This Week in Cybersecurity News
Trojan that Hides Inside Images Infects Healthcare Organizations by Lucian Constantin, IDG News Service
The Stegoloader trojan, originally discovered in 2012 has made a resurgence in a campaign targeting healthcare organizations in the U.S. Hidden within a PNG image, the trojan is designed to steal information and passwords from infected systems but has additional modules that extend its functionality.
Study: Leaked Credentials on Pastebin, Similar Sites, Linked to 47 Gov’t Agencies by Danielle Walker, SC Magazine
Log-in credentials linked to 47 U.S. government agencies across 89 unique domains have been found through a study of 17 paste sites including Pastebin. The data was collected and analyzed between November 2013 and November 2014. The agency with the widest exposure of credentials was the Department of Energy with email/password combinations for nine different domains available on the open Web.
Hackers Exploit Fresh PC Hijack Bug in Adobe Flash Player, the Internet’s Screen Door by Shaun Nichols, The Register
A patch has been issued by Adobe to fix CVE-2015-3113 which allows attackers to take control of a system if it opens a malicious Flash file. Attackers have been exploiting the file in the wild targeting Internet Explorer on Windows 7 and Firefox on Windows XP. Users of Chrome and Windows 8 users running Internet Explorer will automatically receive the updated version of Flash Player but users on other browsers and systems should install the patch as soon as possible.
Hack Attack Leaves 1,400 Airline Passengers Grounded by Arjun Kharpal, CNBC
10 flights and 1,400 passengers were grounded by Polish airline, LOT after its computer system was taken offline by a DDoS attack for five hours. The airline was unable to send details such as the route, weather and other important information to planes before takeoff leaving them unable to fly.
eBay Patches Input, XSS, CSRF Vulnerabilities in Magento E-Commerce Platform by Charlie Osborne, ZDnet
eBay has patched three serious vulnerabilities discovered within its e-commerce system, Magento. The now patched vulnerabilities were ranked as medium flaws. The flaws included two Cross-Site Request Forgery (CSRF) issues and a vulnerability related to input validation. The vulnerabilities were submitted through the company’s bug bounty program in March.
ICYMI Threat Geek Post of the Week: Reconcilable Difference: The Need for Shared Knowledge, Visibility and Trust between Boards and IT Security Teams by Jim Jaeger