Risk Radar Free Cyber Newsletter – Apr 4, 2017

Cyber Security Newsletter

Emergent threats, trends, and news annotated by some of the most well known and respected experts in the industry.

Russian Military-Linked APT28 Group to Wreak Havoc in 2017
APT28 group is linked to the Democrat Party officials hack of 2016. This hacking group is also said to have connections with the Russian foreign intelligence agency (GRU). Security vendor SecureWorks is reporting APT28 will be very active this year. The group’s activities seem to support the GRU’s stated goal of maskirovka. Maskirovka is using deception and disinformation techniques to confuse and undermine enemies.
Trump Signs Anti-Privacy Bill into Law
A FCC policy requiring ISPs to get permission before any user information is shared with third parties will not be going into effect. The bill signed by Trump has blocked this FCC policy. Privacy advocates are worried that ISPs will sell detailed user information to third parties. The big three IPS’s (Comcast, AT&T, and Verizon) have said they have no current plans to sell detailed user data to third parties.

Fileless Banking Malware Attackers Break In, Cash Out, Disappear
Kaspersky Lab security researchers have discovered ATM malware that has been setup and left by the fileless malware attackers. This malware enabled the attackers to get money from the ATMs anytime they wanted.

Android ransomware variant hoodwinks AV software by waiting 4 hours before striking
Android ransomware is getting more clever, a new variant of PornDroid is waiting up to four hours before it attacks the compromised phone. This attack is currently targeting Russian users. The attack is also using third party app sites to deliver this ransomware in the compromised apps. On any android phone it pays to get your apps only from the Google Play Store.
Zero-day on Windows Server 2003 could affect up to 600,000 servers
A zero-day flaw on Windows Server 2003 has been found exploited in the wild. Windows server 2003 is no longer supported by Microsoft, Microsoft is not expected to patch this exploit. Server 2003 has not been supported since 2015. If you are still using Server 2003 it would be a good time to upgrade to a secure version.
CyberFirst Girls’ Hacking Competition Showcases Teen Skills
Currently information security is a bit of a man’s world. Only 10% of the global workforce is female. The UK has started a security competition for teenage girls, more than 8000 girls competed this year.