Network Security News Weekly

Current cybersecurity news to keep
you informed.

IT Services | Government | Financial |
Healthcare | Non-Profit

Network Security News Weekly

Articles of interest from the week of June 11, 2018

BackSwap Trojan exploits standard browser features to empty bank accounts
BackSwap eschews the usual “process injection for monitoring browsing activity” trick. Instead, it handles everything by working with Windows GUI elements and simulating user input. The success of this approach depends on the injection not be detected by security solutions, modules matching the bitness of the target browser, and the banking module hooking browser functions, and their location varies from browser to browser. (By: , Help Net Security)

Hackers Demand $770,000 Ransom From Canadian Banks
Hackers have demanded a ransom of 1 million Canadian dollars ($770,000) each from two banks, payable in the cryptocurrency exchange system Ripple's XRP token. The ransom demand comes on the heels of the Bank of Montreal, operating as BMO Financial Group, and Simplii Financial, a banking subsidiary of the Canadian Imperial Bank of Commerce, on Monday reporting that they'd been warned that some of their client data may have been exposed. (By: , Bank Info Security)

HIPAA Security Rule Requires Physical Security of Equipment
While most HIPAA Security Rule violations involve electronic data breaches, healthcare providers and business associates could also face a violation for failing to physically secure computers and other equipment holding PHI. The HIPAA Security rule requires the implementation of “physical safeguards for all workstations that access ePHI to restrict access to authorized users.” (By: , Health IT Security)

The disappearing act that can be the best form of cyber defence
The world has never been so connected and businesses so agile. However, there’s a catch; this new convenience exposes security weaknesses, which cybercriminals are only too happy to exploit. To counter this vulnerability and improve upon traditional solutions, businesses can now implement security directly into the network layer to help protect against potential breaches of critical data. The adoption of Software Defined Networks (SDN) has made this possible, enabling organisations to embed security into the very foundations of the network, ensuring that it is never just an “add-on” or overlooked. (By: , Information Age)

Research shows 75% of open Redis servers are infected
One of the most common attacks against Redis servers consists of adding SSH keys, so the attacker can remotely access the machine and take it over. The experts used the SSH keys they’ve collected through their honeypot to scan Redis servers that were left exposed online for the presence of these keys. The experts obtained a list of over 72,000 Redis servers available online by using the shodan query ‘port:6379,’ over 10,000 of these responded to its scan request without an error, allowing researchers to determine locally installed SSH keys. (By: , Security Affairs)

Crashing HDDs by launching an attack with sonic and ultrasonic signals
An attacker just needs to play ultrasonic sounds through a built-in speaker of a target computer or by using a speaker in its proximity. The principle is simple, the technique leverages specially crafted acoustic signals to cause significant vibrations in the HDDs components that could cause severe damage. Modern HDDs use shock sensors to prevent the head crash, but the team of researchers has demonstrated that sonic and ultrasonic sounds could cause false positives in the shock sensor, causing a drive to park the head in a wrong position. (By: , Security Affairs)

Researchers have discovered a medium-severity Windows vulnerability that enables remote attackers to execute arbitrary code – and Microsoft hasn’t issued a patch yet. (By: , Threat Post)

Sign Up For Netsec News Weekly

Contact Us

If you are concerned about a potential breach or if you are currently experiencing a breach and require immediate assistance, contact our 24x7x365 Emergency Hotline:


Ingalls Information Security
Ingalls Information Security is a Pure-Play Cybersecurity Services Company with 100% of Operations in the United States