InfoSec Week 50, 2016

Posted on 17 December 2016
SUBSCRIBE TO A WEEKLY NEWSLETTER!

"Popcorn Time" ransomware promises free decryption keys to victims who infect others. To get their important files back, victims can pay a ransom to the cyber criminal or infect two other people and have them pay the ransom to get a free decryption key. https://threatpost.com/ransomware-gives-free-decryption-keys-to-victims-who-infect-others/122395/

Nymaim malware family is using a combination of techniques like MAC address, custom file and string hashes, to uncover virtual environment. https://nakedsecurity.sophos.com/2016/12/13/nymaim-using-mac-addresses-to-uncover-virtual-environments-and-bypass-antivirus/

Customers of Liechtenstein banks blackmailed after data breach. "The cyber criminals are allegedly demanding up to 10 per cent of account balances in order to avoid disclosing customers’ information." Do not know if somebody actually paid. http://securityaffairs.co/wordpress/53891/data-breach/liechtenstein-banks-ransomware.html

Yahoo massive breach - 1 billion accounts were exposed. The breach took place back in August 2013, and "may have included names, email addresses, telephone numbers, dates of birth, hashed passwords (using MD5) and, in some cases, encrypted or unencrypted security questions and answers". Maybe it's worth to mention, that Yahoo execs installed linux backdoor within infrastructure in 2015 https://diracdeltas.github.io/blog/surveillance/ https://yahoo.tumblr.com/post/154479236569/important-security-information-for-yahoo-users


Comments !