Risk Radar Free Cyber Newsletter – Jul 4, 2017

Cyber Security Newsletter

Emergent threats, trends, and news annotated by some of the most well known and respected experts in the industry.

Researchers Find ‘Vaccine’ for Global Ransomware Attack
A security researcher at Cybereason has found an interesting way of protecting against the NotPetya ransomware. NotPetya does a scan of the local drive, if it finds a file indicating the machine is already infected it stops the encryption process. The “perfc” file can be created on the c drive to fake out the NotPetya ransomware.

Request the Ransomware Epidemic whitepaper from 4D5A Security for more information on how to defend against ransomware.

Windows 10 to Get Built-in Protection Against Most Ransomware Attacks
Windows 10 will be getting built-in protection against many ransomware attacks. The security feature is called Controlled Folder Access. It will be part of Windows Defender and will block unauthorized programs making changes in protected folders. This feature will be coming in the Windows 10 Creator update later this year.
Wikileaks Reveals CIA Malware that Hacks & Spy On Linux Computers
The Vault 7 leaks just keep coming on WikiLeaks. This time it is about an alleged CIA project to hack and spy on computers running Linux. The tool is called OutlawCountry, the CIA uses known exploits to inject the kernel module into the Linux system. This attack is limited to compatible Linux kernels.
‘Little Hope’ to Recover Data Lost to Petya Ransomware
Researchers with Kaspersky Lab have determined that it may be impossible for victims of ExPetr/Petya ransomware to get their data back. Mistakes in the malware’s code will prevent the recovery of data. Another problem is the shutting down of the attacker’s email address by German email provider Posteo.
Researchers Crack 1024-bit RSA Encryption in GnuPG Crypto Library
Researchers have cracked RSA-1024 encryption in the GnuPG Crypto Library. Gnu Privacy Guard is an open source encryption software used in many operating systems. The crypto attack is described in the article. Gnu Privacy Guard has been fixed with the latest Libgcrypt version. If you are using Gnu Privacy Guard make sure you get the latest version.
Majority of Sites Fail Mozilla’s Comprehensive Security Review
The Mozilla foundation has found that many top websites are not very secure. The Mozilla Observatory tool tests websites for known security issues. While a majority of top websites are failing, the observatory tool is showing an improvement trend.