Web / Internet Threats














            Amazon Alexa, Google Home On Collision Course With Regulation - Voice assistants are growing rapidly
            in popularity — but at the same time, the privacy concerns and security issues with popular home
            assistant devices like Amazon Echo and Google Home are peaking too. Earlier in July, Amazon came
            under fire after acknowledging that it retains the voice recordings and transcripts of customers’
            interactions with its Alexa voice assistant indefinitely – raising questions about how long companies
            should be able to save highly-personal data collected from voice assistant devices.

                   Source:        https://threatpost.com/amazon-alexa-google-home-regulation/146357/



            Ransomware attackers have gone from 'spray and pray' to 'slayin' prey' - Black Hat Ransomware
            infections may be down, but only because attackers are getting better at targeting them. This is
            according to a report from Malwarebytes, whose team said that when it comes to crimeware figures,
            numbers can be deceiving. Malwarebytes Labs director Adam Kujawa said that, while instances of
            consumer ransomware infections are down 25 per cent over the last year, attacks on businesses are
            skyrocketing, up a whopping 235 per cent over the same period.
                   Source:
                   https://www.theregister.co.uk/2019/08/08/blackhat_malwarebytes_ransomware_report/



            8 New HTTP/2 Implementation Flaws Expose Websites to DoS Attacks - Various implementations of
            HTTP/2, the latest version of the HTTP network protocol, have been found vulnerable to multiple
            security vulnerabilities affecting the most popular web server software, including Apache, Microsoft's IIS,
            and NGINX.Launched in May 2015, HTTP/2 has been designed for better security and improved online
            experience by speeding up page loads. Today, over hundreds of millions of websites, or some 40 percent
            of all the sites on the Internet, are running using HTTP/2 protocol.

                   Source: https://thehackernews.com/2019/08/http2-dos-vulnerability.html



            30+ countries, 160,000 emails, $4.2m in cyber-heists… maybe it's time for the Silence hacker crew to
            change its name - The rapidly growing hacking crew dubbed Silence, has – in less than three years – gone
            from ransacking small regional banks in Eastern Europe to stealing millions from some of the largest
            international banks. A report issued this morning by Singapore-based infosec outfit Group-IB claims that
            Silence, active since 2016, is now operating in more than 30 countries, and has so far been able to
            infiltrate banks' computer networks to siphon at least $4.2m from compromised cash machines around
            the world. Group-IB, which has monitored the cyber-crooks since their earliest days, says that as the
            Russian gang grew, so did the sophistication of their work. Now, having survived three years, Silence is
            operating as an extremely sophisticated and capable crew.

                   Source: https://www.theregister.co.uk/2019/08/21/silence_hackers_continues_growth/





                                                    www.accumepartners.com