ICYMI: New PayPal spam; WEF top risks; Ukraine cyber-attack; OpenSSH vulnerabilities; IoT Doorbell flawed;

News by SC Staff

The latest In Case You Missed It (ICYMI) looks at a new type of PayPal spam, WEF names cyber-attacks as one of its top three threats, Ukraine suffers major cyber-attack on main airport, OpenSSH open to MitM attacks and the IoT doorbell that reveals its owners wifi key.

New type of PayPal spam discovered

Security researcher Troy Hunt has come across a new type of spam – $0 invoices from PayPal accounts. These emails evade spam filters as they fail to trigger the typical characteristics of a suspicious email. [Read more]

Cyber-attack among World Economic Forum's top global risks

The World Economic Forum has listed cyber-security as one of the greatest threats to business around the world. In the Global Risks Report, the annual study of what the WEF fears and what the forum feels the world should fear, cyber-security has made its third appearance. [Read more]

Ukraine blames Russia for cyber-attack on airport

The Ukrainian government said that Russia is behind cyber-attacks that have left its largest airport infected with the Black Energy malware. Ukraine's Computer Emergency Response Team (CERT-UA) warned of the threat of further attacks. [Read more]

OpenSSH vulnerability means your keys are OpenPREY

Two vulnerabilities have been discovered (and fixed) in OpenSSH which could have been exploited by hackers to force clients to leak cryptographic keys and potentially expose users to man-in-the-middle attacks. [Read more]

IoT 'ding-donger' reveals WiFi passwords

The Ring WiFi doorbell, an IoT device, allows users to view whoever is on their doorstep via the internet from a mobile device when they are not home. Pen Test Partners discovered that the doorbell can be easily detached from the wall outside of a home. An orange button on the back of the bell will set the wireless component to AP mode when pressed. [Read more]

Find this article useful?

Get more great articles like this in your inbox every lunchtime

Video and interviews