Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Comments
How One Companys Cybersecurity Problem Becomes Another's Fraud Problem
Threaded  |  Newest First  |  Oldest First
Joe Stanganelli
50%
50%
Joe Stanganelli,
User Rank: Ninja
8/29/2018 | 11:04:13 PM
Honan example
An even more insidious example can be seen in the case of Wired's Mat Honan -- whose entire online/computer life was compromised in 2012 via a compromise of his Apple ID, which in turn was able to be compromised via information gained by compromising Honan's Amazon account!
Dr.T
50%
50%
Dr.T,
User Rank: Ninja
8/30/2018 | 9:28:52 AM
Re: Honan example
compromise of his Apple ID, which in turn was able to be compromised via information gained by compromising Honan's Amazon account! Yes. Most liley the same account names and passwords are used. A common problem..
Joe Stanganelli
50%
50%
Joe Stanganelli,
User Rank: Ninja
8/30/2018 | 11:30:40 PM
Re: Honan example
@Dr.T: Actually, nope, that's not what happened; this was not a case of PEBKAC. The problem lay with security issues at Amazon and Apple respectively.

Here's Honan's account of his digital nightmare: wired.com/2012/08/apple-amazon-mat-honan-hacking/
Dr.T
50%
50%
Dr.T,
User Rank: Ninja
8/30/2018 | 9:27:21 AM
Fraud
But the larger end result is that my cyber problem has just become everybody else's fraud problem because my infected system is now set up to attack other systems. This makes sense. Best approach against this is segregation of the systems so one is compromised but the rest can still be protected.
Joe Stanganelli
50%
50%
Joe Stanganelli,
User Rank: Ninja
8/30/2018 | 11:32:29 PM
Re: Fraud
@Dr.T: Sure, virtualization and gapping measures can be great for security and tenant isolation...but more to the point, certain systems have to interact with each other -- and the security issues flow just as readily as does the communication itself.
Dr.T
50%
50%
Dr.T,
User Rank: Ninja
8/30/2018 | 9:30:25 AM
Say something
It's taking the concept of "when you see something, say something" into cyberspace. This would be a way to go. It requires a good security awareness programs to achieve it.
Dr.T
50%
50%
Dr.T,
User Rank: Ninja
8/30/2018 | 9:32:49 AM
Cloud A and B
f Cloud A and Cloud B are willing to work together and exchange threat intelligence information, ... This is the major problem in the industry, they do not share security related information with each other.
Dr.T
50%
50%
Dr.T,
User Rank: Ninja
8/30/2018 | 9:35:34 AM
Reputation
"cyber-enabled fraud," which we define as fraud that is facilitated though the use of malware exploits, social engineering, and/or lateral movement through a compromised website, network, or account. This would be problematic for companies reputation, it is still their lack of security that enabled attackers to cause the damage.


44% of Security Threats Start in the Cloud
Kelly Sheridan, Staff Editor, Dark Reading,  2/19/2020
Zero-Factor Authentication: Owning Our Data
Nick Selby, Chief Security Officer at Paxos Trust Company,  2/19/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
6 Emerging Cyber Threats That Enterprises Face in 2020
This Tech Digest gives an in-depth look at six emerging cyber threats that enterprises could face in 2020. Download your copy today!
Flash Poll
How Enterprises Are Developing and Maintaining Secure Applications
How Enterprises Are Developing and Maintaining Secure Applications
The concept of application security is well known, but application security testing and remediation processes remain unbalanced. Most organizations are confident in their approach to AppSec, although others seem to have no approach at all. Read this report to find out more.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2019-5162
PUBLISHED: 2020-02-25
An exploitable improper access control vulnerability exists in the iw_webs account settings functionality of the Moxa AWK-3131A firmware version 1.13. A specially crafted user name entry can cause the overwrite of an existing user account password, resulting in remote shell access to the device as t...
CVE-2019-5165
PUBLISHED: 2020-02-25
An exploitable authentication bypass vulnerability exists in the hostname processing of the Moxa AWK-3131A firmware version 1.13. A specially configured device hostname can cause the device to interpret select remote traffic as local traffic, resulting in a bypass of web authentication. An attacker ...
CVE-2020-9383
PUBLISHED: 2020-02-25
An issue was discovered in the Linux kernel through 5.5.6. set_fdc in drivers/block/floppy.c leads to a wait_til_ready out-of-bounds read because the FDC index is not checked for errors before assigning it, aka CID-2e90ca68b0d2.
CVE-2019-5136
PUBLISHED: 2020-02-25
An exploitable privilege escalation vulnerability exists in the iw_console functionality of the Moxa AWK-3131A firmware version 1.13. A specially crafted menu selection string can cause an escape from the restricted console, resulting in system access as the root user. An attacker can send commands ...
CVE-2019-5137
PUBLISHED: 2020-02-25
The usage of hard-coded cryptographic keys within the ServiceAgent binary allows for the decryption of captured traffic across the network from or to the Moxa AWK-3131A firmware version 1.13.