Copy
Get the latest cybersecurity, privacy, and surveillance news for information security professionals

IT Security News Blast – 6-2-2021

Critical WordPress plugin zero-day under active exploitation
"The WordPress version of the plugin is the one used in WooCommerce installations as well and is vulnerable." Attackers who successfully exploit the Fancy Product Designer bug can bypass built-in checks blocking malicious files uploading to deploy executable PHP files on sites where the plugin is installed.
https://www.bleepingcomputer.com/news/security/critical-wordpress-plugin-zero-day-under-active-exploitation/
 
Cybersecurity attack hits world's largest meat supplier JBS' IT systems in the US and Australia
How consumers might be impacted by the attack was not immediately known Monday. [...] JBS, which is a leading processor of beef, pork and other prepared foods in the U.S., said it "not aware of any evidence at this time that any customer, supplier or employee data has been compromised or misused as a result of the situation."
https://finance.yahoo.com/news/cybersecurity-attack-hits-worlds-largest-220520205.html
 
Pilgrim’s affected by cyber attack on parent company
A cyber attack will affect operations at the Pilgrim’s plant in Nacogdoches, the chicken producer announced. [...] JBS, the majority shareholder of Pilgrim’s, announced Sunday that the attack was affecting some of its servers in North America and Australia.
https://www.kltv.com/2021/06/01/pilgrims-targeted-in-cyber-attack-company-says/
 
Will 2020 be the cybersecurity wakeup call healthcare needed?
Some hospitals are going a step further, looking at whether or not every worker actually needs email, and even more so defining the need for users to access email externally from public access assets. For instance, non-management nurses may only need it once or twice a year for compliance training.
https://www.securitymagazine.com/articles/95319-will-2020-be-the-cybersecurity-wakeup-call-healthcare-needed
 
Scripps Reports Data Theft, EHR Back Online, but Global Outages Persist
For now, the investigation has confirmed that the data varied by patient and could include names, contact details, dates of birth, health insurance information, medical record numbers, patient account numbers, and or clinical information, like provider names, dates of service, and/or treatment information.
https://healthitsecurity.com/news/attack-updates-scripps-health-ehr-back-online-global-outages-persist
 
Moody's warns of revenue risks as healthcare cyberattacks increase
Looking forward, Moody's says healthcare systems will need to deploy additional resources to thwart future cybersecurity breaches, secure their networks from third-party vendor access points – as well as internal vulnerabilities – and step up cybersecurity financial investments. "Efforts to invest in cybersecurity will potentially get a boost at the federal level," wrote researchers. 
https://www.healthcareitnews.com/news/moodys-warns-revenue-risks-healthcare-cyber-attacks-increase
 
Ransomware hack puts sensitive Azusa Police Department documents online
Through means that remain unclear, the hacking group DoppelPaymer appears to have infiltrated computers in the 63-officer department and gained access to critical data. A demand for money followed. [...] An Azusa Police Department news release announced a “notification of data security breach” stemming from a “sophisticated ransomware attack.”
https://www.latimes.com/california/story/2021-05-31/azusa-ransomware-hack-sensitive-police-documents-online
 
Security leaders more concerned about legal settlements than regulatory fines
Launched to commemorate three years of GDPR, the research also found that 47% of consumers would likely join a class-action lawsuit against an organization that had leaked their data, proving security leaders’ fears to be accurate. In response, 91% of security leaders are turning to cyber insurance to protect themselves from financial exposure by either taking out new policies or increasing their cover because of GDPR.
https://www.helpnetsecurity.com/2021/06/01/security-leaders-legal-settlements/
 
Cyber-Insurance Fuels Ransomware Payment Surge
For instance, weeks after Riviera Beach, Fla. was hit by ransomware in June 2019, the city council held an emergency meeting. It voted unanimously to authorize the city’s insurer to pay off a $600,000 ransom demand, after the malware had frozen crucial data. Adversaries also took systems that control city finances and utilities offline.
https://threatpost.com/cyber-insurance-ransomware-payments/166580/
 
SolarWinds lawsuit claims private equity owners ‘sacrificed cybersecurity to boost short-term profits’
On Dec. 7, less than a week before the incident was disclosed to the public, Thoma Bravo sold $256 million in stock, while Silver Lake similarly dumped $203 million the same day. Following the disclosure, the price of SolarWinds’ stock per share dropped from $23.55 on Dec. 11 to just $14 on Dec. 18. As of June 1, the price sits at $16.32 per share and since then, it has never risen higher than $18.54.
https://www.scmagazine.com/home/solarwinds-hack/solarwinds-lawsuit-claims-private-equity-owners-sacrificed-cybersecurity-to-boost-short-term-profits/
 
