ITSEC News @itsecbot@schleuss.online

#introductions This bot is posting ITSEC related news from all over the web - usually refreshes every few minutes with new stories. If you would like to see more sites included, write to the maintainer @emanuel - you might also be interested in @vulnbot

Mac users targetted by Lazarus ‘fileless’ Trojan - The Lazarus hacking group are trying to sneak a ‘fileless’ Trojan on to Apple computers, disguised... more: https://nakedsecurity.sophos.com/2019/12/06/mac-users-targetted-by-lazarus-fileless-trojan/ #filelessmalware #cryptocurrency #lazarusgroup #nukesped #malware #apple #macos

New ransomware attacks target your NAS devices, backup storage - Ransomware attacks targeting these devices have surged in recent months. more: https://www.zdnet.com/article/new-ransomware-attack-targets-your-nas-devices-backup-storage/#ftag=RSSbaffb68

US parents file class action against TikTok over children’s privacy - Collecting children's data without their guardians' consent is illegal under COPPA and already ear... more: https://nakedsecurity.sophos.com/2019/12/06/us-parents-file-class-action-against-tiktok-over-childrens-privacy/ #childrensprivacy #socialnetworks #childpredators #childrenonline #sherrileshore #lauralopez #musical.ly #law&order #bytedance #children #privacy #mobile #tiktok #china #coppa #pii

Instagram trying to protect kids by getting dates of birth from new users - It's about showing age-appropriate content, it said. Though staying safe from child-privacy lawsui... more: https://nakedsecurity.sophos.com/2019/12/06/instagram-trying-to-protect-kids-by-getting-dates-of-birth-from-new-users/ #underagechildren #age-appropriate #socialnetworks #dateofbirth #instagram #facebook #birthday #children #policies #privacy #minors #policy #nspcc

OpenBSD devs patch authentication bypass bug - One of the internet's most popular free operating systems allowed attackers to bypass its authenti... more: https://nakedsecurity.sophos.com/2019/12/06/openbsd-devs-patch-authentication-bypass-bug/ #operatingsystems #securitythreats #vulnerability #-schallenge #openbsd #cves

US President Tells NATO Huawei Is a “Security Risk” - US President Donald Trump described Huawei as a “security risk” after NATO officials emphasized the ... more: https://news.softpedia.com/news/us-president-tells-nato-huawei-is-a-security-risk-528486.shtml #security

$5 Million Bounty set by US For Hacker behind Zeus Banking Thefts - Maksim Yakubets and his crew stole tens of millions using Zeus and Dridex, with victims including ... more: https://www.itsecurityguru.org/2019/12/06/5-million-bounty-set-by-us-for-hacker-behind-zeus-banking-thefts/?utm_source=rss&utm_medium=rss&utm_campaign=5-million-bounty-set-by-us-for-hacker-behind-zeus-banking-thefts #cyberbites

Company sued by Facebook for Running Bad Ads - In a lawsuit filed today, Facebook alleges that a Chinese company used malware to compromise user ... more: https://www.itsecurityguru.org/2019/12/06/company-sued-by-facebook-for-running-bad-ads/?utm_source=rss&utm_medium=rss&utm_campaign=company-sued-by-facebook-for-running-bad-ads #cyberbites

Ransomware attack at Shakespeare Theatre - A ransomware attack over the weekend has taken down the ticketing system and patron database for t... more: https://www.itsecurityguru.org/2019/12/06/ransomware-attack-at-shakespeare-theatre/?utm_source=rss&utm_medium=rss&utm_campaign=ransomware-attack-at-shakespeare-theatre #cyberbites

HackerOne Cookie leak allows access to vulnerability reports - Bug bounty platform provider HackerOne Tuesday disclosed that one of its own security analysts mis... more: https://www.itsecurityguru.org/2019/12/06/hackerone-cookie-leak-allows-access-to-vulnerability-reports/?utm_source=rss&utm_medium=rss&utm_campaign=hackerone-cookie-leak-allows-access-to-vulnerability-reports #cyberbites

CyrusOne attacked by evil ransomware - Data center provider CyrusOne was reportedly hit with a combination ransomware/data breach involvi... more: https://www.itsecurityguru.org/2019/12/06/cyrusone-attacked-by-evil-ransomware/?utm_source=rss&utm_medium=rss&utm_campaign=cyrusone-attacked-by-evil-ransomware #cyberbites

FBI: Don’t Forget to Change Your Fridge Password - After discussing a series of security measures for smart TVs, the FBI is back with more tips on how ... more: https://news.softpedia.com/news/fbi-don-t-forget-to-change-your-fridge-password-528484.shtml #security

CB-K19/1041 - OpenBSD ist ein Unix-artiges Betriebssystem, abgeleitet von BSD-Unix.
Ein lokaler oder entfernter ... more: https://www.bsi.bund.de/SharedDocs/Warnmeldungen/DE/CB/2019/12/warnmeldung_cb-k19-1041.html

FBI recommends that you keep your IoT devices on a separate network - The FBI also recommends changing factory-set (default) passwords and not allowing an IoT device's ... more: https://www.zdnet.com/article/fbi-recommends-that-you-keep-your-iot-devices-on-a-separate-network/#ftag=RSSbaffb68

New Vulnerability Lets Attackers Hijack VPN Connections on Most UNIX Systems - Security researcher William J. Tolley has reported a new vulnerability that appears to allow attacke... more: https://news.softpedia.com/news/new-vulnerability-lets-attackers-hijack-vpn-connections-on-most-unix-systems-528481.shtml #security

New vulnerability lets attackers sniff or hijack VPN connections - OpenVPN, WireGuard, and IKEv2/IPSec VPNs are vulnerable to attacks. more: https://www.zdnet.com/article/new-vulnerability-lets-attackers-sniff-or-hijack-vpn-connections/#ftag=RSSbaffb68

Ransomware Attack Hits Data Center Provider CyrusOne: Report - Security experts say the incident shows that cybercriminals are using ransomware to hit companies... more: https://threatpost.com/ransomware-data-center-cyrusone/150873/ #datacenterransomware #ransomwareattack #revilransomware #ransomware #sodinokibi #cyrusone #malware #hacks #hack

Facebook sues Chinese malware operator for abusing its ad platform - Facebook sues ILikeAd and two Chinese nationals for using Facebook ads to trick users into downloa... more: https://www.zdnet.com/article/facebook-sues-chinese-malware-operator-for-abusing-its-ad-platform/#ftag=RSSbaffb68

Bitcoin battered: The worst crypto catastrophes of 2019 - Millions in cryptocurrency stolen, exit scams, and countless arrests were made in connection to cr... more: https://www.zdnet.com/article/bitcoin-battered-the-worst-crypto-catastrophes-of-2019/#ftag=RSSbaffb68

Apple Explains Mysterious iPhone 11 Location Requests - KrebsOnSecurity ran a story this week that puzzled over Apple‘s response to inquiries about a potent... more: https://krebsonsecurity.com/2019/12/apple-explains-mysterious-iphone-11-location-requests/ #alittlesunshine #ultrawideband #zackwhittaker #techcrunch #iphone11 #apple