« LulzSec claims it hacked FBI linked organization: Cyber Highlights June 7th | Main | Some top apps put data at risk: Cyber Highlights June 13th »
Boeing says under ‘continuous’ cyber attack: Cyber Highlights June 9th
By Kelli Tarala | June 9, 2011
U.S. aerospace giant Boeing is under “continuous” cyber attack but there has been no breach of its databases, the chief executive of Boeing Defense, Space and Security said June 3. “We, as are other global enterprises, are under a continuous state of cyber attack and cyber probing,” he said. “We recognize the reality of global business today, is that cyber attacks are part of business and we’ve been prepared for that so this is not a surprising environment to us,” he told a media briefing in Singapore. He did not want to mention how often the attacks took place or the people behind it but said Boeing’s investment to protect its systems from hackers has paid off. “I can tell you that the defensive capabilities that we’ve built up are very effective, and give us confidence and our enterprise is secure because of that investment,” he said.
Full Story:
http://news.yahoo.com/s/afp/20110603/tc_afp
Greek police arrest suspected FBI hacker
Greek police arrested an 18-year-old man suspected of having hacked into the electronic systems of the FBI and Interpol, they announced June 8. He reportedly also took over the computers of unsuspecting users, accessed their data and used it to obtain new credit cards in their names. A raid on his home turned up more than 120 credit cards and thousands of euros in cash, police said. He faces charges of computer fraud, forgery, illegal violation of privacy, and illegal weapons possession. The teen was arrested at his home in Athens, the Greek police electronic crime squad said. They seized computers and related equipment as well as flares, shotgun cartridges, and a homemade incendiary device. Greek police said they been seeking the youth for 2 years, after attacks that took place in February 2008 and February 2009. U.S. and French authorities cooperated with the investigation.
Full Story:
http://www.cnn.com/2011/WORLD/europe/06/08/greece.hacker.arrest/
Java 6 update 26 fixes critical security issues
Oracle has released update 26 for its Java SE 6 platform to address a number of 17 remotely exploitable vulnerabilities, many of which could result in arbitrary code execution. Of the included patches, 11 apply only to the Java SE client and 1 only to the server version. The rest affect both of the platform’s flavors. Nine vulnerabilities carry the maximum score of 10 on the CVSS scale. This means that they can be exploited remotely with ease and no authentication resulting in a complete confidentiality, integrity, and availability compromise. The scores were calculated under the presumption users have administrative privileges, typically on Windows, and are capable of running Java applets or Java Web Start applications that is default behavior. Three of the remaining vulnerabilities carry a CVSS base score of 7.6, four of 5.0, and one of 2.6. Java vulnerabilities are commonly exploited in drive-by download attacks to infect users with malware. In fact, according to statistics grabbed from live Web exploit kit installations, Java exploits are the most effective ones.
Full Story:
http://news.softpedia.com/news/Java-6-Update-26-Fixes-Critical-Security-Issues-204840.shtml
Java 6 update 26 fixes critical security issues
Oracle has released update 26 for its Java SE 6 platform to address a number of 17 remotely exploitable vulnerabilities, many of which could result in arbitrary code execution. Of the included patches, 11 apply only to the Java SE client and 1 only to the server version. The rest affect both of the platform’s flavors. Nine vulnerabilities carry the maximum score of 10 on the CVSS scale. This means that they can be exploited remotely with ease and no authentication resulting in a complete confidentiality, integrity, and availability compromise. The scores were calculated under the presumption users have administrative privileges, typically on Windows, and are capable of running Java applets or Java Web Start applications that is default behavior. Three of the remaining vulnerabilities carry a CVSS base score of 7.6, four of 5.0, and one of 2.6. Java vulnerabilities are commonly exploited in drive-by download attacks to infect users with malware. In fact, according to statistics grabbed from live Web exploit kit installations, Java exploits are the most effective ones.
Full Story:
http://news.softpedia.com/news/Java-6-Update-26-Fixes-Critical-Security-Issues-204840.shtml
Intel investigating fire at Arizona plant
Intel said June 8 it is investigating a fire at the company’s manufacturing facilities in Chandler, Arizona, that left 13 people injured. The fire June 7 was in a support building handling solvents outside the Fab 22 chip-manufacturing site, which is currently under construction. Reasons for the fire have not been determined and are under investigation, an Intel spokesman said. Five people were sent to hospital for evaluation, but the company declined to comment on the extent of their injuries or medical progress. Another manufacturing facility in the complex, Fab 32, was evacuated briefly as a precaution. There was no impact to chip production on the sites, and the factories have now returned to normal operation, the spokesman said. The company produces millions of chips a year, and maintains major manufacturing operations in Chandler, where it has about 9,700 employees. Many chip facilities there are continuously upgraded to make smaller and faster chips for future laptops, desktops, and servers.
