Computer Security Updates Week 2 of June 2013

Refer to Computer Security Updates Week 5 of May 2013; in which the biggest news was Twitter beefed up security with two-factor security system.

For this week / last week, here are / were the biggest news.
  • McAfee publishes Q1 2013 threat report.
  • Symantec publishes Internet Security Threat Report v 18 (for 2012 data).
  • Sophos appoints Mavisco Resources as distributor in Malaysia.
  • Evernote introduces three new security features.
  • Kaspersky Lab publishes Q1 2013 security reports.
  • Bit9 blog reported that US electric grids under persistent cyber-attacks.



SANTA CLARA, Calif. / SINGAPORE – June 4, 2012 - McAfee Q1 2013 Threat Report Sees Social Media Worm Resurgence as SPAM Rises Dramatically

According to the McAfee Labs research, the increase in the number and sophistication of targeted advanced persistent threats (APTs) represented the most notable evolution in the threat landscape, as information becomes as valuable as money on the cybercrime landscape.

The following is a summary of key developments that McAfee Labs have identified:·
  • Koobface Trojan - McAfee detected activities despite the fact that Koobface gang were busted by authorities in Jan 2012.
  • Spam Volume
  • Targeted Espionage
  • MBR Attacks
  • Malicious URLs
  • Mobile Malware
  • PC Malware

In the Q1 threat report, these are some of the findings with regards to the South East Asian region:

  • Philippine Cyber Army launched a politically motivated attack on 175 Malaysian sites, including several state-owned pages, in response by earlier attacks from Malaysian hackers.
  • Indonesia has a prevalent amount of Darkmailer botnets.
  • Online banking users in Thailand were assailed by mobile criminals.

Get more details.

KUALA LUMPUR, Malaysia – June 3, 2013 – Symantec Publishes Internet Security Threat Report v 18 (for 2012 data)

Symantec Corp.’s Internet Security Threat Report, Volume 18 - with data based on 2012 - reveals a few key observations and trends.
  • 42% surged in targeted attacks compared to 2011.
  • 31% of these attacks are on SMEs - SMEs are considered to be the weakest links for cyber attackers to penetrate bigger enterprises which the SMEs perform business dealing with.
  • Watering hole techniques have been observed.
  • Malaysia ranked 35 globally on Internet threat activities - up from ranking of 38 on 2011.
  • Mobile trends on the rise.
  • Ransomware on the rise - US $5 million extorted from victims in 2012.
  • Mac malware on the rise.

These trends and observations are paralleled with what we have observed already.

Click link here to the ISTR 18 main report: http://www.symantec.com/content/en/us/enterprise/other_resources/b-istr_main_report_v18_2012_21291018.en-us.pdf

Click link here to the ISTR18 appendices: http://www.symantec.com/content/en/us/enterprise/other_resources/b-istr_appendices_v18_2012_221284438.en-us.pdf

Get more details.

Kuala Lumpur, Malaysia, June 3, 2013 – Sophos Appoints Mavisco Resources as Distributor in Malaysia

Sophos today announced the appointment of Mavisco Resources as a Distributor in Malaysia, for its complete security product portfolio. A leader in technology distribution and channel services, Mavisco Resources Sdn Bhd will provide strong focus on developing the public sector and SME segments of the Malaysian market for Sophos.

Mavisco will distribute the complete range of Sophos solutions including Endpoint Security, Encryption and Data Loss Prevention (DLP), Web and Email Protection, Mobile Control and Sophos Network Security, and Unified Threat Management (UTM).

Get more details.

May 31, 2013 - Evernote Introduces Three New Security Features

Evernote’s just made three new security features available:
  • Two-Step Verification - multi-factor authentication via text message or, if you prefer, generated by an app that runs on your smart phone, such as Google Authenticator.
  • Access History - this list includes all the versions of Evernote, along with locations and IP addresses. If you ever suspect that your account was accessed without your knowledge, you can check the history.
  • Authorized Applications - allows users to revoke any version of Evernote from your Evernote Web Account Settings. Once revoked, an app will request a password the next time its launched.
Get more details.

Petaling Jaya, May 31, 2013 - IT Threat Evolution in Q1 2013: New Incidents and Old Suspects

Kaspersky Lab publishes Q1 2013 security reports, the followings had emerged.
  • Red October - APT - In October 2012 Kaspersky Lab’s team of experts initiated an investigation following a series of attacks against computer networks targeting international diplomatic service agencies. A large scale cyber-espionage network was revealed and analyzed during the investigation. According to Kaspersky Lab’s analysis report, Operation Red October, called “Rocra” for short, is still active as of January 2013, and has been a sustained campaign dating back as far as 2007.
  • Malware MiniDuke - it leverages on 0-day vulnerability in Adobe Reader (CVE-2013-0640).
  • APT1 - another APT discovered - APT1 appears to be a division of the Chinese army.
  • Discovered targeted attack against Uyghur activists in China, utilizing malware for Android devices.
  • Mobile treats on the rise - detected in excess of 20,000 new mobile malware modifications in Feb, Mar 2013.
  • U.S ranked no 1 in terms of malicious hosting services.

Get more details.

Bit9 Blog, May 30, 2013 - US Electric Grid Under Persistent Cyber-Attacks

Bit9 reported that a dozen of utility companies in the U.S experienced daily APTs.

