Welcome to the Ironshare Cyber Round-up where we look back atthe events of that last week and cover some of the news, posts, views, and highlightsfrom the world of Security.
In this week’s round-up:
NCSC’s Cyber Essentials scheme is evolving to keep up withthe everchanging threats of cyber security; they aim to ‘meet the cybersecurity challenges of today, and tomorrow’. NCSC plan to work with a singledelivery partner who will take over running the scheme and change thecertification by condensing the 5 accreditation bodies down into just one.These changes are designed to enhance the customer experience and help keep thescheme up to date in order to remain relevant. Cyber Essentials will improvethrough continuous collaboration with its new partner, to ensure the rightchanges are made to produce the best results. The new partner will take overthe scheme at the end of March 2020, at which point we will begin to see thesechanges roll out.
By NCSC.gov.uk.
Mosss, an interior design tools startup, accidentallydeleted their G Suite account. The firm immediately contacted google after theincident requesting that they restore their account, however they have sincemocked Google for providing no support. After a week of desperately trying toget a response on the status of their account, the firm received a one-lineemail from google that simply said that their data was lost. The company waslater advised to file a lawsuit to access their data and have since suedGoogle. Consumers of cloud-based services, such as G-Suite or Office 365, shouldrealise they are responsible for their own data, ensuring that offline backupsof their data are completed on a regular basis.
By TheRegister.co.uk.
Eurofins Scientific, the UK’s biggest provider of forensicservices, has been hit by what the firm described as a “highly sophisticated”ransomware attack. The ransomware computer virus hit just over a month ago, andas a result the British police have been forced to suspend work with the firm.The attack has disrupted work for both Eurofins and the police, since thecompany is responsible for more than half of the UK’s forensic scienceprovision. The amount of money requested by the attackers was not disclosed tothe BBC, however it was confirmed that they paid it. Three weeks after theattack, Eurofins reported that operations were “returning to normal”.
By BBC.co.uk.
British Airways are facing a record fine after suffering adata breach last year; the breach involved personal information and paymentcard details being stolen from around 500,000 customers. The ICO has onlyannounced a notice of intention for British Airways and have not yet issued thefine. The company has been allowed 28 days to appeal, and ICO plan to listen totheir intentions before following through. The reason British Airways arefacing such a big fine is because of the recently instated General DataProtection Regulations, which states a firm can be fined for up to 4% of theirannual turnover. Despite this, the fine is equal to just 1.5% of BritishAirway’s turnover in 2017.
By TripWire.com.
A recent data breach has exposed the personal information ofaround 383 million guests, including names, email addresses, phone numbers,dates of birth and all hotel reservation information. Millions of payment cardand passport details were also compromised. ICO intend to fine MarriotInternational hotel group £99.3 million, following the breach. It is suspectedthat approximately 7 million of the hacked records related to UK residents.Since the breach, Marriot has worked closely with ICO investigation to improveits security, in order to mitigate the risk of another breach.
By HotForSecurity.Bitdefender.com.
A recent vulnerability discovered in Zoom, a video conferencingservice, allows an attacker to take control of a user’s webcam through amalicious website. Over 4 million users are at risk from this flaw, whichappears to only affect the collaboration client for Mac. This exploit can stillaffect those who have recently uninstalled Zoom, so it is advised that allusers apply the necessary patches as soon as possible. The emergency patchcompletely removes the local web server and allows users to manually uninstallthe app; a link to the patch is included in the original post. Zoom are due to releasefurther updates that aim to resolve other issues around the safety of theservice.
By Threatpost.com.
Attackers are exploiting a new high-severity flaw in AppleiMessage that allows them to essentially cause a denial of service on a targetdevice. By sending a specially crafted message, the attacker can completelydisable the victim’s device until it reset to factory settings, wiping its datain the process. The vulnerability was discovered by a Google Project Zeroresearcher in April and described the attack as a “malformed message”. Applerecommend updating your device to minimise the risk of this attack; patches forthe flaw were released on May 13, 2019 with the release of iOS 12.3.
By Threatpost.com
And that’s it for this week round-up, please don’t forget totune in for our next instalment.
Why not follow us on social media using the links providedon the right.
Edition #49 – 12th July 2019
Stuart Hare is a Technologist with a passion for helping people in all aspects of IT & Cyber Security. Stuart is the Founder of Ironshare, an Information and Cyber Security company providing consultancy and managed services.
Samuel is a Security Analyst with Ironshare, an Information and Cyber Security company providing Security consultancy and managed services.
Joshua is working as a Managed Service Lead with Ironshare, an Information and Cyber Security company providing Security consultancy and managed services.
