Tuesday, March 31, 2020
Internet Storm Center Infocon Status


Huawei’s Worrying New China Problem Just Got Worse: Here’s Why

Huawei used its 2019 results to threaten retaliation against the U.S. But the company now has serious problems closer to home.

Palantir, The $20 Billion, Peter Thiel-Backed Big Data Giant, Is Providing A Coronavirus Monitoring Tool To The CDC

Palantir will help the Centers for Disease Control keep on top of ventilator and mask needs to treat coronavirus victims, sources say.

Defense Evasion Dominated 2019 Attack Tactics

Researchers mapped tactics and techniques to the MITRE ATT&CK framework to determine which were most popular last year.

OpenWRT is vulnerable to attacks that execute malicious code

Enlarge (credit: OpenWRT) For almost three years, OpenWRT—the open source operating system that powers home routers and other types of embedded systems—has been vulnerable to remote code-execution attacks because updates were delivered over an unencrypted channel and digital...
SC Magazine

Privacy in critical care after telehealth demands jump

As coughs and body aches drive anxious Americans to telemed services in record numbers, relieving the burden on medical facilities stressed to breaking with COVID-19 cases, the subsequent relaxation of privacy requirements puts them at risk of PHI compromises,...

Zoom’s privacy problems are growing as platform explodes in popularity

Enlarge / Zoom's San Jose, Calif., headquarters looks like a lovely place to be socially distanced from. (credit: Smith Collection | Gado | Getty Images) We have several more weeks, if not several more months, to go in...

FBI warns about Zoom bombing as hijackers take over school and business video conferences

Teleconferences are being disrupted by internet trolls shouting profanity and racist remarks and posting pornographic and hate images.
The CyberWire Podcast

Supply chain attack warning. CFAA clarified. COVID-19 and its economic squalls.

FBI warns of another supply chain attack, this one distributing the Kwampirs RAT. More exposed databases found. The US Computer Fraud and Abuse Act gets some clarification from a Federal Court. Security and networking companies are weathering the COVID-19...

FCC tells US telcos to implement caller ID authentication by June 30, 2021

FCC says all US telcos must use the new SHAKEN/STIR protocol to support caller ID authentication by June, next year.

Comcast waiving data caps hasn’t hurt its network—why not make it permanent?

Enlarge (credit: Aurich Lawson / Getty Images) Back in the before times, when a larger percentage of the human race roamed the Earth, i.e., several weeks ago, Comcast customers had to deal with something called a "data cap."...

What Needs To Be In A CIO’s Communication Framework For COVID-19

CIOs are keeping the digital lifelines open for every business while enabling employees, customers, partners, and suppliers to continue working during the COVID-19 pandemic

Two Exabeam employees at RSA conference who tested positive for COVID-19 are recovering

Exabeam's employees are recovering from coronavirus. Both tested positive for COVID-19 after attending RSA in San Francisco.

Internet Society Expands Program for Secure Internet Routing Framework

CDNs and Cloud Providers Join Initiative to Improve Security of Internet's Routing System Failure in internet routing security leads to major outages, stolen data, hijacking, lost revenue and more, with more than 12,000 routing outages in 2018 alone. The Mutually...

Researchers Uncover Unsophisticated – But Creative – Watering-Hole Attack

Holy Water campaign is targeting users of a specific religious and ethnic group in Asia, Kaspersky says.

Palo Alto Networks to Acquire CloudGenix for $420 Million

Palo Alto Networks on Tuesday announced that it has entered into a definitive agreement to acquire enterprise SD-WAN solutions provider CloudGenix for roughly $420 million. Palo Alto Networks’ Prisma Access solution enables organizations to protect remote networks and mobile users,...
The Register

Epic Games floats $1m bounty to ID source of ‘commercial smear’ claiming Houseparty chat app has been hacked

Lots of non-savvy users may be recycling previously hacked creds Group video chat app Houseparty has offered a $1m bounty to identify what it claims is an organised campaign to falsely depict it as a hackers' backdoor.…

Keep these privacy considerations in mind when using Zoom at home for work collaboration

The platform allows a host to monitor users' activities while screen sharing, as well as access to a participant's device information and other details.

Marriott discloses new data breach impacting 5.2 million hotel guests

Marriott says a hacker gained access to the accounts of two employees.

Latest Security News & Commentary about COVID-19

Check out Dark Reading's updated, exclusive news and commentary surrounding the coronavirus pandemic.

Data from 5.2M Marriott Loyalty Program Members Hit by Breach

The data was breached through the credentials of two franchisee employees.

Why Third-Party Risk Management Has Never Been More Important

Given today's coronavirus pandemic, the need for companies to collect cybersecurity data about their business partners is more critical than ever. Here's how to start.

Patching Poses Security Problems with Move to More Remote Work

Security teams were not ready for the wholesale move to remote work and the sudden expansion of the attack surface area, experts say.

COVID 19 – The New IT Reality

The impact of COVID 19 on enterprise IT is significant and cause for a pause to consider what is changing daily.
SC Magazine

New Marriott data breach impacts 5.2 million guests

Previously burned by a hack of its Starwood reservations system, Marriott International on Tuesday disclosed another major data breach, this one affecting 5.2 million of its guests. According to the Bethesda, Md.-based hospitality giant, the source of the breach was an...

How to better secure your Microsoft Remote Desktop Protocol connections

Microsoft's Remote Desktop Protocol has been saddled with security bugs and weaknesses, which means you need to take certain precautions when using RDP for remote connections.


Graham Cluley

The UK Cabinet is meeting on Zoom… here’s the meeting ID

In case you’ve lost the Zoom meeting ID for today’s UK Cabinet meeting, here it is.
Bruce Schneier

Clarifying the Computer Fraud and Abuse Act

A federal court has ruled that violating a website's tems of service is not "hacking" under the Computer Fraud and Abuse Act. The plaintiffs wanted to investigate possible racial discrimination in online job markets by creating accounts for fake employers...
Graham Cluley

Has Houseparty been hacked? $1 million reward offered to unearth who is behind widespread claims

In recent days warnings have spread rapidly across social networking sites that the Houseparty app – which makes it easy for anyone to drop in for a video chat with friends locked down during the Coronavirus pandemic – is...
Brian Krebs

Annual Protest to ‘Fight Krebs’ Raises €150K+

In 2018, KrebsOnSecurity unmasked the creators of Coinhive — a now-defunct cryptocurrency mining service that was being massively abused by cybercriminals — as the administrators of a popular German language image-hosting forum. In protest of that story, forum members...
Graham Cluley

Cyber volunteers needed to help protect our health services during the Coronavirus outbreak

The aim of Cyber Volunteers 19 (CV19) is to help people volunteer their IT security expertise and services to health services, during the Covid-19 Coronavirus pandemic.