WEEK ENDING: 10th December – A ROUNDUP IN I.T. & TECH NEWS
It’s been another busy week in the world of I.T. and tech. Catch up on the latest headlines here before you start your weekend.
This week, our trusty roundup has everything from Microsoft seizing malicious domains from Chinese hackers, a new feature added to Firefox95 to protect from malicious code and all you need to know about Twitter’s latest phishing attempt.
Let’s get you caught up.
Chinese Hackers have 42 malicious web domains seized by Microsoft
On Monday, Microsoft announced the seizure of 42 domains used by a China-based espionage group whose sights were set on organisations in the US and 28 other countries.
Microsoft described the cyber assaults as ‘highly sophisticated’ using a multitude of techniques, including breaching remote access services and exploiting vulnerabilities in unpatched VPN appliances as well as Exchange Server and SharePoint systems. By inserting ‘hard to detect malware that facilitates intrusion, surveillance and data theft’, it intends to hack into the victims account and maintain a persistence presence over a period of time to infiltrate files and collect emails from Microsoft 365 accounts using compromised credentials.
Read more here.
Firefox 95 rolls out new sandboxing technology to protect from malicious code
Mozilla has begun to introduce a new sandboxing technology called RLBox that prevents untrustworthy code and other security flaws from causing ‘accidental defects’ as well as supply-chain attacks. Implemented in collaboration with researchers at the University of California San Diego and the University of Texas, RLBox’s improved mechanism optimised for protection is designed to harden the web browser against potential weaknesses in off-the shelf libraries.
The framework makes use of Web Assembly, an open standard that defines a portable binary-code format to run on modern web browsers, to isolate potentially unsafe code. All major browsers should run web content through their own sandboxed environments anyway, however, these are often overworked when attacks aim to string together two or more flaws that aim to breach the sandboxing process. Effectively, this undermines the security measures put in place.
Instead of this, RLBox works to ‘minimise the burden of converting Firefox to securely and efficiently use untrusted code’. By isolating the libraries in lightweight sandboxes, it is hoped that threat actors can’t exploit vulnerabilities in the subcomponents affecting the rest of the browser.
Learn more about the feature here.
Numerous verified Twitter accounts targeted as part of large phishing attempt
You can spot a verified Twitter account by the blue badge with a checkmark next to its name, but now, those accounts are being targeted as part of a large phishing attempt that takes advantage of Twitter’s removal of the verified badge.
Reportedly, the campaign sends an email to users requesting them to help verify their identity to maintain a verified status. The phishing message initially entices the user to click the ‘update now’ button, linking to websites requesting entry of Twitter credentials, which the form fails to validate. The user is then requested to input the two-factor authentication code issued to them.
Learn more about how the scam works by clicking here.
Those were some of this week’s biggest stories in I.T. and tech, but if you want more content, follow us across our four social media channels.