Wenatchee Valley College - CTS Discussion Board

You are not logged in. Would you like to login or register?



10/25/2018 9:54 am  #1


Security Discussion Article #3 - Due Monday the 29th....

I forgot to remind us all to post an article.... So this one better be extra good!  Post your article, with your first name and a good synopsis of the article below in the reply section.

Thanks,

Dave

 

10/26/2018 10:31 am  #2


Re: Security Discussion Article #3 - Due Monday the 29th....

Phishing Attacks are up 297% in just the last 12 months.  Each major company now averages 23 phishing sites per company, up from the average of 5.9 phishing sites per company last year.  


https://www.securitymagazine.com/articles/89512-phishing-attacks-up-by-297-percent-in-q3-2018

Posted by Phil Bentz

 

10/28/2018 4:13 pm  #3


Re: Security Discussion Article #3 - Due Monday the 29th....

It was leaked that in May 2018 Google has a new contract for android device manufactures to require them to release security patches for their new devices on a more regular basis. According to the leaked document the manufacturers will need to release new patches at least four times during the first year. No news about about the years following. The hope from Google is to make the android devices more secure
https://thehackernews.com/2018/10/android-security-updates.html

 

10/29/2018 9:11 am  #4


Re: Security Discussion Article #3 - Due Monday the 29th....

Widespread use of open source code used in popular Android apps has shown to be a large security risk. Critical vulnerabilities were found in very common apps including banking, ticket purchasing, sports and travel apps. 32 percent or 105 out 330 apps tested among 16 different categories averaged 19 vulnerabilities per app. 

According to ACI, there were 40,000 known open source vulnerabilities in the last 17 years, and one-third of them came from last year. This is a major concern given 90 percent of all software today contains open source software components.

https://www.technewsworld.com/story/85563.html

~Seth Sampson

 

10/29/2018 9:22 am  #5


Re: Security Discussion Article #3 - Due Monday the 29th....

There was a new vulnerability found in the X server, a part of the GUI for many Linux distros. If X server is running as a root, a logged in user can gain access to administrator permissions. This venerability has been around for around two years apparently. The attacker must first gain access to the system before this exploit can be used. They do not have to be at the physical console though, as this exploit can be used with remote connecting in SSH. Link to the original article below:
https://threatpost.com/x-org-flaw-allows-privilege-escalation-in-linux-systems/138624/

Roland Smith

 

10/29/2018 10:15 am  #6


Re: Security Discussion Article #3 - Due Monday the 29th....

Blackmail threats are coming to light as thousands of people contacted "The Mail" complaining of ransomware on their computers. The emails were sent by hacker(s) who claim that the recipient was caught by their own camera visiting a adult website and if they did not pay the hacker(s) money the picture would be sent to their family members/ friends.
Stuart Peck a cyber security technician said this claim was false. That hackers wouldn't want you to know that they had access to your account and would rather sell off the information to other hackers. If a person did fall for the claim that person could e placed on a "suckers list" where more attacks via ransomware could be made on that person. 
If a person really felt vulnerable they can place a piece of paper over their camera to ensure no one is watching.

https://www.thisismoney.co.uk/money/guides/article-6323857/As-thousands-report-victims-vile-ransomware-computer-attacks-heres-stay-safe.html
-Daniel Dagg

 

10/29/2018 10:17 am  #7


Re: Security Discussion Article #3 - Due Monday the 29th....

British Airways has revealed that another 185,000 customers may have had personal details stolen in a data breach. Customers who made reward bookings using a payment card between 21 April and 28 July this year may be at risk.  On top of that, hackers may have stolen names, addresses, email addresses, card numbers, expiry dates, and card verification value (CVV) numbers for another 77,000 customers, British Airways said, potentially allowing purchases to be made. Another 108,000 may have had details stolen not including the CVV, the three-digit code which acts as an extra layer of protection for online transactions. All affected customers will be contacted via email before 5pm on Friday, a spokesperson for British Airways said.

[url=https://www.theguardian.com/business/2018/oct/25/british-airways-data-breach-185000-more-passengers-may-have-had-details-stolen]https://www.theguardian.com/business/2018/oct/25/british-airways-data-breach-185000-more-passengers-may-have-had-details-stolen

-Rosa[/url]
 

 

10/29/2018 10:27 am  #8


Re: Security Discussion Article #3 - Due Monday the 29th....

A media report in early October revealed that tiny chips the size of grain of rice have been found inbedded in motherboards on server. This attack effected almost 30 companies, including Amazon and and apple.These chips are very small so there is not that much room for code. but the main pupose of them was to  the device to [color=rgba(0, 0, 0, 0.87)]communicate with one of several computers elsewhere on the internet that were loaded with more complex code. Then prepare the device’s operating system to accept this new code.[/color]

https://thehackernews.com/2018/10/china-spying-server-chips.html

-James Ramsey

Last edited by JamesR75 (10/29/2018 10:28 am)

 

10/29/2018 10:34 am  #9


Re: Security Discussion Article #3 - Due Monday the 29th....

Manufacturers in China have been planting spy chips, not much bigger than a grain of rice, onto motherboards that are being sold to companies in the U.S. and the United States military. These Chinese manufacturers are thought to be backed by China's government

https://thehackernews.com/2018/10/china-spying-server-chips.html

 

 

10/29/2018 6:30 pm  #10


Re: Security Discussion Article #3 - Due Monday the 29th....

A massive unauthorized disclosure of voter records is estimated to exceed 35 million across 19 states, according to Anomali Labs and Intel 471, firms that provide cyber threat services and intelligence.

~Zach Steele~

https://www.foxnews.com/tech/35-million-voter-records-up-for-sale-on-the-dark-web-report-says

Last edited by zabu92 (10/30/2018 8:21 am)

 

Board footera

 

Powered by Boardhost. Create a Free Forum