Risk Radar Free Cyber Newsletter – Oct 24, 2017

Cyber Security Newsletter

Emergent threats, trends, and news annotated by some of the most well known and respected experts in the industry.

Reaper Botnet Has Come for the Internet
A botnet of IoT devices is growing on the internet.  Check Point researchers have discovered a botnet that may be far bigger than the Mirai botnet in 2016. The problem is insecure IoT devices that are used in DDoS attacks. The consequences to the internet could be severe if or when the Reaper botnet is used.
Critical Code Execution Flaw Patched in PeopleSoft Core Engine
PeopleSoft is used by many organizations for human resource services. A vulnerability allowing remote code execution is patched by Oracle. If you are running PeopleSoft you should patch ASAP.

Cisco Warns 69 Products Impacted by KRACK
Cisco has released a list of KRACK effected wireless products. It is advised to patch devices ASAP if patches are available. Patches are available for some of the Cisco wireless products, patches are being worked on for the remaining products.

APT28 Targets Cybersecurity Experts in Latest Spy Campaign
One of the hacker groups said to be involved in the Russian U.S. election hacking is targeting security researchers. The attack is using reconnaissance malware to spy on the victim. A remote execution attack is not included in the attack, researchers think this has been done to help avoid discovery.
FBI Asks Businesses to Share Details About DDoS Attacks
A while back the FBI asked businesses for details of ransomware attacks. Now the FBI is asking businesses for information about any type of DDoS attack. This new concern about DDoS attacks is related to the growing threat of insecure IoT devices.
Huge Changes are Coming: it’s Time to Prepare Technologically for GDPR
If you deal with personal data in the EU big changes are coming on 25 May 2018. This is the date for new regulations over personal data of EU citizens. These regulations will affect any company outside of the EU dealing with personal data of EU citizens.