CyberSecurity Pulse 2016-02-11

CyberSecurity Pulse 2016-02-11

Analyst Insight

Operation Fortitude Untapped in Cyberspace

Deception has always played a significant role in military strategy. This concept, known by the intelligence community as deception or counter-information, defines the fact of trying to keep the initiative and make the enemy perceive as certain information that, in fact, is incorrect. During World War II and the Cold War, the cases of false traitors of the Soviet bloc that poisoned the information collection systems from Britain and the US. But how far this concept has evolved to combat cyberthreats?

CyberSecurity Pulse 2016-02-11 The most extended approach in which the sector has been working is in the figure of the honeypot. These devices pose as real systems deployed in order to be recognisable by automated scans performed by a potential attacker. While detection techniques and avoidance of these systems to minimize their exposure continue to evolve, security officers are losing their ability to obtain information in later stages of infiltration if these machines have already been labelled as a honeypot server.

In spite of the efforts by the IT professionals in deploying prevention and intrusion detection tools to mitigate the risk of a significant number of attacks, cybercriminals continue to find ways to violate these measures. In this sense, this is a great opportunity for the development of technologies to explore other dimensions of the concept of deception applied to cybersecurity in order to provide organizations with greater knowledge about which are the new methods of attack employed.

Top Stories

Insiders Who Also Threaten Apple

CyberSecurity Pulse 2016-02-11 The incidents in which individuals within the company collaborate with attackers to leak information pose a real and serious threat to organizations of all sizes as shown by the attempted sale of part of the source code of Yandex's search engine conducted by a former employee. According to a report published by Business Insider this week, even employees working for companies as large as Apple have received this kind of offers which would have raised up to $23,000 for their login credentials. The attackers would not be randomly choosing the recipients as they seem to be more interested in roaming profiles with junior management roles within the company from which they would be able to collect substantial sensitive information.

» More information at Business Insider India

Thousands of FBI and DHS Employees Data Exposed in a New Leak

CyberSecurity Pulse 2016-02-11 Personal information on nearly 30,000 government employees, including members of the Federal Bureau of Investigation, may have been released on Internet. Using a compromised Department of Justice email account, a hacker claims to have gained access to the department's intranet, Motherboard reports. This individual allegedly downloaded the personal information of more than 20,000 FBI employees and roughly other 9000 records linked to Department of Homeland Security employees. The sources claim that the leak is supposed to have been published on an encrypted text-sharing site.

» More information at Motherboard

Rest of the Week´s News

Hackers Attack 20 Million Accounts on Taobao

According to a state media report posted on the Internet regulator's website, a group of cybercriminals in China has attempted to gain access to 20 million active accounts on Alibaba Group Holding Ltd's Taobao e-commerce website using Alibaba's own cloud computing service. An Alibaba spokesman said on Thursday that the company detected the attack in "the first instance" and told users to change passwords.

» More information at Reuters

India and France Against Facebook in the Same Week

Last Monday, the Telecom Regulatory Authority of India (TRAI) has refused access Facebook Internet Free Basics considering that violates the principles of net neutrality as "No service provider shall offer or charge discriminatory tariffs for data services on the basis of content". Otherwise, French has also ruled that many big US technology companies including Facebook are violating the Transatlantic Safe Harbour Pact by infringing on Europeans’ rights to privacy with their tracking policies.

» More information at BBC and The Hacker News

Russian Metel Group Manipulated Ruble-Dollar Exchange Rate with Malware

A Russian group of cyber criminals known as Metel has got access to the IT infrastructure of Kazan-based Energobank and manipulated the Ruble-Dollar exchange rate infecting the system with malware. The event occurred exactly one year ago when members of the hacking group breached into the Russian Regional Bank for just 14 minutes and triggered the fluctuation of the exchange between 55 and 66 rubles per dollar.

» More information at Security Affairs