{"id":23962,"date":"2018-01-12T09:29:32","date_gmt":"2018-01-12T16:29:32","guid":{"rendered":"http:\/\/blogdev.services.webroot\/?p=23962"},"modified":"2023-12-01T07:17:40","modified_gmt":"2023-12-01T14:17:40","slug":"cyber-news-rundown-edition-1-12-18","status":"publish","type":"post","link":"https://www.webroot.com/blog/2018\/01\/12\/cyber-news-rundown-edition-1-12-18\/","title":{"rendered":"Cyber News Rundown: Edition 1\/12\/18"},"content":{"rendered":"

The Cyber News Rundown brings you the latest happenings in cyber news weekly. Who am I? I\u2019m Connor Madsen, a Webroot Threat Research Analyst with a passion for all things security. Any questions? Just ask.<\/p>\n

Exploitable Backdoor Found in Western Digital NAS Drives<\/h3>\n

Western Digital has recently released numerous patches for the vulnerabilities that were found and reported to the vendor nearly six months ago<\/a>. The prominent issue revolved around a hard-coded administrative backdoor that could allow attackers to remotely execute files on the drives. Unfortunately for Western Digital, this series of vulnerabilities comes not long after the same generation of drives were found with 85 different exploits (and the company waited to push out patches until after<\/em> the exploits had come to public attention.)<\/p>\n

Welsh Restaurant Closes After Cyberattack<\/h3>\n

In the past month, the owner of a Welsh restaurant has been struggling to keep the doors open on the Seafood Shack following a cyberattack that completely cleared out the restaurant\u2019s reservation system<\/a> in the weeks before to Christmas. The restaurant is currently closed after nearly a month without patronage. The systems weren\u2019t being monitored manually, so every diner\u2019s booked tables were left empty. In addition to the cyberattack, the restaurant also faced licensing issues after a supervisor left their employ.<\/p>\n

Winter Olympics Organizers Targeted by Phishing Attacks<\/h3>\n

Officials working on the Pyeongchang Winter Olympics have been under a constant stream of phishing attacks disguised as Microsoft\u00ae Word documents<\/a> from a South Korean intelligence agency. The documents work like normal ones, but request that the user enable macros to launch a PowerShell script. Another version of the malware even bypassed the need for user permission, and instead waited for the user to click the .docx icon to change the language to Korean before launching the same PowerShell script.<\/p>\n

Older Zero-Day Exploit Released on New Year\u2019s Eve<\/h3>\n

In an unusual finish for 2017, one researcher chose to release a 15-year-old macOS\u00ae exploit into the wild. The exploit requires local access to the device, but, once active, would give any attacker full root access to the machine after the user logged out of their session. Even though all Mac\u00ae operating systems are susceptible to this vulnerability, it\u2019s only a matter of time until Apple steps in and corrects the issue and give their massive client-base some piece of mind.<\/p>\n

Opera Browser Implements Anti-Cryptojacking Functions<\/h3>\n

With the recent emergence of cryptojacking (i.e., exploiting an unwitting user\u2019s CPU to mine cryptocurrency while they visit a hijacked website), Opera has taken a stand<\/a> and implemented crypto-mining protection called \u201cNoCoin\u201d in their current ad blocking filter. NoCoin works by detecting any mining activity on a visited website and stops the mining, freeing up the system\u2019s processor for actual user-initiated applications.<\/p>\n","protected":false},"excerpt":{"rendered":"

The Cyber News Rundown brings you the latest happenings in cyber news weekly. Who am I? I\u2019m Connor Madsen, a Webroot Threat Research Analyst with a passion for all things security. Any questions? Just ask. Exploitable Backdoor Found in Western Digital NAS Drives Western Digital has recently released numerous patches for the vulnerabilities that were […]<\/p>\n","protected":false},"author":47,"featured_media":23221,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[3005],"tags":[],"yst_prominent_words":[7799,4971,4959,22199,16963,16737,4905,4469,4801,4993,3543,12111,22317,4611,9065,21834,21860],"acf":[],"_links":{"self":[{"href":"https://www.webroot.com/blog/wp-json\/wp\/v2\/posts\/23962"}],"collection":[{"href":"https://www.webroot.com/blog/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https://www.webroot.com/blog/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https://www.webroot.com/blog/wp-json\/wp\/v2\/users\/47"}],"replies":[{"embeddable":true,"href":"https://www.webroot.com/blog/wp-json\/wp\/v2\/comments?post=23962"}],"version-history":[{"count":2,"href":"https://www.webroot.com/blog/wp-json\/wp\/v2\/posts\/23962\/revisions"}],"predecessor-version":[{"id":32329,"href":"https://www.webroot.com/blog/wp-json\/wp\/v2\/posts\/23962\/revisions\/32329"}],"wp:featuredmedia":[{"embeddable":true,"href":"https://www.webroot.com/blog/wp-json\/wp\/v2\/media\/23221"}],"wp:attachment":[{"href":"https://www.webroot.com/blog/wp-json\/wp\/v2\/media?parent=23962"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https://www.webroot.com/blog/wp-json\/wp\/v2\/categories?post=23962"},{"taxonomy":"post_tag","embeddable":true,"href":"https://www.webroot.com/blog/wp-json\/wp\/v2\/tags?post=23962"},{"taxonomy":"yst_prominent_words","embeddable":true,"href":"https://www.webroot.com/blog/wp-json\/wp\/v2\/yst_prominent_words?post=23962"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}