Cyber Security News - What did you miss?
Cyber Security News || 2nd March. intro 00:00 Samsung Galaxy Phones Breach 00:09 Moscow Exchange cyber-attack 00:39 Schneider and GE Digital's SCADA software flaws 01:35 Bridgestone Security Attack 02:51 01 One hundred million Samsung Galaxy phones have a flaw in the hardware encryption feature. A group of academics from Tel Aviv University has revealed how to fix "severe" design flaws that could have led to the theft of secret cryptographic keys from about 100 million Android-based Samsung phones. Scientists who looked at how Samsung's Galaxy S8, S9, S10, S20, and S21 flagship phones use Android's hardware-backed Keystore found some problems with the way it works. =============================================================================================================================== 02 An attack on the Moscow Exchange caused it to fall down The website for the Moscow Stock Exchange was down for one day. A group of hackers backed by Kyiv officials has claimed responsibility for the outage. The Ukraine IT Army said on Telegram that it took them just five minutes to make the site inaccessible, which is how long it took them. NetBlocks, a company that monitors internet connectivity around the world, told Forbes that the Moscow Exchange website is down, but they don't know what caused it or how long it was down. On Twitter last week, Ukraine's deputy prime minister, , Mykhailo Fedorov, said that the IT Army was going to be formed, and he gave a link to a list of popular Russian websites for the hackers to attack. List: The website for energy company Gazprom, oil producer Lukoil, three banks, and a lot of government websites were all on the list. =============================================================================================================================== 03 CISA says that Schneider and GE Digital's SCADA software has flaws that are very dangerous. Cybersecurity and Infrastructure Security Agency (CISA) issued an industrial control system (ICS) advisory last week because of multiple vulnerabilities in Schneider Electric's Easergy medium voltage protection relays, which are used to protect power lines. It says that exploiting these flaws could give away device credentials, cause a denial of service, or allow an attacker to take full control of the relay. The agency said this in a bulletin on February 24, 2022. "This could mean that your electrical network could be exposed to dangerous things." Easergy P3 versions before v30.205 and Easergy P5 versions before v01.401.101 have two problems that are very bad. As you can see, the flaws are detailed as below: CVE-2022-22722 (CVSS score: 7.5) – Use of hardcoded credentials that could be used to see and change traffic on the device. Using a special packet to send to the relay over the network could cause a programme to crash or run arbitrary code. This is called a buffer overflow vulnerability. =============================================================================================================================== 04 Bridgestone Americas has reportedly shut down many of its manufacturing and retreading plants because of a possible cyber-attack that happened this morning. According to reports, the car company says it can't yet say for sure what the scope or nature of any possible incident might be. "Bridgestone Americas said this in an email to a number of media outlets." "Bridgestone Americas is looking into a possible security breach." Since we learned about the possible attack in the early hours, we have started a thorough investigation to get the facts quickly and make sure our IT systems are safe. Out of an abundance of caution, we disconnected many of our manufacturing and retreading plants in Latin America and North America from our network. We did this to keep and prevent any possible damage from happening.
Cyber Security News || 2nd March. intro 00:00 Samsung Galaxy Phones Breach 00:09 Moscow Exchange cyber-attack 00:39 Schneider and GE Digital's SCADA software flaws 01:35 Bridgestone Security Attack 02:51 01 One hundred million Samsung Galaxy phones have a flaw in the hardware encryption feature. A group of academics from Tel Aviv University has revealed how to fix "severe" design flaws that could have led to the theft of secret cryptographic keys from about 100 million Android-based Samsung phones. Scientists who looked at how Samsung's Galaxy S8, S9, S10, S20, and S21 flagship phones use Android's hardware-backed Keystore found some problems with the way it works. =============================================================================================================================== 02 An attack on the Moscow Exchange caused it to fall down The website for the Moscow Stock Exchange was down for one day. A group of hackers backed by Kyiv officials has claimed responsibility for the outage. The Ukraine IT Army said on Telegram that it took them just five minutes to make the site inaccessible, which is how long it took them. NetBlocks, a company that monitors internet connectivity around the world, told Forbes that the Moscow Exchange website is down, but they don't know what caused it or how long it was down. On Twitter last week, Ukraine's deputy prime minister, , Mykhailo Fedorov, said that the IT Army was going to be formed, and he gave a link to a list of popular Russian websites for the hackers to attack. List: The website for energy company Gazprom, oil producer Lukoil, three banks, and a lot of government websites were all on the list. =============================================================================================================================== 03 CISA says that Schneider and GE Digital's SCADA software has flaws that are very dangerous. Cybersecurity and Infrastructure Security Agency (CISA) issued an industrial control system (ICS) advisory last week because of multiple vulnerabilities in Schneider Electric's Easergy medium voltage protection relays, which are used to protect power lines. It says that exploiting these flaws could give away device credentials, cause a denial of service, or allow an attacker to take full control of the relay. The agency said this in a bulletin on February 24, 2022. "This could mean that your electrical network could be exposed to dangerous things." Easergy P3 versions before v30.205 and Easergy P5 versions before v01.401.101 have two problems that are very bad. As you can see, the flaws are detailed as below: CVE-2022-22722 (CVSS score: 7.5) – Use of hardcoded credentials that could be used to see and change traffic on the device. Using a special packet to send to the relay over the network could cause a programme to crash or run arbitrary code. This is called a buffer overflow vulnerability. =============================================================================================================================== 04 Bridgestone Americas has reportedly shut down many of its manufacturing and retreading plants because of a possible cyber-attack that happened this morning. According to reports, the car company says it can't yet say for sure what the scope or nature of any possible incident might be. "Bridgestone Americas said this in an email to a number of media outlets." "Bridgestone Americas is looking into a possible security breach." Since we learned about the possible attack in the early hours, we have started a thorough investigation to get the facts quickly and make sure our IT systems are safe. Out of an abundance of caution, we disconnected many of our manufacturing and retreading plants in Latin America and North America from our network. We did this to keep and prevent any possible damage from happening.