UK businesses "unprepared for a cyber shock" Lockton report shows half of UK businesses expect to be entirely operational 48 hours after a large-scale cyber security breach. A report by Lockton has revealed that UK businesses are severely "unprepared for a cyber shock". The broker found – in the study that polled 200 chief financial officers, chief risk officers and chief information officers as well as directors of risk and general legal counsel – that 50% expect to be entirely operational 48 hours after a large-scale cyber security breach. Just 2% of UK businesses think a breach will affect them for more than 10 days.
http://www.itsecurityguru.org/2017/08/15/uk-businesses-unprepared-cyber-shock/ US military spies: We'll capture enemy malware, tweak it, lob it right back at our adversaries The US Defense Intelligence Agency has vowed to capture enemy malware, study and customize it, and then turn the software nasties on their creators. Speaking at the US Department of Defense Intelligence Information Systems (
DoDIIS) conference in Missouri on Monday, the head of the agency Lieutenant General Vincent Stewart told attendees that the US was tired of just taking hits from outside players, can so it was planning to strike back.
http://www.itsecurityguru.org/2017/08/15/us-military-spies-well-capture-enemy-malware-tweak-lob-right-back-adversaries/ If Anonymous 'pwnd' the Daily Stormer, they did a spectacularly awful job Doubts have been cast over claims that hacktivists have taken control of neo-Nazi website the Daily Stormer. Elements of the loose hacker collective Anonymous supposedly took control of the site as a reprisal for the death of anti-racist protestor Heather Heyer after she was struck by a car during protests by white supremacists in Charlottesville, Virginia. According to the most recent "post" on the site, the hackers were ostensibly threatening to dox the Daily Stormer's Andrew Anglin and users of the controversial site. In short, the hack is likely a hoax.
http://www.itsecurityguru.org/2017/08/15/anonymous-pwnd-daily-stormer-spectacularly-awful-job/ Cloudflare is helping defend a neo-Nazi website from hackers, even as Google and GoDaddy are distancing themselves from it Even as several tech companies moved to disassociate themselves from the Daily Stormer on Monday, one tech firm refused to cancel its dealings with the neo-Nazi website — Cloudflare. A content delivery network that helps to protect sites from denial of service attacks, Cloudflare continues to support both
DailyStormer.com and
AltRight.com, another white supremacist site, through its service.
http://www.itsecurityguru.org/2017/08/15/cloudflare-helping-defend-neo-nazi-website-hackers-even-google-godaddy-distancing/ How Just Opening A Malicious PowerPoint File Could Compromise Your PC A few months back we reported how opening a simple MS Word file could compromise your computer using a critical
vulnerability in Microsoft Office. The Microsoft Office remote code execution vulnerability (CVE-2017-0199) resided in the Windows Object Linking and Embedding (OLE) interface for which a
patch was issued in April this year, but threat actors are still abusing the flaw through the different mediums. Security researchers have spotted a new malware campaign that is leveraging the same exploit, but for the first time, hidden behind a specially crafted PowerPoint (PPSX) Presentation file. According to the researchers at Trend Micro, who
spotted the malware campaign, the targeted attack starts with a convincing spear-phishing email attachment, purportedly from a cable manufacturing provider and mainly targets companies involved in the electronics manufacturing industry.
http://www.itsecurityguru.org/2017/08/15/just-opening-malicious-powerpoint-file-compromise-pc/
