Security News > 2021 > May

A never-before-documented Brazilian banking trojan, dubbed Bizarro, is targeting customers of 70 banks scattered throughout Europe and South America, researchers said. Once installed, it kills all running browser processes to terminate any existing sessions with online banking websites - so, when a user initiates a mobile banking session, they have to sign back in, allowing the malware to harvest the details.

The CISOs aren't OK. A new survey showed the pandemic has ratcheted up job pressure to "Extreme stress" levels among chief information security officers, and it's left them grappling for coping mechanisms ranging from workouts to narcotics. OneLogin released the results of its survey of 250 tech leaders around the world, which found 77 percent of respondents thought the pandemic had increased their work stress, while 67 percent said they were working more hours.

Ireland's Health Service Executive was hit by a ransomware attack late last week, forcing the organization to shut down its IT system on Friday. By Sunday it was learned that the Department of Health had also been attacked by what was assumed to be the same gang.

Cloud Security Posture Management firm Aqua Security has analyzed the anonymized cloud configuration data of hundreds of its clients over a period of 12 months. The intent was to discover the size of the cloud misconfiguration problem, and the response from industry to known issues.

The murky world of ransomware criminals is all aflutter after it was revealed that Ireland's health services were hit by a second attack hot on the heels of one that took out its hospitals, while ransomware insurance refusenik Axa was itself hit with ransomware after its French branch vowed to stop buying off criminals on behalf of its customers. French-headquartered insurance company Axa suffered ransomware attacks against four of its subsidiaries in east Asia, according to the Financial Times.

Network-attached storage appliance manufacturer QNAP Systems says it is investigating reports of malicious attacks targeting NAS devices. Known worldwide for its NAS and professional network video recorder solutions, the Taiwan-based company on Friday issued two advisories to warn of a new wave of attacks targeting its users, urging them to ensure that their NAS devices are not exposed to the Internet.

Proof-of-concept exploit code has been released over the weekend for a critical wormable vulnerability in the latest Windows 10 and Windows Server versions. The bug, tracked as CVE-2021-31166, was found in the HTTP Protocol Stack used by the Windows Internet Information Services web server as a protocol listener for processing HTTP requests.

Though most of the EO is aimed at government agencies, vendors and developers will have to design all of their products with a greater focus on security, according to Finite State. With ransomware attacks increasingly impacting businesses, government agencies and critical infrastructure, President Joe Biden last week signed an executive order designed to shore up the nation's cyber security.

France-based insurance giant AXA has confirmed that some of its operations in Asia have been impacted by a ransomware attack. A cybercrime gang that uses a piece of ransomware named Avaddon appears to be behind the attack.

Ireland's High Court on Friday rejected Facebook's bid to block an investigation that could potentially stop data transfers from the European Union to the United States. The Irish regulator launched its inquiry last summer after a top EU court decision over Facebook invalidated a key online data arrangement between Europe and the US. "The DPC decided to commence an 'own volition' inquiry ... to consider whether the actions of Facebook Ireland Ltd in making transfers of personal data relating to individuals in the European Union/European Economic Area are lawful, and whether any corrective power should be exercised by the DPC in that regard," the court statement noted.