Cyber News and Threats – 21st April 2017
Here are some of the latest updates on cyber threats and news that we’ve picked up in the last couple of weeks, including the NCSC weekly update for 21st April. All updates are open source and links given:
- Hajime – What is the intent of this IoT Botnet? – In October 2016 the security research group at Rapidity Networks discovered a new malware, called Hajime, with similarities to the Mirai botnet: it targets Internet of Things (IoT or internet-connected) devices by scanning the Internet for devices with network vulnerabilities and attempts to connect to them using known default username/password combinations
- Insider steals employer’s proprietary trading code – A computer engineer has been charged with illegally exfiltrating the proprietary algorithmic trading model code from a global financial services firm headquartered in New York, where he worked. The code is used by the firm to generate income by predicting market movements.
- Hotpoint service site compromise – Recent reporting by cyber security company Netcraft noted the compromise of domestic appliance manufacturer Hotpoint’s UK and Irish service websites, which has since been confirmed by Hotpoint in a statement via the Register. Customers accessing the service website were reportedly presented with fake Java dialogs, which if clicked, directed users to possibly malicious third party websites, presenting a risk that users could be infected with malware.
- Vulnerabilities – There have been a large number of updates over the last week, thanks in part at least to Oracle’s quarterly update cycle falling this week. Oracle’s updates affect multiple bugs in many of their products, from PeopleSoft, E-Business Suite, Financial Services, Java SA to MySQL, WebLogic and Solaris.
For the full text of the NCSC weekly Threat Report please go to: https://www.ncsc.gov.uk/report/weekly-threat-report-21st-april-2017
And in other news online
Call for action as 1 in 5 firms hit by cyber attacks – A fifth of businesses have suffered a cyber attack over the last year, with big firms more than twice as likely to be a target, as companies and the authorities are encouraged to do more to tackle the issue, a report says today. http://www.scotsman.com/business/management/call-for-action-as-1-in-5-firms-hit-by-cyber-attacks-1-4421894
CareCERT launch contributes to 250 per cent rise in cyber attack reporting – Figures released by NHS Digital reveal the launch of CareCERT and further initiatives have contributed to an approximately 250% increase in cyber attack reporting from 2015 to 2016. Following a Freedom of Information (FOI) request submitted by BBC Oxford, information provided by NHS Digital shows the number of cyber attacks reported at NHS trusts in England went up from 16 in 2015 to 55 in 2016. It is emphasised this does not ‘necessarily’ point to a rise in trust cyber attacks: “In 2015 there was less awareness of what action should be taken when a cyber attack occurs, but thanks to NHS Digital’s cyber security work, organisations now have a clear route to seek support and guidance,” NHS Digital said in a statement. http://www.hitcentral.eu/british-journal-healthcare-computing/carecert-launch-contributes-250-cent-rise-cyber-attack