New MacShield variants spotted in the wild
Three new variants of the MacShield scareware were identified June 8, suggesting that Apple’s efforts so far have not discouraged Mac malware development. “F-Secure Labs located three new samples today, and added detection for today’s in-the-wild versions of MacShield,” a security advisor at the Finnish antivirus vendor said. The volume of new Mac scareware has increased and so has the number of distribution vectors. At first, there were Google Images black hat search engine optimization campaigns. Then the malware distributors switched to Facebook. It is unclear if the new variants bypass Apple’s XProtect blacklist, but it is a very likely possibility given the technology works by comparing hashes. Users should use a full-featured security product that offers layered protection. For example, antivirus programs contain Web filters that block users from accessing scareware distribution sites in the first place. However, if a site is very new and the Web filter does not know about it, an antivirus product can still leverage heuristic signatures to identify new variants of a certain threat.
Full Story:
http://news.softpedia.com/news/Mac-Scareware-Development-Continues-204986.shtml
Chrome 12 brings many security fixes and enhancements
Google released the first stable build of Chrome 12 that addresses many vulnerabilities and brings several new security enhancements. A total of 14 security flaws have been patched in the new Chrome 12.0.742.91 build, in addition to the ones fixed during the development cycle. Five of the vulnerabilities are rated with high severity. Aside from the vulnerability patches, Chrome 12 allows users to delete Flash cookies from the browser’s own interface. Flash Player’s local storage can be abused to respawn tracking cookies. Another security-related feature in Chrome 12 provides protection against malicious downloads by using data from Google’s Safe Browsing service.
Full Story:
http://news.softpedia.com/news/Chrome-12-Brings-Many-Security-Fixes-and-Enhancements-204796.shtml
Hackers jailbreak iOS 5 in under 24 hours
Hackers said they have jailbroken the latest version of Apple’s iOS so it will run applications not officially sanctioned by the company. iOS 5 was unveiled June 6, and a beta version was made available to a limited number of developers. Within hours, members of the iPhone Dev Team posted pictures that showed it had been jailbroken. They said the OS, which runs iPhones, iPod Touches, and iPads, had been unlocked using “limera1n,” a technique devised by serial jailbreaker “GeoHot.” The jailbreak is
of the tethered-boot variety, meaning jailbroken iDevices must be connected to a computer each time they reboot. There was no mention of an untethered jailbreak coming to the new OS.
Full Story:
http://www.theregister.co.uk/2011/06/07/ios_five_jailbroken/
New malware can launch multiple types of advertising fraud
A new coordinated malware attack can enable cybercriminals to launch multiple types of online advertising fraud, according to researchers. According to researchers at Adometry (formerly Click Forensics), the attack, called “ad hijacking,” uses similar malware and infection delivery methods to create a network of computers aimed at committing advertising fraud through different kinds advertisements and channels. “In the past, advertising fraudsters have mainly set their sights on the search advertising industry,” the CEO of Adometry said. “This is the first attack we’ve seen that coordinates advertising fraud across many different online ad channels.” Rather than requiring a user to download malware via a fake antivirus program, Adometry said the ad-hijacking malware injects itself into the rootkit of a user’s computer through an advertisement on a popular Web site. Once it infects the computer, the malware receives instructions from a host to perform multiple kinds of advertising fraud, including search hijacking, display advertising impression inflation, and video advertising fraud.
Read the Full DHS Infrastructure Report:
www.enclavesecurity.com/blogresources/cdr_060911.pdf
*Disclaimer: The above information largely has been reproduced from the DHS Open Source Daily Report, a full version of which can be found at http:// http://www.dhs.gov/files/programs/editorial_0542.shtm. Enclave Security, LLC and its agents used their best efforts in collecting and preparing the information published herein. However, Enclave Security, LLC, does not assume, and hereby disclaims, any and all liability for any loss or damage caused by errors or omissions, whether such errors or omissions resulted from negligence, accident, or other causes.
Topics: DHS Infrastructure Reports | No Comments »
Comments are closed.