Tag Archive for: ‘led

Engineer’s Failure to Update Plex Software Led to Massive Data Breach

/in


Mar 07, 2023Ravie LakshmananPassword Security / Software Update

Lastpass Data Breach

The massive breach at LastPass was the result of one of its engineers failing to update Plex on their home computer, in what’s a sobering reminder of the dangers of failing to keep software up-to-date.

The embattled password management service last week revealed how unidentified actors leveraged information stolen from an earlier incident that took place prior to August 12, 2022, along with details “available from a third-party data breach and a vulnerability in a third-party media software package to launch a coordinated second attack” between August and October 2022.

The intrusion ultimately enabled the adversary to steal partially encrypted password vault data and customer information.

The second attack specifically singled out one of the four DevOps engineers, targeting their home computer with a keylogger malware to obtain the credentials and breach the cloud storage environment.

This, in turn, is said to have been made possible by exploiting a nearly three-year-old now-patched flaw in Plex to achieve code execution on the engineer’s computer, the streaming media service told The Hacker News in a statement.

The vulnerability in question is CVE-2020-5741 (CVSS score: 7.2), a deserialization flaw impacting Plex Media Server on Windows that allows a remote, authenticated attacker to execute arbitrary Python code in the context of the current operating system user.

Plex Software

“This issue allowed an attacker with access to the server administrator’s Plex account to upload a malicious file via the Camera Upload feature and have the media server execute it,” Plex said in an advisory released at the time.

Discover the Latest Malware Evasion Tactics and Prevention Strategies

Ready to bust the 9 most dangerous myths about file-based attacks? Join our upcoming webinar and become a hero in the fight against patient zero infections and zero-day security events!

RESERVE YOUR SEAT

The shortcoming, which was discovered and reported to Plex by Tenable in March 2020, was addressed by Plex in version 1.19.3.2764 released on May 7, 2020. The current version of Plex Media Server is 1.31.1.6733.

“Unfortunately, the LastPass employee…

Source…

Mastodon saw huge growth, Facebook led social media charts in traffic: Cloudflare’s 2022 Report

/in


Cloudflare, an American content delivery network and DDoS mitigation company has now shared its year-in-review of 2022, highlighting some of the major internet trends of 2022, including Google reaching the top spot, Instagram replacing Twitter in the social media category, and more.

According to the report, almost 5 billion people have used the internet in 2022. Cloudflare’s report consists of internet data from three different areas such as traffic, adaptation, and security. This report consists of data from January 2nd to November 26, 2022, and the company has said to update the same with the remaining data from 2022 by early 2023.

Internet traffic trends 2022

According to Cloudflare’s report, there is an increase in internet users by 23 per cent in 2022. According to the graph shared by the company, there has been a steady growth in the number of internet users since mid-January 2022. Similarly, there is also a sharp increase in the number of internet users since July.

Most popular internet services of 2022

1. Google

2. Facebook

3. Apple, TikTok (tie)

5. YouTube

6. Microsoft

7. Amazon Web Services

8. Instagram

9. Amazon

10. iCloud, Netflix, Twitter, Yahoo (tie)

Binance has been the go-to cryptocurrency service provider of 2022, similarly, Facebook has been the most popular social media platform of this year. The report also confirms that there has been an increase in bot traffic this year, and this also varies from country to country and 1/3rd of internet traffic comes from bots.

There have been several internet service outages this year, and the biggest outage of this year came from Canada, where, Roger Cables complete loss the traffic and it took over 24 hours to fully restore the network.

When it comes to the adoption of new internet technologies, people have embraced Starlink, a satellite-based wireless internet provider by Elon Musk. Mastodon, a microblogging platform has also seen a massive adaptation, especially after Elon Musk’s Twitter acquisition. There has also been an increase in the adaption rate of IPv6 (internet protocol version 6).

