Welcome to Ironshare’s Cyber Round-up, where we look back at the events of that last week to cover some of the news, posts, views, and highlights from the world of Security.
In this week’s round-up:
The Necro Android malware has infected over 11 million devices via malicious software development kits (SDKs) embedded in legitimate apps on Google Play, such as Wuta Camera and Max Browser. The malware, delivered through these apps, installs various harmful plugins to display adware, commit subscription fraud, and use devices as proxies for malicious traffic. Although some infected apps were removed from the Play Store, Necro also spreads through unofficial modified versions of popular apps like WhatsApp and Spotify. Users are urged to uninstall these apps immediately.
For more details, you can visit the article here.
By bleepingcomputer.com
A security flaw in OpenAI's ChatGPT macOS app allowed attackers to exploit its memory feature to embed long-term spyware. This vulnerability, termed "SpAIware," enabled continuous data theft, capturing user inputs and responses over time, even across new sessions. By manipulating memory, hackers could persistently exfiltrate data, bypassing single-chat limitations. OpenAI patched this issue in version 1.2024.247 after responsible disclosure. Users are advised to regularly check and clear ChatGPT's stored memories to prevent similar attacks.
For more details, visit the full article here.
By thehackernews.com
The Apple Passwords app, introduced in iOS 18 and macOS Sequoia, allows users to manage, create, and share passwords and passkeys across Apple devices. It features strong password generation, password autofill, and iCloud Keychain integration for seamless syncing. The app also alerts users to compromised or weak passwords and offers secure sharing of credentials with trusted contacts. Additionally, it supports multi-factor authentication codes and provides passkeys for a secure, passwordless login experience.
By support.apple.com
The European privacy group None of Your Business (noyb) has filed a complaint against Mozilla, claiming that its new "privacy-preserving attribution" feature in Firefox infringes on users' privacy rights under GDPR. This feature, introduced in July 2024, allows advertisers to track ad performance without collecting individual data. While Mozilla asserts that it enhances privacy compared to traditional tracking, noyb argues it turns Firefox into an ad measurement tool, undermining its reputation as a privacy-friendly browser. The Austrian Data Protection Authority is now investigating the case.
By therecord.media
Police in the UK are investigating a cyberattack on Wi-Fi networks at several major train stations, including Manchester Piccadilly and London terminals. The attack displayed anti-Islam messages on login pages, but no passenger data was compromised. The affected Wi-Fi services, managed by a third party, were suspended. This incident follows another cyberattack on Transport for London earlier in September, which exposed customer details. Investigations are ongoing, with authorities looking into both incidents.
By securityweek.com
The National Institute of Standards and Technology (NIST) has updated its guidelines on password management, advising against some long-standing practices. According to the new guidelines, using a mixture of character types (such as upper- and lower-case letters, numbers, and symbols) and mandating regular password changes are no longer recommended unless a system has been compromised. NIST also discourages the use of knowledge-based authentication (KBA), such as security questions.
The updated guidelines suggest that passwords should be at least eight characters long, with a recommendation for stronger passwords between 15 to 64 characters. Credential Service Providers (CSPs) are also encouraged to allow the inclusion of ASCII and Unicode characters in passwords. These changes align with ongoing trends from both public and private organizations, including the Federal Trade Commission and Microsoft, emphasizing a more modern, user-friendly approach to password security.
By infosecurity-magazine.com
Stay Safe, Secure and Healthy!
Edition #282 – 27th September 2024
Stuart Hare is a Technologist with a passion for helping people in all aspects of IT & Cyber Security. Stuart is the Founder of Ironshare, an Information and Cyber Security company providing consultancy and managed services.
Samuel is a Security Analyst with Ironshare, an Information and Cyber Security company providing Security consultancy and managed services.
Joshua is working as a Managed Service Lead with Ironshare, an Information and Cyber Security company providing Security consultancy and managed services.