Security news weekly round-up - 11th June 2021

Habdul Hazeez - Jun 11 '21 - - Dev Community

3 weeks on the bounce!, for the first time this year 2021. Let's go!

Introduction

This week it's mostly about malware and bugs, and one news about data theft. Without no further ado, let's begin.


Mystery malware steals 26M passwords from millions of PCs. Are you affected?

I know, it's terrifying!.

Excerpt from the article:

The stash also included over 1 million images and more than 650,000 Word and .pdf files. Additionally, the malware made a screenshot after it infected the computer and took a picture using the device’s webcam. Stolen data also came from apps for messaging, email, gaming, and file-sharing. The data was extracted between 2018 and 2020 from more than 3 million PCs.

Hackers can mess with HTTPS connections by sending data to your email server

HTTP is not secure, well, now, HTTPS is under attack.

Excerpt from the article:

Such attacks are possible because of the failure of TLS to protect the integrity of the TCP connection itself rather than the integrity of just the server speaking HTTP, SMTP, or another Internet language. Man-in-the-middle attackers can exploit this weakness to redirect TLS traffic from the intended server and protocol to another, substitute endpoint and protocol.

Hackers Can Exploit Samsung Pre-Installed Apps to Spy On Users

No system is safe. Not even the new ones.

Excerpt from the article:

The impact of these bugs could have allowed an attacker to access and edit the victim's contacts, calls, SMS/MMS, install arbitrary apps with device administrator rights, or read and write arbitrary files on behalf of a system user which could change the device's settings.

Researchers Discover First Known Malware Targeting Windows Containers

If it's code, it is susceptible to attacks.

Excerpt from the article:

Siloscape, first detected in March 2021, is characterized by several techniques, including targeting common cloud applications such as web servers to gain an initial foothold via known vulnerabilities, following which it leverages Windows container escape techniques to break out of the confines of the container and gain remote code execution on the underlying node.

Emerging Ransomware Targets Dozens of Businesses Worldwide

Hackers do not sleep, and if you own a business, neither should you.

Excerpt from the article:

The affected entities are believed to be government, financial services, manufacturing, logistics, consulting, agriculture, healthcare services, insurance agencies, energy and law firms in the U.S., U.K., and a dozen more countries in Asia, Europe, the Middle East, and South America, according to new research published by Palo Alto Networks' Unit 42 threat intelligence team.

Hackers breach gaming giant Electronic Arts, steal game source code

EA Sports, it's in the game. Reality is, this is no game.

Excerpt from the article:

The attackers claim to have access to all of EA's services, telling customers willing to pay $28 million for the stolen data that they will also gain "full capability of exploiting on all EA services.

7-Year-Old Polkit Flaw Lets Unprivileged Linux Users Gain Root Access

What else after root?

Excerpt from the article:

Tracked as CVE-2021-3560 (CVSS score: 7.8), the flaw affects polkit versions between 0.113 and 0.118 and was discovered by GitHub security researcher Kevin Backhouse, who said the issue was introduced in a code commit made on Nov. 9, 2013

Credits

Cover photo by Debby Hudson on Unsplash.


That's it for this week, I'll see you next Friday.

. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .