Cyber News Summary

There have been several high profile data breaches over the past week.

The group behind the $1 billion theft from financial institutions in 2014 is now targeting the hospitality and restaurant sector. Mobile network provider Three confirmed eight cases of upgrade fraud, though roughly 133,000 accounts may also have been compromised. Adult Friend Finder data was leaked which affected 339 million accounts with passwords stored in plain text. It appears that iPhone’s and iPads are still susceptible to passcode bypass vulnerabilities that involve the use of Siri.

Carbanak switches focus to hospitality sector

The gang behind Carbanak, who stole $1 billion from financial institutions in 2014, have switched focus to the hospitality and restaurant sector. Call centers have been targeted with elaborate ploys to get customer service representatives to accept emails with malicious macro-laced documents. This latest campaign is believed to have started in early October 2016. Read the rest of the article here.

What can I do to protect myself and my organisation?

1. adsfADFdf
2. adfADFdafF
3. ADFadfADFdf
4. ashfdoAHFODAHF

Massive data breach at Three

Fraudsters managed to access data at the UK mobile phone network provider Three. Eight customers were unlawfully upgraded to new devices that were stolen and sold by fraudsters. 133,827 accounts were breached. Three maintains that the primary purpose of the fraudsters was to steal upgraded phones rather than customer data. Read the rest of the article here.

What can I do to protect myself and my organisation?

1. adsfADFdf
2. adfADFdafF
3. ADFadfADFdf
4. ashfdoAHFODAHF

Siri helps attackers bypass iPhone passcodes 

Users with Siri enabled are vulnerable to a passcode bypass. Physical access is required to the device and they need to know your phone number. Discovering the number can be achieved by holding down the iPhone button and asking “Who Am I?” to which Siri helpfully responds. Now an attacker is only a few steps away from accessing contact details, photographs and messages. Read the rest of the article here.

What can I do to protect myself and my organisation?

1. adsfADFdf
2. adfADFdafF
3. ADFadfADFdf
4. ashfdoAHFODAHF

To subscribe to receive the ‘Cyber Threat Update’ directly to our inbox every week. Please click here.