UA-72240440-1

Risk Radar Free Cyber Newsletter – July 26, 2016

PowerWare ransomware variant poses as Locky, but can be decrypted
PowerWare uses windows PowerShell to download Locky ransomware. At this point the encryption on PowerWare is broken, thus enabling victims to get their files decrypted.
The battle to decrypt encrypted ransomware files continues, AVG is releasing a tool to decrypt files locked with the Ransomware Bart.
Request the Ransomware Epidemic whitepaper from 4D5A Security for more information on how to defend against ransomware.
Stagefright-style vulnerability discovered in OS X and iOS, update for protection
OS X and iOS devices can remotely be exploited with a crafted TIFF document. This exploit is very similar to the Android Stagefright exploit. The good thing is Apple has patched the TIFF exploit, ensure you update any OS X or iOS devices you have.
For more details on the TIFF exploit check out the write up from Cisco Talos.

Law enforcement and IT security companies join forces to fight ransomware
Law enforcement is working with security companies to stop ransomware and help those that are victims of ransomware. Intel Security and Kaspersky Lab are working with the Dutch National Police and Europol to minimize ransomware. Kaspersky states that users attacked by ransomware have grown by 550 percent in 2015-2016.

Donald Trump’s Take on Cyberwarfare Makes Concerning Reading
Whoever the next President is we hope their administration will have a good understanding of Information Security issues. Some of Donald Trump’s recent answers to questions about Information Security could be worrisome. Trump or Hillary, let’s hope they have a solid team of Information Security people to advise them.
Open Source Tools to Get Brussels Security Audit
The European Commission (EC) will be providing a security audit to open source software Apache HTTP server and password manager Keepass. The goal is to improve security in open source software. Some in the security community have expressed concerns that the information from the security audits will not come out in time to be relevant.
Reducing Adobe Flash Usage in Firefox
Adobe Flash continues to be the odd man out, Firefox will be reducing the use of Flash in its browser. Mozilla will be blocking Flash content that is not essential to user experience starting in August. As the move to eliminate Flash in the browser continues security and browser performance should improve.