Brought to you by: Justin White

Transcription

1 An off the beaten path, impudent, unconventional, downright unorthodox look at garden-fresh information security issues. Brought to you by: Justin White

2

3

4 The video footage has TV5Monde reporter David Delos talking about the hack incident that occurred on Apr 08, 2015, and it also captures a background wall filled with notes containing access credentials, the names YouTube and Instagram standing out. The cyber-attack on TV5Monde affected all 11 channels of the media network, which emitted a black screen after the intruders, the CyberCaliphate group associated with ISIS, took control of the computers. Social media accounts of the company were also impacted as the hackers hijacked them and posted pro-isis messages. Password for YouTube was lemotdepassedeyoutube translated into English it becomes thepasswordofyoutube

5 GAO: Newer aircraft vulnerable to hacking Hundreds of planes flying commercially today could be vulnerable to having their onboard computers hacked and remotely taken over by someone using the plane's passenger Wi-Fi network, or even by someone on the ground, according to a new report from the Government Accountability Office. One of the authors of the report, Gerald Dillingham, Director Physical Infrastructure Government Accountability Office. Dr. Dillingham is currently the Director of Civil Aviation Issues for the U.S. said the planes include the: Boeing 787 Dreamliner, the Airbus A350 and A380 aircraft, and all have advanced cockpits that are wired into the same Wi-Fi system used by passengers. As airlines update their systems with Internet-based networks, it's not uncommon for Wi-Fi systems to share routers or internal wiring. According to the report, FAA and cybersecurity experts told investigators that airlines are relying on "firewalls" to create barriers. But because firewalls are software, they could/can be hacked! According to cybersecurity experts we interviewed, Internet connectivity in the cabin should be considered a direct link between the aircraft and the outside world, which includes potential malicious actors," the report states.

6 Airline Network Configuration

7 Buh-bye Beebone! Law enforcement kills polymorphic virus-spreading botnet. We fought and we one!!! Overview: AAEH is a family of polymorphic downloaders created with the primary purpose of downloading other malware, including password stealers, rootkits, fake antivirus, and ransomware. The United States Department of Homeland Security (DHS), in collaboration with Europol, the Federal Bureau of Investigation (FBI) and the Department of Justice (DOJ), released this Technical Alert to provide further information about the AAEH botnet, along with prevention and mitigation recommendations. International law enforcement activity has taken out the Beebone botnet, seizing approximately 100 internet domain names used by the botmaster to communicate with infected Windows computers. Instead of calling home to servers controlled by cybercriminals, botted or zombified computers now connect to a sinkhole server operated by Europol's European Cybercrime Centre (EC3).

8 Buh-bye Beebone! Law enforcement kills polymorphic virus-spreading botnet. We fought and we one!!! Beebone acts as a downloader, typically installing another malware in a family known as Vobfus (pronounced "vee-ob-fuss", because it is delivered in the form of heavily obfuscated, or disguised, Visual Basic code). Once Beebone/Vobfus is on your computer, the botnet operators can instruct it to download yet more malware, such as banking Trojans, password-stealers, spyware or ransomware Beebone/Vobfus can spread automatically across your network and to removable drives, typically creating an program file in the root folder with a filename such as: Beebone/Vobfus can spread automatically across your network and to removable drives, typically creating an program file in the root folder with a filename such as: F:\Love You.exe F:\Sex.exe F:\Nude.exe F:\Money.exe F:\Sexy.exe F:\Porn.exe Beebone/Vobfus samples change very frequently, so this is what is known as apolymorphic, or shape-shifting, threat. For example, when the malware copies itself across your network, the destination files are modified during the copy. The copied programs will have the same behavior as the original, but using a different sequence of program instructions so that no two files are byte-for-byte identical.

9 US teen pleads guilty to $100 million theft of Microsoft, Valve, U.S. Army data!!! An Indiana teen has pleaded guilty to his involvement in a hacking ring said to have stolen data worth more than $100 million from major gaming developers. Austin Alcala, a 19-year-old from Indiana who lived with his parents until his arrest, joined two other Americans and a Canadian, ages 19 to 28, in pleading guilty to charges of computer hacking conspiracies and criminal copyright infringement. Their methods of hacking, outlined in the criminal complaint released by prosecutors, include SQL injections to gain unauthorized access to targeted computers and keyloggers to steal sensitive data, such as passwords and credit cards. The arrest came after Alcala and his cohorts stole software and data related to the [then unreleased] Xbox One gaming console and Xbox Live online gaming system, according to the U.S. Department of Justice, and popular games such as the FIFA online soccer series; Call of Duty: Modern Warfare 3; and Gears of War 3. Alcala, the youngest of the bunch, admitted that he stole login credentials and intellectual property from companies like Microsoft and Zombie Studios. 19 year-old Austin Alcala will be sentenced at a July 29 hearing, having admitted guilt to charges of conspiracy to commit computer intrusion and criminal copyright infringement. The teenager could face up to five years in prison for the crime.

10 FBI, Homeland Security officials' addresses leaked Federal officials are reviewing the online publication of personal information related to former and current officials with the Department of Homeland Security and FBI, a federal law enforcement official said Wednesday. Much of the information appears to have been culled from social media and other publicly available sources, though investigators are attempting to determine if any of the material was accessed illegally, said the official, who is not authorized to comment publicly. Last month the Army rewrote social media guidelines after the names, addresses and pictures of troops fighting the Islamic State in Syria and Iraq were released online by the terrorist group. A group called the Islamic State Hacking Division posted the personal information for 100 U.S. military members. Most of the information was easily available online. The group asked that its "brothers residing in America" attack them. "Social media will continue to be leveraged as a tool by those who wish to threaten or target members or the military," the Army warned.

11 Not yet released information and other cool tidbits. Cyber Intelligence Sharing and Protection Act - is a proposed law in the United States which would allow for the sharing of Internet traffic information between the U.S. government and technology and manufacturing companies. The stated aim of the bill is to help the U.S. government investigate cyber threats and ensure the security of networks against cyberattacks. Senators introduce bipartisan data breach legislation Congress turns to cyber and data breach legislation Home Depot Names Jamil Farshchi Chief Information Security Officer. Premera looking for Chief Information Security Officer. OPPORTUNITY The VP, CISO is a member of the company s leadership team and responsible for providing strategic leadership and direction to develop technology security solutions that minimize risk and create a strong security posture and competitive advantage for Premera. KEY EXPERIENCE/COMPETENCY REQUIREMENTS The CISO will have a distinguished track record of accomplishments in information security technology, be a recognized thought leader, developer of people and champion of change. The CISO will have experience leading large-scale IT security evolution and transformation efforts that ensure contemporary control practice objectives are achieved for system integrity, availability, confidentiality, accountability and assurance. This individual must be exceptionally intelligent and credible with staff, and exhibit a strong executive presence.

12 Permission is granted to print/distribute/send this to whoever you wish! Print, hang in the restroom, place in the kitchen, use as a coffee coaster and enrich your life with fresh Information Security news!