ICYMI: Blacknurse, Facebook Spam, ATM Machines, NSA and the Three breach
This week, A Blacknurse DDoS that can cripple with only one laptop, Facebook spam delivers Locky, ATM scammers, NSA's dark tower and two arrests after the three data breach.
This week it was revealed that a gang have been using malware that makes ATMs literally spit out cash
A Blacknurse Dos attack can bring an overwhelming DDoS attack to bear from a very small place according to Firemon researchers. In a study released this week, Firemon reminded readers the grave security catastrophes that poor firewall management can cause.
Two researchers caught a Facebook spam campaign delivering not just Nemucod malware downloaders but Locky ransomware too. Fraser Kyne, CTO of Bromium told SC at the time that though the scam is obvious, it's also delivered via an incredibly popular social media platform, meaning that even if only a fraction of potential victims fall for the scam, the damage down could be serious.
A group named Cobalt has come up with a novel way of stealing money. According to Group IB, Cobalt has developed a piece of malware capable of making cash machines literally spit out money.
In Group IB's disclosing report calls the technique, touchless jackpotting. Its authors write: “To make ATMs give out cash, criminals launch malware using the Extensions for Financial Services (XFS) standard. On command from the bank's internal network, the program starts dispensing notes until machines are empty.”
A mysterious lower manhattan skyscraper has been outed as a major surveillance hub for the National Security Agency. The 550 foot tall, windowless building apparently began life as a telecommunications centre which could stand a nuclear strike, but has since been repurposed to serve as a covert surveillance base.
The news was broken by Ryan Gallagher, a reporter for the Intercept, a publication famous for holding the remaining Snowden Cables.
Two men from Greater Manchester were arrested earlier this week by the National Crime Agency under suspicion of involvement in the breach on mobile phone operation, Three. Another individual from Kent is apparently assisting police in the investigation.