Security News for the Week Ending October 28, 2022
New White Paper on the Global Cyberwar and Societal Response
We have just released a new white paper and are looking for feedback on this non-technical paper titled The Global Cyberwar and Societal Response. The target audience for this white paper is business and IT pros who want to be knowledgeable about managing company risk and also company valuation. Please share this white paper with others who may be interested and send any feedback to me or Ray.
Cisco Warns AnyConnect VPNs Under Active Attack
A pair of known security vulnerabilities in the Cisco AnyConnect Secure Mobility Client for Windows is being actively exploited in the wild, despite being patched for two-plus years. One bug allows the execution of arbitrary code, the other allows a logged in user to copy arbitrary files to system directories with system permissions. This is an example of the consequences of not installing software upgrades. Credit: Dark Reading
Warning About Online File Converter Sites
There are a number of web sites out there that allow you to convert files from one format to another online. This means that you have to upload your information to the website. Do you know what the website does with that file? What their security practices are? Whether they keep the file? Who they share it with? You may remember that the NSA lost a new piece of malware that they spent millions on because a developer uploaded it, in this case, to an antivirus vendor’s website and they used it to develop code to detect it. Make sure you understand what happens if you use some online tool. Credit: Cyware
Is China Helping or Hurting Putin?
The US and other friends are trying hard to make life difficult for Moscow by not allowing companies to sell chips to them. The result is that Moscow is turning to China. A Russian newspaper is reporting that up to 40% of the chips that they are getting from China are defective. The newspaper said that the failure rate before Putin’s invasion of Ukraine was 2%. This means that Moscow has to test every chip before using it. Good for us, bad for Moscow. Intentional by China? Don’t know. Could just be that China is taking advantage of Moscow and ships everything that is not nailed down. Credit: Yahoo News
Typosquatting Campaign Imitates 27 Brands to Push Malware
A massive, malicious campaign is underway using over 200 typosquatting domains that impersonate twenty-seven brands to trick visitors into downloading various Windows and Android malware. The hackers register sites that are similar to real sites to con people into visiting the fake sites and downloading malware. One way to deal with this is by using DNS filtering. Credit: Bleeping Computer