiosks that could easily be exploited by attackers. Although one spokesperson claims that the machines do not hold personal or confidential information, security experts still point out the possibilities of installing tools to access hidden parts and launching malicious attacks. This article discusses ways in which these kiosk machines are vulnerable to cyberattacks as well as how the security process can be improved.

https://www.scmagazineuk.com/southern-rail-ticket-kiosks-allegedly-open-to-cyber-attack/article/638436/

As the number of cybersecurity threats and attacks increase, the concern for the lack of skilled cybersecurity professionals deepens. Cyberattacks have become alarmingly more complex, which demands for highly skilled cybersecurity experts to develop innovative tools and strategies to counteract dangerous hacks of the present and future. This article emphasizes the importance of hands on cybersecurity training within educational institutions, starting as early as grade school. Five ways to help cybersecurity skills flourish are discussed, highlighting the significance of field awareness, industry tool training, and training within the workplace.

http://www.darkreading.com/careers-and-people/closing-the-cybersecurity-skills-gap-with-stem/a/d-id/1328181

At the RSA Conference 2017, a panel of security experts shared their thoughts on the topic of distinguishing privacy from national security through encryption and back doors. These security experts discuss what they think encryption and the concept of backdoors consist of, as well as the contradictions of U.S. government goals to simultaneously deepen encryption and gain access to information for safety.

https://www.infosecurity-magazine.com/news/rsac-panel-encryption-back-doors/

Security researchers at ESET have discovered a new Trojan malware that targets Android devices. This malware presents itself as an Adobe Flash Player application update to be granted access by victims. The malware then proceeds to manipulate permission settings, allowing the attack to imitate the victim's clicks in order to download more malware onto the device. This article discusses how to identify this malware when it attacks as well as how Android users can avoid falling victim to this attack.

http://www.ibtimes.co.uk/new-android-trojan-masquerades-flash-player-update-install-malware-1606879

Researchers have discovered a new technique that further simplifies the process of hacking software and hardware by exploiting the ways in which the microprocessor and memory function together. This article discusses ways in which this attack is performed as well as how chipmakers and software companies are reacting to this issue.

https://www.wired.com/2017/02/flaw-millions-chips-strips-away-key-hacking-defense-software-cant-fully-fix/

There has been much discussion about how the U.S. should respond to cyberattacks, especially after alleged attempts of cyber intrusion into the 2016 U.S. election. Lawmakers and officials have expressed great concern for this issue, stating views that doubt the preventive and reactive actions of the federal government. State governors are expected to undertake more responsibilities in supporting cybersecurity. This article discusses why state governments are more likely to be targets to hacks as well as the suggestions and trepidations of state officials.

http://www.csoonline.com/article/3170132/security/doubts-abound-over-us-action-on-cybersecurity.html

Despite the recent data breaches of major companies such as Yahoo!, Sony, and Target, some corporate boards and C-level executives are still not appropriately prioritizing cybersecurity. This article discusses how much cybercrime may cost businesses in the future, suggestions on how companies can take hold of cybersecurity issues now, as well as how cyber loss is expected go further beyond data.

http://www.forbes.com/sites/richardlevick/2017/02/13/change-in-corporate-mindset-needed-to-combat-cybersecurity/#1572e50b6c1e