AboutDFIR.com – The Definitive Compendium Project
Digital Forensics & Incident Response

Blog Post

InfoSec News Nuggets 10/10/2022

Microsoft publishes new report on holistic insider risk management 

The risk landscape for organizations has changed significantly in the past few years. The amount of data captured, copied, and consumed is expected to grow to more than 180 zettabytes through 2025.1  Traditional ways of identifying and mitigating risks don’t always work. Historically, organizations have focused on external threats; however, risks from within the organization can be just as prevalent and harmful. These internal risks include unprotected and ungoverned data, accidental or intentional data oversharing, as well as the risks for failing to meet ever-changing regulations. Not to mention, with more than 300 million people working remotely, data is being created, accessed, shared, and stored outside of the traditional borders of business. 

 

LofyGang hackers built a credential-stealing enterprise on Discord, NPM 

The ‘LofyGang’ threat actors have created a credential-stealing enterprise by distributing 200 malicious packages and fake hacking tools on code hosting platforms, such as NPM and GitHub. Researchers highlighted some of these packages in recent reports by Kaspersky, Jfrog, and Sonatype, who spotted them in supply chain attacks using typo-squatted package names. Many of the malicious packages have been reported and removed, while others are still available for download at the time of writing this. There’s even a dedicated project to search for and track malicious LofyGang packages on GitHub. 

 

Biden signs order to implement EU-U.S. data privacy framework 

U.S. President Joe Biden on Friday signed an executive order to implement a European Union-United States data transfer framework announced in March that adopts new American intelligence gathering privacy safeguards. The deal seeks to end the limbo in which thousands of companies found themselves after Europe’s top court threw out two previous pacts due to concerns about U.S. surveillance. U.S. Commerce Secretary Gina Raimondo told reporters the executive order “is the culmination of our joint effort to restore trust and stability to transatlantic data flows” and “will ensure the privacy of EU personal data.” 

 

The iPhone 14 keeps calling 911 on rollercoasters 

The iPhone 14’s new Crash Detection feature, which is supposed to alert authorities when it detects you’ve been in a car accident, has an unexpected side effect: it dials 911 on rollercoasters. According to a report from The Wall Street Journal, the feature has had law enforcement sent to amusement parks on numerous occasions after mistaking a thrill ride’s twists, turns, and hard braking for a real emergency. Apple rolled out Crash Detection with its new iPhone 14Watch Series 8SE, and Ultra last month, equipping the devices with a gyroscopic sensor and high-g accelerometer trained on the impact experienced with simulated car crashes. If the sensors detect that you’ve been in an accident, your iPhone will display an alert and call emergency services if you don’t dismiss it within 20 seconds. 

 

91% of Cyber Pros Experience Mental Health Challenges at Work 

More than nine in 10 (91%) cybersecurity professionals have experienced mental health challenges at work during the past two years, according to research by Australian cybersecurity services company SekuroThe survey of 101 cybersecurity professionals analyzed how increasing cyber-threats following COVID-19 affected the mental state of those working in the sector. Over half (51%) of respondents said their mental health struggles were caused by poor culture and/or management styles at work, while 50% attributed these problems to the high-stress nature of their job. Other significant factors included lack of funding for security (41%) and lack of necessary skills within the team (37%). Additionally, more than a third of respondents said that ‘imposter syndrome’ contributed to their mental health issues, which the authors observed could be attributed to factors like unrealistic expectations and lack of empathy from teams about how to address challenges. 

 

Uninstall these malicious mobile apps now, Facebook warns 

Facebook says it has spotted hundreds of malicious mobile apps that abuse its single sign-on (SSO) feature to steal people’s login credentials. While it has reported the apps to Google and Apple, the operators of the world’s two largest mobile app stores, users who have already installed these apps will remain under threat until they are deleted. In a blog post, the social media giant explained it identified over 400 malicious apps on Android and iOS. These apps range from fake VPNs to photo editors, mobile games, business apps, utility apps, and health and lifestyle services. 

Related Posts