Cyber Security Watch April 2020
Office employees aren’t the only ones working from home – hackers are online too. Compromised firewalls, Apple security flaws and stolen data are just a handful of the security breaches and vulnerabilities from last month.
Read on to find out what else has been happening in the world of cybersecurity.
Censorship disguised as technical redesign
A proposal to remodel core internet protocols was presented by the Chinese government, Chinese telecoms, and Huawei. The plan included a revamped version of the TCP/IP standards to accommodate new technologies, a ‘shutoff protocol’ to cut off misbehaving parts of the internet, and a new ‘top-to-bottom’ governance model that centralizes the internet and puts it into the hands of a few crucial operators. However, the proposal was opposed by internet governance body Réseaux IP Européens (RIPE) as it was viewed as a thinly veiled attempt at censorship.
The Mail app on iPhones is reported to have a flaw which makes it vulnerable to hackers. The security glitch in the Mail app is reportedly due to a flaw in Apple’s operating system, iOS. There have already been six high profile victims of the system vulnerability. It is recommended that anyone with an iOS operating system on their device should use the latest beta version of iOS if possible. If this isn’t an option, then disable the Mail application and use a different mail system, for example, Outlook or Gmail.
Clearview AI data breach
Clearview AI, a facial-recognition software maker, has had data stolen. The compromised data included its entire list of customers, the number of searches those customers have made and how many accounts each customer had set up. The software is predominantly used by police departments in the US. Clearview AI’s database contains 3 billion photos collected from the internet. It was confirmed in a statement from Clearview AI that their servers were never accessed and the flaw has now been patched.
New protection tool from Dell
Dell has released a Basic Input/Output System (BIOS) to add extra security which will combat attacks that anti-virus software is not engineered to handle or detect. The tool works by detecting changes to the BIOS configuration in Dell computers and raises an alert in businesses’ management consoles. The purpose is to more easily identify the hardware that has been compromised, which allows it to be set aside for remediation.
Firewall targeted by hackers
Sophos, a cybersecurity organisation, discovered previously undetected malicious code on its systems. The attack used a formerly unknown pre-auth SQL injection vulnerability that created a remote code execution situation that enabled the attackers to gain access to exposed XG devices with the intention of exfiltrating XG Firewall-resident data. Sophos has now implemented a hotfix to resolve this issue and has advised organisations to disable the HTTPS Admin Services and User Portal access on the WAN interface.
Want to stay in the loop? Join our newsletter here.