A lot happens in the security world, some big and some small, and many stories get lost in the mix. In an effort to keep our readers informed and updated, we present the Webroot ThreatBrief, highlighting 5 major security news stories of the week.
Hackers Targeting Ukraine Energy Infrastructure
In the last week, several regions of Ukraine were subjected to electrical blackouts as the result of a malware attack. The malware package, dubbed BlackEnergy back in 2007 when it originally surfaced, has the capability to render machines unbootable, destroy critical systems, and create backdoors into the infected machine.
Tax Season Security Risks
As tax season approaches, many people are finding themselves as victims of identity fraud. This remains prevalent as many are not as concerned about online security when using government sites and entering personal information. By creating fraudulent sites and using phishing emails disguised as tax information, identity theft is easier and more widespread than ever before.
Read more: http://www.net-security.org/secworld.php?id=19285
Comcast Security Not So Secure
Recently, third-party security vendor Rapid7, discovered a method of infiltrating the Xfinity security system by using a simple radio-jammer to disrupt the wireless signals used to determine if the home is secure or not. This gap in communication would be unnoticed as there is no indication to the homeowner that the “all clear” signal is no longer being received. Fortunately for Comcast customers, the issue is being reviewed and hopefully a solution is found.
Javascript Ransomware on the Rise
At the start of this year, a new variant of RaaS began making headway into the market, labeled Ransom32. This iteration of ransomware comes packaged in a javascript application that allows anyone with a Bitcoin account to run their own Ransomware campaign and customize everything from level of computer lockdown to the amount of Bitcoins to be paid.
Read more: https://www.webroot.com/blog/2016/01/06/ransom32-raas-used-multiple-os/
Thai Police Forces Hacked
In response to the recent court decision regarding the deaths of two British tourists in Thailand, hacker group Anonymous targeted several police websites and took them offline. It is believed that the decision was made hastily and the men accused were charged and executed without solid evidence. An image displayed on many of the Thai police websites states, “Failed law. We want justice!”