1.
"Life is short.
Have an affair."- is the slogan of Ashley Madison, a Canadian-based online
dating service marketed to people who are married or in a committed
relationship. It has over 37 Million registered users and over 124 Million
visits per month. Last week this website was hacked by a group called Impact
team. The hackers are blackmailing the company to shut down all its services
failing which they will publish the user information online, which includes
Names and personal profile details.
2.
The website requires
registered members to pay every time they want to start an conversation with
other members and the chat sessions are also metered. The users who wish to
delete their profiles including historical data need to pay $19. The hackers
have claimed that the website collects the deletion fee but never deletes the
full profile and maintains some basic records of users, they have cited this as
the reason for the hack. In light of the hack, the company is now offering
full-delete option free to any member.
3.
What could be worse
than publishing user name online is that hackers may sell the stolen data to highest
bidders on the Dark Web. These bidders may use the data and blackmail
individual users for commercial exploitation or other favors. Ashley Madision's
public listing plan in the London stock Exchange to raise $200Million - now
looks unlikely, according to bankers cited by CNBC.
4.
Hackers can take
over your Jeep, literally driving you off the road. This was demonstrated last
week by cyber security experts, when two of them remotely hacked into a running
Jeep Cherokee being driven by the third expert on a busy highway. The root of
the attack was a vulnerability in the Uconnect system, a software-based
connected car system for a number of Fiat Chrysler cars. The vulnerability
allowed these researchers to remotely control the vehicle through its IP address,
such as turning on and off the brakes, interfering with the driver's visibility
by switching on the windshield wipers, and shutting off the engine. Chrysler
has recalled 1.4M Vehicles for Bug Fix while the researchers released a video
of their demo.
5.
Cylance, the first
predictive cyber security company that applies artificial intelligence to stop
malware, and Raytheon|Websense, last week, announced a partnership that extends
Cylance's next-generation security technology to Raytheon|Websense customers.
Raytheon|Websense has embedded Cylance Infinity Engine, a next-generation
malware detection technology engine, into its SureView Threat Protection
solution.
6.
Hacking team news -
A Researcher has lashed out at Hacking Team after discovering his codes have
been used (without notice or permission by Hacking Team), as a springboard in
the development of Android surveillance tools sold to governments and law
enforcement agencies. In South Korea, the revelation that their National
Intelligence Service (NIS) was a hacking team customer, has been politically
explosive. An Intelligence officer who used this software was found dead over
last weekend in an apparent suicide as controversy swirls in the country over
use of the software.
7.
An IT security drill
went off the tracks in Belgium. The govt. wanted to train its employees against
phishing attacks and hence setup a fake spam email confirming the employee's
travel to Paris and stay in a fancy hotel. Those who choose to cancel the trip
were supposed to reply to the said email within 3 days along with their credit
card number. Instead the worried employees called the train company to
complain, overwhelming the bewildered staff . The govt. apologized to the
train company for not keeping them informed and “being a bit overzealous.”
8.
According to Global
CEO Outlook 2015 by KPMG - Half of the CEOs are not fully prepared for a
cyber-event. Yet, cyber security was named by 20 percent of respondents as one
of the top five risks—right behind the related issues of third party and supply
chain risks. For technology firms, information security edged out all other
risks as the most pressing threat. Most of them also believe that Cyber
security risk is the most unpredictable one.
And finally the Indian connection to Ashley Madison - of the 37Million global users, 2.7 Lakh users are from India and now may stand to be exposed: