UA-72240440-1

Risk Radar Free Cyber Newsletter – Nov 21, 2017

Date: November 29, 2017
Author: MRPE
Comments: 0 Comments
Categories: eCrime, Incident Response, Malware Threats, Mobile Security, Risk Radar FREE Newsletter, Security/Vulnerability Assessments

Cyber Security Newsletter

Emergent threats, trends, and news annotated by some of the most well known and respected experts in the industry.

Critical Flaws in Intel Processors Leave Millions of PCs Vulnerable
Intel’s Management Engine (ME) has a vulnerability that allows remote code execution. ME is used by enterprises to manage the PCs on their network. On modern processors it is not possible to disable ME. Intel provides a detection tool for users and admins to check their PCs. Intel has released patches for effected CPUs. Users are encouraged to update ASAP.
Fileless Malware on the Rise, Becoming Top Endpoint Threat
Fileless malware that runs in memory is seeing a 20% increase in 2017 compared to 2016. Since these attacks leave no information on the hard drive or SSD they are hard to detect. The article covers the issues with protecting systems against fileless malware attacks.

US-CERT Warns of ASLR Implementation Flaw In Windows
U.S. Computer Emergency Readiness Team (US-CERT) is warning of an issue with Microsoft’s Address Space Layout Randomization (ASLR) that can allow remote code execution. Microsoft is working on this issue, no patches are available at this time.
Ordinypt ‘Ransomware’ Destroys Data Instead of Encrypting It
A ‘ransomware’ making the rounds in Germany is acting like ransomware, in reality it the users files are actually destroyed. Even if the user pays to get their files back they are destroyed. The files are actually overwritten with random letters and numbers. It is possible that some of the files could be recovered, total recovery of data is not likely.
White House Releases VEP Disclosure Rules
The U.S. government is opening up on how it chooses to disclose or not disclose security vulnerabilities. Some in the private sector say this is a good start but would like to see more transparency in Vulnerabilities Policy and Process (VEP).
Q3 Sees a Whopping 400M Malware Infections
Malware in Q3 has seen a 4x increase from Q2. This not a big surprise for those in Cybersecurity. The increase in attacks is being seen over the whole globe.