Cyber Bites

Account data belonging to more than half of all Comodo Forums users has been stolen and is now traded online. The breach was possible by exploiting a vulnerability in the software that powers the forum. Comodo today published a security notice informing users that an intruder may have gained access to the forums database. "Very recently a new vulnerability in the vBulletin software, which is one of the most popular server applications for website comments including...

Security software and services company BlackBerry Limited has announced the launch BlackBerry Advanced Technology Development Labs (BlackBerry Labs), a new business unit operating at the forefront of research and development in the cybersecurity space. The Labs will be led by CTO Charles Eagan and will include a team of over 120 software developers, architects, researchers, product leads and security experts working to identify, explore and create new technologies to ensure BlackBerry is on the cutting edge of...

Motorists traveling through a Detroit suburb were stunned to see a pornographic video playing on an electronic billboard. Auburn Hills police say the video played on the billboard along Interstate 75 in Oakland County for about 30 minutes Saturday night before the images were removed. Many people called 911. Chuck McMahon says he saw the video and wondered if the billboard was advertising for a strip club. Source: News 18

n independent researcher who goes by the Twitter handle axi0mX has discovered and published an iOS jailbreak exploit that applies to hundreds of millions of devices and cannot be patched. Named checkm8, the exploit leverages a race condition vulnerability found in the bootrom, a read-only memory chip that contains the first code that initially loads whenever a user starts the system. This code cannot be altered, and so any flaw found within it is effectively permanent. Source: SC Magazine

The same attacker was reportedly behind the Collection #1 and Collection #2 data dumps earlier this year. A cybercriminal operating under the alias Gnosticplayers has broken into the Words with Friends database and gained access to 218 million player records, The Hacker News reports. The popular puzzle game is owned by Zynga, one of the biggest names in the social gaming market with other well-known offerings, including FarmVille, Mafia Wars, and Zynga Poker. Zynga issued...

This week a zero-day vBulletin remote code execution vulnerability and exploit was publicly disclosed and is being used by bad actors to attack vBulletin forums. Cloudflare has now created a special rule that will prevent this exploit from working on vBulletin sites behind Cloudflare's service. Remote code execution vulnerabilities are the most critical as they allow attackers to execute commands, take over a site, install malware, or even distribute malware from a victim's computer and web site.  Since...

An attack campaign targeting primarily the U.S. and Europe is leveraging two legitimate tools, the Node.js framework and WinDivert, to install “fileless” malware that appears to either turn victims’ systems into proxies or perpetrates click fraud. Researchers from both Microsoft Corporation and Cisco Talos yesterday filed separate reports warning of this campaign, which they have named Nodersok or Divergent, respectively. Microsoft, which discovered the campaign in mid-July, said thousands of machines have been targeted in the last several weeks alone, the majority...

Pornography played on giant television screens at an Asics sports store in New Zealand for hours over the weekend after hackers took over the shop’s IT systems. The pornography was streamed onto screens facing Auckland’s Queen Street, the country’s busiest shopping thoroughfare, and wasn’t stopped until employees arrived to open the store on Sunday morning. The Japanese company has apologised to anyone who was inadvertently subjected to the material, and said they were working with their...

Defence contractors Rheinmetall AG and Defence Construction Canada (DCC) were hit this month by cyber-attacks that impacted and disrupted their information technology systems. German Rheinmetall AG is one of the world's top suppliers of military equipment and systems, with two operational components, namely Rheinmetall Defence and Rheinmetall Automotive. "The group's 23,000-strong global workforce generated sales last year of $6.9 billion," says a press release published today. Source: Bleeping Computer

Cybercriminals have found a way to use Google Alerts to hook victims into scams or push malware. Bleeping Computer CEO Lawrence Abrams found that malicious actors are creating malicious sites into Google so they will be emailed to people who have alerts set for that particular subject matter. The malicious pages are created using popular keywords and based on hot topics. “For example, as we publish a lot of ransomware news, I have a Google Alert...