Lastly, the report speaks about internet security, “90 per cent of mitigated traffic used the WAF or DDoS mitigation…

Source…

CIA’s ‘weak’ websites led to capture execution of assets in Iran, China: Report

/in


A flaw in the ‘covert’ websites of the Central Intelligence Agency compromised the US spy agency’s assets in countries like Iran and China, according to a report by security researchers. The researchers claimed that the internet security flaw led to the deaths of more than two dozen US assets in China in 2011 and 2012 while other assets in Iran were either executed or imprisoned by the regime. The research carried out by security experts at the University of Toronto’s Citizen Lab also said that the flaw could have been detected by an amateur sleuth, British website The Guardian reported. The security experts began probe following a tip from a Reuters journalist.

Joel Schectmann, the Reuters journalist had reportedly tipped the research group about a CIA asset in Iran who had been captured and later served seven years in prison after using the ‘fatally insecure network’. In 2018, two Yahoo News reporters first reported that a system used by the agency to communicate with its assets had been compromised by Iran and China.

However, the researchers said it was not publishing the full report as a move to avoid putting more CIA assets at risk. But the revelations have led to the agency’s handling of digital safety measures to come under scanner. According to the report, at least 885 websites were identified to have been used by the CIA. They were purportedly websites concerned with news, healthcare, weather etc.

The researcher group said an amateur sleuth could have mapped the entire CIA network and attributed to the US administration. According the report, these websites were active between 2004 and 2013. They were not used by the agency recently but a subset of these websites were still linked to the active employees or assets.

Calling out the ‘reckless construction’ of the infrastructure of CIA, the Citizen Lan claimed that the loophole led to the identification and the execution of the agency assets, while risking the lives of countless other individuals linked to it.

A spokesperson of the CIA said the agency takes it obligations to protect the people work with it extremely…

Source…

Smart Ship© Hub , Singapore headquartered B2B (SaaS) Maritime digital platform raises pre series round of $ 2.5M led by Ideaspring Capital and StartupXseed ventures

/in


SINGAPORE, Aug. 4, 2022 /PRNewswire/ — Smart Ship Hub(SSH) is a ready to deploy digital platform for global maritime logistics. SSH is disrupting the maritime industry the way avionics did in airline industry. Cloud based and on demand, SSH provides “unified platform and a single source of truth” for Ship owners, Ship Operators, Charter Parties, maritime insurers, Port authorities. The platform caters for merchant ships, naval ships, oil rigs, river going barges and fishing vessels.

Left to right, Prashant, Head Delivery, Joy Basu (CEO), Vikram, CTO
Left to right, Prashant, Head Delivery, Joy Basu (CEO), Vikram, CTO

Global maritime , despite being the largest mode of transport suffers from operational inefficiencies, lack of visibility, transparency leading to commercial leakages. Ship owners, operators, chartering agencies, insurance companies are now focussed on technology backed smarter processes to ensure “High vessel uptime , Sea worthiness and Predictability” with digital systems.

SSH’s “ship-to-shore and shore-to-ship” based management of fleet using smart sensors, IOT, big data is saving substantial operational costs while enhancing voyage efficiencies . The digital platform is helping predict possible machinery down time, malfunctioning, identify performance deviations, vessel routes to improve voyage and vessel performance. SSH’s ” Marine Insights ” is a unique maritime big data platform providing actionable intelligence, smart alerts and performance advisory for entire fleet using millions of records.

SSH’s global customers are able to achieve their target of ” minimal breakdown maintenance”, “optimum fuel utilization”, “staying in total compliance including for emissions”, ” optimize costs with condition based maintenance” and a much higher level of ” voyage control” . “Performance Advisory” feature is reducing number of incidents for these ships while saving maintenance and fuel costs . Future ready maritime companies are helping in creation of a connected ecosystem: connected ships,  shared services (routes, capacity, procurement) and “pay per use” model with SSH digital.

Joy Basu , Founder of Smart Ship Hub adds: “Digital platforms will play a fundamental role in disrupting maritime legacy processes. Inefficient…

Source…