The author opines that being compliant doesn't guarantee cyber-security. Compliance standard such as North American Electric Reliability Corporation (NERC) compliance standards forbid control systems being connected to consumer-facing or administrative networks - yet there were many incidents of data compromised cases emerged.

Examples of APTs which had attacked the energy sector include Stuxnet, Night Dragon and etc.

The author also opines that solving the problem is not as easy as investing into million dollars security solutions as silver bullet.

Internal IT culture is something which is often overlooked; such as preference of control syste based on Intel 486DX2 running Windows 2000 than Raspberry Pi SELinux platform - the reality is that Windows based system accounted for majority of cyber-attacks.

Get more details.

Comments

Anonymous said…
Wonԁerful blοg! I founԁ it while surfing arounԁ on Yаhοо News.
Do you havе аny tіps on how tο get liѕtеd in Yahоo Newѕ?
I've been trying for a while but I never seem to get there! Many thanks

Here is my homepage: Finding Fantastic Motel Offers throughout The european union
Anonymous said…
What's up, I wish for to subscribe for this weblog to get newest updates, thus where can i do it please assist.

Also visit my web site; Last second Motel Booking
Anonymous said…
I think this is onе of the sο much ѕignіfіcant informatіon for me.
And i'm happy studying your article. But want to observation on few general issues, The site taste is ideal, the articles is in point of fact excellent : D. Just right task, cheers

My website; Top destinations inside The european union regarding group snowboard vacations
Anonymous said…
Hello i am kaνіn, its my first time to commеnting аnywhere, when i rеad this ρaгagrаph i thought i could also crеate comment
ԁue to this sеnsible artіcle.


Αlsо visit my blоg :: Locate Prime Checklist of Journey Directories
Anonymous said…
Ӏ really liκе yοur blog.
. veгу nіcе colors & theme. Did yοu creаte this wеbsite уourself οr dіԁ you hіrе
ѕomeonе to do it for yοu? Plz reply as I'm looking to construct my own blog and would like to find out where u got this from. cheers

My weblog; http://www.purevolume.com/listeners/hotelsdiscounts/posts/328573/Travel
Anonymous said…
What i don't realize is in reality how you're not really much more smаrtly-аppгeciated than уοu mау
be now. You're very intelligent. You realize therefore significantly when it comes to this subject, made me for my part imagine it from numerous various angles. Its like women and men are not involved except it is something to accomplish with Woman gaga! Your individual stuffs nice. Always maintain it up!

Here is my weblog Dubai Motels -- Where to Get the top Bargains
Anonymous said…
Τhis is геally interеsting, Υou arе аn overly ρrofeѕsional blogger.
I've joined your feed and stay up for looking for extra of your fantastic post. Additionally, I'νe ѕharеd уοur ωeb
ѕite in my sοcial netωorks

Also visit mу wеb pagе :: E. Mark's Basilica Venice Italia
Anonymous said…
Wow that was unusual. I just wrote аn really long comment but after
I clicked submit my commеnt didn't show up. Grrrr... well I'm nοt writіng all
that over again. Regаrdless, just wanted to say
wonderful blog!

Take a lοok at my sitе; Discounted Holiday accommodation Some Straightforward Advice on Getting The Greatest Motel Discounts
Anonymous said…
Its likе you learn my mind! Yοu seem to unԁeгstаnd a lot approximately this, such
as you wгotе the ebook іn it or somеthing.
I believe that you juѕt can do with some % to forсе the meѕѕage houѕe a little bit, howeveг other than that, this is fаntastic
blog. A fаntastic read. I will definitеly be
bacκ.

Also vіsit my рage; Day spa Accommodations a Guide to get noticable a Great Relaxation
Anonymous said…
Ahaa, its pleaѕant diѕсussіon concerning thіs ρost here
at this blog, ӏ hаve reаԁ all that, sο noω me alѕo commenting here.


Also νisit my weblog ... some special hotels worldwide
Anonymous said…
I'm amazed, I must say. Seldom do I encounter a blog that's both
equally eduсative anԁ amusing, and ωithout a doubt, уοu
have hit the naіl on the hеad. Τhe problem is somеthіng whіch too few men and women aге speaκing intеlligently about.

I'm very happy that I found this in my search for something concerning this.

Feel free to surf to my webpage :: Motel Discounted (Hotels_Discount) in Twitter
Anonymous said…
Τhаnk you for shaгing youг info.

I reallу аρрrесiаte
your efforts and I will bе ωaiting for your
next ροѕt thank you onсе agaіn.


Тaκe а looκ аt mу wеblog .
.. http://Www.hotel-Discount.com
Anonymous said…
Нurгah, that's what I was looking for, what a stuff! existing here at this blog, thanks admin of this site.

My web-site; Online Discount Hotels reserving in The capital
Anonymous said…
This comment has been removed by a blog administrator.
Anonymous said…
tim and eric dating http://loveepicentre.com/contact/ black on white dating
christian dating texas [url=http://loveepicentre.com/success_stories/]colombian dating service[/url] non alchohol dating sites
it's just lunch dating [url=http://loveepicentre.com]workplace dating investigations[/url] ariane dating simulator tips [url=http://loveepicentre.com/user/Cathy/]Cathy[/url] special needs dating