Cyber Security News highlights this week
- Google Chrome is marking sites as “not secure” that don’t use HTTPS.
- Singapore’s largest healthcare group “SingHealth” suffered a major data breach where more than 1.5 Million patient records got stolen.
- Russia tried to hack three US Govt. 2018 midterm election candidates, said Microsoft.
- A group of hackers referred as “MoneyTacker” stole $1 Million from PIR Bank of Russia.
- Oracle patched the vulnerability of Solaris enterprise OS that could allow attackers to edit code.
- Apache Tomcat patched the serious security vulnerabilities.
- Israel is looking to work with India on cyber security.
In-Short Overview:
Google Chrome starts marking all non-HTTPS sites as “Not Secure”. Any website that doesn’t load with a green padlock or a “secure” message in the browser’s address bar will be flagged as insecure. When you will update your Chrome browser, you’ll start to see the warnings.
Read More:
Google Chrome starts marking all non-HTTPS sites as “Not Secure”(Google, July 24, 2018)
Singapore’s largest health group SingHealth has suffered a massive data breach that allowed hackers to snatch personal information on 1.5 million patients who visited SingHealth clinics between May 2015 and July 2018. SingHealth is the largest healthcare group in Singapore with 2 tertiary hospitals, 5 national specialty, and eight polyclinics.
Read More:
Singapore suffers ‘most serious’ data breach, affecting 1.5M healthcare patients including Prime Minister (ZDNet, July 20, 2018)
On 19, July 2018 (Thursday), Tom Burt, a vice president of customer security at Microsoft said Russia has already tried to hack 3 campaigns in the 2018 election. Tom Burt didn’t disclose the names of the candidates targeted by the hackers.
Read More:
Microsoft Said Russia has already tried to hack 3 campaigns in the 2018 election (The Hacker News, July 19, 2018)
A group of hackers (MoneyTacker) exploited outdated router to steal $1 Million from PIR Bank of Russia. It was a Cisco 800 Series Router, with iOS 12.4, for which support ended in 2016.
Read More:
Bank Hackers Exploit Outdated Router to Steal $1 Million (Bank Info Security, July 20, 2018)
Oracle has patched a security vulnerability which was found by researchers at Trustwave in Solaris enterprise OS that could allow attackers to edit code in the memory and exploit it to gain full root control over a machine.
Read More:
Oracle patches bug in Solaris OS that could allow malicious code execution (ZDNet, July 24, 2018)
Apache Tomcat has patched important security vulnerabilities which were found in its Tomcat application server. One of which could allow a remote attacker to obtain sensitive information.
Read More:
Apache Tomcat Patches Important Security Vulnerabilities (The Hacker News, July 24, 2018)
Israel is planning to support and collaborate with the Indian Government and agencies to prevent cyber attacks in the future.
Read More:
Israel looking to work with India on cyber security (DNA India, July 25, 2018)