Latest News Articles



--- TLP:WHITE ---
(https://first.org/tlp/)

########################################################
#### CSIRT-IE End of Week Report ####
########################################################

Date   : Friday 23-08-2019 10:00 ; Friday 30-08-2019 10:00

=====================================
= News =
=====================================

− Ireland’s Commitment to Cybersecurity
I recently visited Dublin, where I met with government and business 
leaders who are keen on innovating in cybersecurity. It is clear that 
Irish organizations of all types recognise there is a need for change, 
that the status quo on cybersecurity must evolve where it is not 
working. The Irish government is taking action.

https://blog.paloaltonetworks.com/2019/08/irelands-commitment-
cybersecurity/

− Australia Tries to Curb Foreign Interference at Universities
Australia announced Wednesday that it has formed a task force to crack 
down on attempts by foreign governments to meddle in Australian 
universities. The move comes as concerns grow over Chinese influence at 
Australia's universities, where Chinese students are by far the largest 
group of foreign students.

https://www.securityweek.com/australia-tries-curb-foreign-interference-
universities

− Video captures glitching Mississippi voting machines flipping votes
A video that shows an electronic machine switching voters' selections 
has gone viral, underscoring the need for paper audit trails.

https://nakedsecurity.sophos.com/2019/08/29/video-captures-glitching-
mississippi-voting-machines-flipping-votes

− Apple says sorry for Siri slurping voice commands of unsuspecting users
Devises three-point plan to up its privacy game Sorry seems to be the 
hardest word for some - Apple has finally apologised to customer weeks 
after it emerged contractors had been asked by the company to listen to 
recordings of people using the Siri digital assistant.…

https://www.theregister.co.uk/2019/08/29/apple_says_sorry_for_siri_
slurping_voice_commands_of_unsuspecteding_users/

− Ransomware attack on US 2020 election data
IT Security news and articles about information security, 
vulnerabilities, exploits, patches, releases, software, features, hacks, 
laws, spam, viruses, malware, breaches. US officials along with some 
dignitaries from the white house are worried that the voter registration 
database and polled....

https://www.cybersecurity-insiders.com/ransomware-attack-on-us-2020-
election-data/

=====================================
= Vulnerabilities =
=====================================
− Your Lenovo laptop may have a serious security flaw
Users of older Lenovo laptops should beware of a security flaw that may 
affect their PCs, particularly if their laptops are still running a 
program called Lenovo Solution Center. , security researchers at Pen 
Test Partners have discovered a security vulnerability that could 
effectively “hand admin privileges over to hackers or malware.

https://www.digitaltrends.com/computing/lenovo-laptops-security-flaw/

− Apple Releases iOS 12.4.1 Emergency Update to Patch 'Jailbreak' Flaw
Apple just patched an unpatched flaw that it patched previously but 
accidentally unpatched recently — did I confuse you? Let's try it 
again... Apple today finally released iOS 12.4.1 to fix a critical 
jailbreak vulnerability , like it or not, that was initially patched by 
the company in iOS 12.

https://thehackernews.com/2019/08/apple-ios-iphone-jailbreak.html

− New Botnet Targets Android Set-Top Boxes
ARES has already infected thousands of devices and is growing, IoT 
security firm says.

https://www.darkreading.com/attacks-breaches/new-botnet-targets-android-
set-top-boxes/d/d-id/1335688

− Phishing Campaign Hides Malware in Resumes
Cyber-criminals pose as job seekers to deliver Quasar RAT.

https://www.infosecurity-magazine.com/news/phishing-campaign-hides-
malware-in/

=====================================
= Community News =
=====================================
− Fancy Bear Dons Plain Clothes to Try to Defeat Machine Learning
An analysis of a sample published by the US government shows Russian 
espionage group APT28, also known as Fancy Bear, has stripped down its 
initial infector in an attempt to defeat ML-based defenses. The APT28 
cyber-espionage group, often called "Fancy Bear" and linked to Russia, 
has stripped....

https://www.darkreading.com/advanced-threats/fancy-bear-dons-plain-
clothes-to-try-to-defeat-machine-learning/d/d-id/1335673?_mc=rss_x_drr_
edt_aud_dr_x_x-rss-simple

− Sodinokibi Ransomware Encrypts Records of Hundreds of Dental Practices
A ransomware attack hit a remote data backup service and encrypted files 
from dental practices in the U.S. Hundreds of customers relying on the 
backup solution had their data locked by the Sodinokibi file-encrypting 
malware. [...]

https://www.bleepingcomputer.com/news/security/sodinokibi-ransomware-
encrypts-records-of-hundreds-of-dental-practices/

− Google Uncovers How Just Visiting Some Sites Were Secretly Hacking 
iPhones For Years
Beware Apple users! Your iPhone can be hacked just by visiting an 
innocent-looking website, confirms a terrifying report Google 
researchers released earlier today. The story goes back to a widespread 
iPhone hacking campaign that cybersecurity researchers from Google's 
Project Zero discovered earlier this year in the wild, involving at 
least five unique iPhone exploit chains capable of

https://thehackernews.com/2019/08/hacking-iphone-ios-exploits.html

− Hackers are actively trying to steal passwords from two widely used 
VPNs
Hackers are actively trying to steal passwords from two widely used VPNs 

https://news.hitb.org/content/hackers-are-actively-trying-steal-
passwords-two-widely-used-vpns


--- TLP:WHITE ---