Security Summary - October 2016

We end every month with a security summary. This short monthly review summarises important news and blog posts, which focus on IT security, cloud computing and privacy protection.

1. US politician was hacked with phising emails
Wikileaks has revealed that several US politicians have been scammed to provide personal data by the use of emails disguised as warnings from email provider Google. The politicians were manipulated to go to false websites where they were asked to change their passwords due to security concerns.

2. Half year report MELANI: strong increase of blackmail attacks
The Reporting and Analysis Centre for Information Assurance (MELANI) has published their half year report. The report provides an overview of the most important cyber attacks in the first half of 2016 and make cyber blackmailing a topic. This form of cyber attack has significantly increased in the last months.

3. Security bounty programm: Facebook paid 5 million US dollars
Since 2011, Facebook offers bounties for security relevant tips. In total, the company paid 5 Million US dollars for tips on security vulnerabilities. In the past year, Facebook rewarded 526 our of 13,233 delivered bug reports.

4. Hacker steals data of 43 million Weebly users
In February 2016 hackers gained access to IP addresses, user names and passwords of 43 million users of the web building tool Weebly. In relation to this, the company warns users about phising mails, which attackers send in the name of the company itself.

5. Startup from Switzerland are ranked first in security competition
The ETH spinoff Xorlab was honored as the winners of «Security Rockstars» in Vienna. The company developed a software that is able to detect cyberattackes. The software detects a new attack form by comparing nomal behavior of an application with any annormalities occuring.

6. Gut feeling plays a decisive role in the rejection of cloud services
Even with an increase in the demand for cloud solutions, larger companies with more than 100 employees remain sceptical of the cloud. This the conclusion of a recent survey made by Heise-Tochter Techconsult. The main reason behind this position is gut feeling.

7. Security label for the „internet of things„?
Many devices, which are connected to the internet, are inflicted with security vulnerabilities. The EU commision is thus considering introducing a label for products that go under the category of „internet of things“. If and in what form such a set of rules might become reality is not yet known.

Related stories

Follow us on: