{"id":938,"date":"2021-02-19T09:00:00","date_gmt":"2021-02-19T09:00:00","guid":{"rendered":"https:\/\/news.nucleon.sh\/?p=938"},"modified":"2021-02-18T16:25:41","modified_gmt":"2021-02-18T16:25:41","slug":"cyber-news-update-59-2","status":"publish","type":"post","link":"https:\/\/news.nucleon.sh\/ko\/2021\/02\/19\/cyber-news-update-59-2\/","title":{"rendered":"CYBER NEWS UPDATE #59"},"content":{"rendered":"\n<p class=\"wp-block-paragraph\">This podcast will give you a summary of the latest news related to cyber intelligence and proactive cyber security in only a few minutes.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">The podcast is aimed at professionals who are short on time, or for anyone who would like to know a bit more about what is REALLY happening out there in the cyber world.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">The focus of this podcast will be on the latest cyber events for non-technical people; anyone can listen and understand.<\/p>\n\n\n\n<figure class=\"wp-block-embed is-type-rich is-provider-soundcloud wp-block-embed-soundcloud wp-embed-aspect-4-3 wp-has-aspect-ratio\"><div class=\"wp-block-embed__wrapper\">\n<iframe loading=\"lazy\" title=\"CyberCure News Episode 59 by Cyber Intelligence Briefing\" width=\"660\" height=\"400\" scrolling=\"no\" frameborder=\"no\" src=\"https:\/\/w.soundcloud.com\/player\/?visual=true&#038;url=https%3A%2F%2Fapi.soundcloud.com%2Ftracks%2F971281423&#038;show_artwork=true&#038;maxheight=990&#038;maxwidth=660&#038;secret_token=s-illpTz4Vzf9\"><\/iframe>\n<\/div><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\">Few episodes ago we covered the popular products of amazon called RING,&nbsp;<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">it had multiple cyber security flaws that resulted in hackers gaining unauthorized access to remote devices easily, now it seems that a different app is suffering from more security issues, a security flaw in Ring\u2019s Neighbors app was exposing the precise locations and home addresses of users who had posted to the app.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Neighbors is one of several neighborhood watch apps, like Nextdoor and Citizen, that lets users anonymously alert nearby residents to crime and public-safety issues. While users\u2019 posts are public, the app doesn\u2019t display names or precise locations \u2014 though most include video taken by Ring doorbells and security cameras. The bug made it possible to retrieve the location data on users who posted to the app, including those who are reporting crimes.<\/p>\n\n\n\n<figure class=\"wp-block-image size-large is-style-rounded\"><img data-recalc-dims=\"1\" loading=\"lazy\" decoding=\"async\" width=\"660\" height=\"440\" data-attachment-id=\"961\" data-permalink=\"https:\/\/news.nucleon.sh\/ko\/2021\/02\/19\/cyber-news-update-59-2\/video-intercom-in-the-entry-of-a-house\/\" data-orig-file=\"https:\/\/i0.wp.com\/news.nucleon.sh\/wp-content\/uploads\/2021\/02\/video-intercom-entry-house.jpg?fit=4890%2C3260&amp;ssl=1\" data-orig-size=\"4890,3260\" data-comments-opened=\"1\" data-image-meta=\"{&quot;aperture&quot;:&quot;2.8&quot;,&quot;credit&quot;:&quot;DENIS KALINICHENKO&quot;,&quot;camera&quot;:&quot;Canon EOS 5D Mark IV&quot;,&quot;caption&quot;:&quot;Video Intercom in the entry of a house.&quot;,&quot;created_timestamp&quot;:&quot;1564141484&quot;,&quot;copyright&quot;:&quot;WWW.DENISKALINICHENKO.COM&quot;,&quot;focal_length&quot;:&quot;35&quot;,&quot;iso&quot;:&quot;125&quot;,&quot;shutter_speed&quot;:&quot;0.0002&quot;,&quot;title&quot;:&quot;Video Intercom in the entry of a house&quot;,&quot;orientation&quot;:&quot;1&quot;}\" data-image-title=\"Video Intercom in the entry of a house\" data-image-description=\"\" data-image-caption=\"&lt;p&gt;Video Intercom in the entry of a house.&lt;\/p&gt;\n\" data-large-file=\"https:\/\/i0.wp.com\/news.nucleon.sh\/wp-content\/uploads\/2021\/02\/video-intercom-entry-house.jpg?fit=660%2C440&amp;ssl=1\" src=\"https:\/\/i0.wp.com\/news.nucleon.sh\/wp-content\/uploads\/2021\/02\/video-intercom-entry-house.jpg?resize=660%2C440&#038;ssl=1\" alt=\"\" class=\"wp-image-961\" srcset=\"https:\/\/i0.wp.com\/news.nucleon.sh\/wp-content\/uploads\/2021\/02\/video-intercom-entry-house.jpg?resize=1024%2C683&amp;ssl=1 1024w, https:\/\/i0.wp.com\/news.nucleon.sh\/wp-content\/uploads\/2021\/02\/video-intercom-entry-house.jpg?resize=300%2C200&amp;ssl=1 300w, https:\/\/i0.wp.com\/news.nucleon.sh\/wp-content\/uploads\/2021\/02\/video-intercom-entry-house.jpg?resize=768%2C512&amp;ssl=1 768w, https:\/\/i0.wp.com\/news.nucleon.sh\/wp-content\/uploads\/2021\/02\/video-intercom-entry-house.jpg?resize=1536%2C1024&amp;ssl=1 1536w, https:\/\/i0.wp.com\/news.nucleon.sh\/wp-content\/uploads\/2021\/02\/video-intercom-entry-house.jpg?resize=2048%2C1365&amp;ssl=1 2048w, https:\/\/i0.wp.com\/news.nucleon.sh\/wp-content\/uploads\/2021\/02\/video-intercom-entry-house.jpg?resize=1200%2C800&amp;ssl=1 1200w, https:\/\/i0.wp.com\/news.nucleon.sh\/wp-content\/uploads\/2021\/02\/video-intercom-entry-house.jpg?resize=10%2C7&amp;ssl=1 10w, https:\/\/i0.wp.com\/news.nucleon.sh\/wp-content\/uploads\/2021\/02\/video-intercom-entry-house.jpg?resize=432%2C288&amp;ssl=1 432w, https:\/\/i0.wp.com\/news.nucleon.sh\/wp-content\/uploads\/2021\/02\/video-intercom-entry-house.jpg?resize=396%2C264&amp;ssl=1 396w, https:\/\/i0.wp.com\/news.nucleon.sh\/wp-content\/uploads\/2021\/02\/video-intercom-entry-house.jpg?resize=1120%2C747&amp;ssl=1 1120w, https:\/\/i0.wp.com\/news.nucleon.sh\/wp-content\/uploads\/2021\/02\/video-intercom-entry-house.jpg?resize=660%2C440&amp;ssl=1 660w, https:\/\/i0.wp.com\/news.nucleon.sh\/wp-content\/uploads\/2021\/02\/video-intercom-entry-house.jpg?resize=330%2C220&amp;ssl=1 330w, https:\/\/i0.wp.com\/news.nucleon.sh\/wp-content\/uploads\/2021\/02\/video-intercom-entry-house.jpg?w=1320&amp;ssl=1 1320w, https:\/\/i0.wp.com\/news.nucleon.sh\/wp-content\/uploads\/2021\/02\/video-intercom-entry-house.jpg?w=1980&amp;ssl=1 1980w\" sizes=\"auto, (max-width: 600px) 91vw, (max-width: 900px) 600px, (max-width: 1060px) 50vw, (max-width: 1200px) 520px, (max-width: 1400px) 43vw, 600px\" \/><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\">The exposed data wasn\u2019t visible to anyone using the app.&nbsp;<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">The bug was retrieving hidden data, including the user\u2019s latitude and longitude and their home address, from Ring\u2019s servers.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">The Neighbors app appeared to have about 4 million posts by the end of 2020.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Ring said it had fixed the issue.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">As we covered before, Ring is currently faces a class-action suit by dozens of people who say they were subjected to death threats and racial slurs after their Ring smart cameras were hacked.&nbsp;<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Ring put much of the blame on users for not using \u201cbest practices\u201d like two-factor authentication, which makes it harder for hackers to access a user\u2019s account with the user\u2019s password.&nbsp;<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">After over 1,500 user account passwords were found on the dark web, Ring made two-factor authentication mandatory for every user.<\/p>\n\n\n\n<figure class=\"wp-block-video wp-block-embed is-type-video is-provider-videopress wp-embed-aspect-16-9 wp-has-aspect-ratio\"><div class=\"wp-block-embed__wrapper\">\n<iframe title=\"VideoPress Video Player\" aria-label='VideoPress Video Player' width='660' height='371' src='https:\/\/videopress.com\/embed\/RHblYi1Q?autoPlay=1&amp;loop=1&amp;muted=1&amp;persistVolume=0&amp;preloadContent=metadata&amp;hd=0&amp;cover=1' frameborder='0' allowfullscreen allow='clipboard-write'><\/iframe><script src='https:\/\/v0.wordpress.com\/js\/next\/videopress-iframe.js?m=1674852142'><\/script>\n<\/div><\/figure>\n\n\n\n<hr class=\"wp-block-separator\"\/>\n\n\n\n<p class=\"wp-block-paragraph\">The Scottish Environment Protection Agency (SEPA) confirmed on Thursday that some of its contact center, internal systems, processes and internal communications were affected following a ransomware attack that took place on Christmas Eve.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">SEPA added that, after isolating the compromised systems, recovery will probably take &#8220;a significant period&#8221; and some of the infected SEPA systems will have to be replaced with new ones. Email systems have also been impacted by the Xmas Eve ransomware attack and are still down, with some internal systems and external data products to be offline in the short term.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">While SEPA didn&#8217;t attribute the attack to any specific ransomware operation, the Conti ransomware gang claims the attack and has already published 7% of the stolen data on its leak site. Roughly 1.2 GB of data was exfiltrated during the attack according to SEPA, with evidence showing that at least 4,000 files were probably accessed and stolen.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">SEPA is currently working with cybersecurity specialists and experts from multi-agency partners including Police Scotland and the National Cyber Security Centre on eradication, remediation, and recovery tasks.<\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img data-recalc-dims=\"1\" loading=\"lazy\" decoding=\"async\" width=\"660\" height=\"440\" data-attachment-id=\"963\" data-permalink=\"https:\/\/news.nucleon.sh\/ko\/2021\/02\/19\/cyber-news-update-59-2\/hacker-using-laptop-into-dark-web\/\" data-orig-file=\"https:\/\/i0.wp.com\/news.nucleon.sh\/wp-content\/uploads\/2021\/02\/hacker-using-laptop-into-dark-web.jpg?fit=6000%2C4000&amp;ssl=1\" data-orig-size=\"6000,4000\" data-comments-opened=\"1\" data-image-meta=\"{&quot;aperture&quot;:&quot;8&quot;,&quot;credit&quot;:&quot;&quot;,&quot;camera&quot;:&quot;ILCE-7M2&quot;,&quot;caption&quot;:&quot;Hacker using laptop into dark web.&quot;,&quot;created_timestamp&quot;:&quot;1597858913&quot;,&quot;copyright&quot;:&quot;&quot;,&quot;focal_length&quot;:&quot;52&quot;,&quot;iso&quot;:&quot;50&quot;,&quot;shutter_speed&quot;:&quot;1.3&quot;,&quot;title&quot;:&quot;Hacker using laptop into dark web.&quot;,&quot;orientation&quot;:&quot;0&quot;}\" data-image-title=\"Hacker using laptop into dark web.\" data-image-description=\"\" data-image-caption=\"&lt;p&gt;Hacker using laptop into dark web.&lt;\/p&gt;\n\" data-large-file=\"https:\/\/i0.wp.com\/news.nucleon.sh\/wp-content\/uploads\/2021\/02\/hacker-using-laptop-into-dark-web.jpg?fit=660%2C440&amp;ssl=1\" src=\"https:\/\/i0.wp.com\/news.nucleon.sh\/wp-content\/uploads\/2021\/02\/hacker-using-laptop-into-dark-web.jpg?resize=660%2C440&#038;ssl=1\" alt=\"\" class=\"wp-image-963\" srcset=\"https:\/\/i0.wp.com\/news.nucleon.sh\/wp-content\/uploads\/2021\/02\/hacker-using-laptop-into-dark-web.jpg?resize=1024%2C683&amp;ssl=1 1024w, https:\/\/i0.wp.com\/news.nucleon.sh\/wp-content\/uploads\/2021\/02\/hacker-using-laptop-into-dark-web.jpg?resize=300%2C200&amp;ssl=1 300w, https:\/\/i0.wp.com\/news.nucleon.sh\/wp-content\/uploads\/2021\/02\/hacker-using-laptop-into-dark-web.jpg?resize=768%2C512&amp;ssl=1 768w, https:\/\/i0.wp.com\/news.nucleon.sh\/wp-content\/uploads\/2021\/02\/hacker-using-laptop-into-dark-web.jpg?resize=1536%2C1024&amp;ssl=1 1536w, https:\/\/i0.wp.com\/news.nucleon.sh\/wp-content\/uploads\/2021\/02\/hacker-using-laptop-into-dark-web.jpg?resize=2048%2C1365&amp;ssl=1 2048w, https:\/\/i0.wp.com\/news.nucleon.sh\/wp-content\/uploads\/2021\/02\/hacker-using-laptop-into-dark-web.jpg?resize=1200%2C800&amp;ssl=1 1200w, https:\/\/i0.wp.com\/news.nucleon.sh\/wp-content\/uploads\/2021\/02\/hacker-using-laptop-into-dark-web.jpg?resize=10%2C7&amp;ssl=1 10w, https:\/\/i0.wp.com\/news.nucleon.sh\/wp-content\/uploads\/2021\/02\/hacker-using-laptop-into-dark-web.jpg?resize=432%2C288&amp;ssl=1 432w, https:\/\/i0.wp.com\/news.nucleon.sh\/wp-content\/uploads\/2021\/02\/hacker-using-laptop-into-dark-web.jpg?resize=396%2C264&amp;ssl=1 396w, https:\/\/i0.wp.com\/news.nucleon.sh\/wp-content\/uploads\/2021\/02\/hacker-using-laptop-into-dark-web.jpg?resize=1120%2C747&amp;ssl=1 1120w, https:\/\/i0.wp.com\/news.nucleon.sh\/wp-content\/uploads\/2021\/02\/hacker-using-laptop-into-dark-web.jpg?resize=660%2C440&amp;ssl=1 660w, https:\/\/i0.wp.com\/news.nucleon.sh\/wp-content\/uploads\/2021\/02\/hacker-using-laptop-into-dark-web.jpg?resize=330%2C220&amp;ssl=1 330w, https:\/\/i0.wp.com\/news.nucleon.sh\/wp-content\/uploads\/2021\/02\/hacker-using-laptop-into-dark-web.jpg?w=1320&amp;ssl=1 1320w, https:\/\/i0.wp.com\/news.nucleon.sh\/wp-content\/uploads\/2021\/02\/hacker-using-laptop-into-dark-web.jpg?w=1980&amp;ssl=1 1980w\" sizes=\"auto, (max-width: 600px) 91vw, (max-width: 900px) 600px, (max-width: 1060px) 50vw, (max-width: 1200px) 520px, (max-width: 1400px) 43vw, 600px\" \/><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\">The information stolen by the Conti operators during the attack includes:&nbsp;<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Information such as, publicly available regulated site permits, authorizations and enforcement notices.&nbsp;<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Some information related to SEPA corporate plans, priorities and change programes.&nbsp;<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Procurement information, project information and&nbsp; Personal information relating to SEPA staff.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">if you are related to SEPA or been in contact with them you should make sure you are not exposed.<\/p>\n\n\n\n<hr class=\"wp-block-separator\"\/>\n\n\n\n<p class=\"wp-block-paragraph\">That\u2019s it for this podcast, stay safe and see you in the next podcast.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Don\u2019t forget to visit <a href=\"http:\/\/www.nucleon.sh\/\">www.nucleon.sh<\/a> for the latest podcasts on cyber intelligence.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>This podcast will give you a summary of the latest news related to cyber intelligence and proactive cyber security in only a few minutes. The podcast is aimed at professionals who are short on time, or for anyone who would like to know a bit more about what is REALLY happening out there in the [&hellip;]<\/p>\n","protected":false},"author":143072865,"featured_media":926,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_coblocks_attr":"","_coblocks_dimensions":"","_coblocks_responsive_height":"","_coblocks_accordion_ie_support":"","_crdt_document":"","advanced_seo_description":"","jetpack_seo_html_title":"","jetpack_seo_noindex":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":true,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2},"_wpas_customize_per_network":false,"jetpack_post_was_ever_published":false},"categories":[646263560],"tags":[6602,61188,1142,192933,684292364,684292357,684292354,684292363,684292230,684292361,684292360,684292362],"class_list":["post-938","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybercure-ai","tag-amazon","tag-hackers","tag-podcast","tag-ransomware","tag-2fa","tag-crime","tag-neighborhood-watch","tag-nextdoor","tag-ring","tag-scotland","tag-sepa","tag-smart-cameras","entry-image--landscape"],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"https:\/\/i0.wp.com\/news.nucleon.sh\/wp-content\/uploads\/2021\/02\/home-security-comcept-cctv-camera-surveillance-operating-village.jpg?fit=5629%2C3688&ssl=1","jetpack_likes_enabled":true,"jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/paa2yX-f8","amp_enabled":true,"_links":{"self":[{"href":"https:\/\/news.nucleon.sh\/ko\/wp-json\/wp\/v2\/posts\/938","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/news.nucleon.sh\/ko\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news.nucleon.sh\/ko\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/news.nucleon.sh\/ko\/wp-json\/wp\/v2\/users\/143072865"}],"replies":[{"embeddable":true,"href":"https:\/\/news.nucleon.sh\/ko\/wp-json\/wp\/v2\/comments?post=938"}],"version-history":[{"count":8,"href":"https:\/\/news.nucleon.sh\/ko\/wp-json\/wp\/v2\/posts\/938\/revisions"}],"predecessor-version":[{"id":968,"href":"https:\/\/news.nucleon.sh\/ko\/wp-json\/wp\/v2\/posts\/938\/revisions\/968"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/news.nucleon.sh\/ko\/wp-json\/wp\/v2\/media\/926"}],"wp:attachment":[{"href":"https:\/\/news.nucleon.sh\/ko\/wp-json\/wp\/v2\/media?parent=938"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news.nucleon.sh\/ko\/wp-json\/wp\/v2\/categories?post=938"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news.nucleon.sh\/ko\/wp-json\/wp\/v2\/tags?post=938"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}