The Cybersecurity 202: The Biden administration aims big on cybersecurity spending
The White House is asking Congress to commit roughly $10 billion to civilian government cybersecurity next year – a jump of nearly 14 percent. Far more than that would go to funding military cyber operations, but the exact number isn’t clear because so much military cyber work is classified.
https://www.washingtonpost.com/politics/2021/06/01/cybersecurity-202-biden-administration-aims-big-cybersecurity-spending/
 
Why States and Localities Should Embrace Biden’s Cyber Plan
Another issue that has plagued government organizations at all levels since the beginning of time is the glacial, baffling and often mind-numbing technology procurement process. The new executive order establishes a process to review the Federal Acquisition Regulation and the Defense Federal Acquisition Regulation with the goal of far more transparency than exists today.
https://www.governing.com/security/why-states-and-localities-should-embrace-bidens-cyber-plan
 
We Know What Space Wars Will Look Like
“Russia and China view space as critical to modern warfare and see the use of counter space capabilities as both a means of reducing U.S. effectiveness and winning future wars.” The same is said of cyber. However, unlike cyber, where undeclared conflict is taking place on an almost daily basis, space to date has remained relatively peaceful, although weapons are being prepared.
https://www.thecipherbrief.com/column_article/we-know-what-space-wars-will-look-like
 
Biden-Putin summit tensions: Feds say Russia a hacker ‘safe haven’
Nation states are serving as safe havens for sophisticated criminal cyber actors and that is leading to an “increased blending of the threat,” said John Demers, assistant attorney general at the National Security Division at the Department of Justice, speaking on a CNBC Evolve livestream on Wednesday. He said that is also a reason to believe that DarkSide could be back, or is still operating under a new name.
https://www.cnbc.com/2021/05/26/darkside-will-be-back-as-russia-creates-safe-haven-for-hackers-feds.html
 
HOUSE BILL WOULD BAN STATES FROM WEAKENING ENCRYPTION
The bill is known as the Ensuring National Constitutional Rights for Your Private Telecommunications Act and it’s designed to ensure that if Congress is unsuccessful in passing legislation to weaken encryption, states won’t have the ability to do so on their own. [...] The bill would also prevent states from instituting measures to force the creation of backdoors or other decryption methods into products[.]”
https://duo.com/decipher/house-bill-would-ban-states-from-weakening-encryption
 
'FIND THIS F**K:' Inside Citizen’s Dangerous Effort to Cash In On Vigilantism
"The whole idea behind Protect is that you could convince people to pay for the product once you’ve gotten them to the highest point of anxiety you can possibly get them to," one former employee said, referring to Citizen's subscription service. "Citizen can’t make money unless it makes its users believe there are constant, urgent threats around them at all times[.]"
https://www.vice.com/en/article/y3dpyw/inside-crime-app-citizen-vigilante
 
Malware Can Use This Trick to Bypass Ransomware Defense in Antivirus Solutions
The twin attacks, detailed by academics from the University of Luxembourg and the University of London, are aimed at circumventing the protected folder feature offered by antivirus programs to encrypt files (aka "Cut-and-Mouse") and disabling their real-time protection by simulating mouse "click" events (aka "Ghost Control").
https://thehackernews.com/2021/06/malware-can-use-this-trick-to-bypass.html
 
Remember those wacky cyberpunk costumes in Hackers? They're on display in London this week
Plot-wise it’s best not to think too hard about it and just absorb what screenwriter Rafael Moreu served up. A group of misfit American teens who adopt comical internet nicknames (e.g. “The Phantom Phreak”) amuse themselves by digitally breaking into various Evil Bigcorp-owned computers.
https://www.theregister.com/2021/06/01/hackers_movie_costumes/

You are receiving this email because you are subscribed to receive the IT Security Daily Blast email from Michael Hamilton, Founder, President, and CISO of Critical Insight Inc, DBA CI Security.

Archived articles are available at https://ci.security/news/daily-news.

CI Security and the CI Security logo are the trademarks of CI Security, Inc. All other brand names, trademarks, service marks, and copyrights are the property of their respective owners.

© 2021 CI Security. All rights reserved.


 

CI Security

245 4th St, Suite 405  Bremerton, WA   98337

About Us   |   CI Security News   |   Contact Us 


We host NEVER BORING free security awareness training 
 every other Friday.
Register and/or send your colleagues and friends. Let's educate users together! 

Add this Email to Your Address Book





unsubscribe