Ensilo_Blog_02-27-17-500x500.jpg

This week all is being focused on the U.S. presidential elections with "unprecedented efforts" being made to protect any potential attacks on the voting system; Google disclosed a Windows exploit that highlighted the importance of responsible disclosure; U.K hospitals were thrown off this week by a cyber attack and ransomware hits are still rising.

Highlighting the cyber-security news from the past week in a 120 sec. read. Starting now.


Cyber Security

The U.S. is making “unprecedented efforts” to counter act any possible cyberattack interference that may occur in the upcoming Presidential election tomorrow on  Nov. 8.

Why is this signficant?

  • The recent email exposure of the DNC hack and the private email hack of the upcoming presidential candidate has caused the White House, Department of Homeland Security, NSA and CIA to all work together to be sure that the elections are not warped in any shape or form.
  • The U.S. can confirm that the voting machines do not have any connection to the Internet.  In recent reports, voting machines were hackable in 7 seconds “The threat the cyber experts say, starts with the machines that tally the votes and crucially keep a record of them—or, in some cases, don't.”
  • Cybersecurity is a growing risk that one can only hope that the newly elected CISO of the White House will intervene to support the next president of the United States.

    /**Interested in reading a fresh perspective on cybersecurity for the new president**/
    Read the full story on NBC News

Exploits

Microsoft is up in arms over a Windows exploit that Google Project Zero released prematurely.

Why is this signficant?

  • The Windows exploit has been seen in the wild used by a Russian hacking group, STRONTIUM (that has numerous alias). With an exploit being seen in the wild - Google has a published policy for actively exploited critical vulnerabilities -  Google released the information found on the flaw after 7-days.  
  • Microsoft argues that the flaw was not a critical one, even though STRONTIUM was using the flaw in targeted attacks.  Microsoft says that they will patch the vulnerability on Nov. 8.  
  • This issue brings up the need of how responsible disclosure should be applied.  "The Google-Microsoft disclosure dispute is yet another example of why the 90-day window for vulnerability disclosure that has been industry practice for some time should be an actual regulatory requirement," says Udi Yavo, co-founder and CTO at enSilo.

    Read the full story on Dark Reading

Cyber Attack

A cyber-attack forced UK hospitals to cancel routine checkups and postpone surgeries.

Why is this signficant?

  • It’s not disclosed what type of cyber-attack that affected routine check-ups and postponed surgeries, but the malware could have been ransomware, a botnet or a number of other types of malware.
  • The source of infection and the timetable of the infection were not disclosed, but speculations turn to the possibility of a threat actor/s tapping into a vulnerability due to NHS hospitals still running unsupported Windows XP. 
  • Although Windows XP are unsupported, most organizations shy away from installing third party security solutions to avoid clogging these old systems.
  • Healthcare and hospitals continue to be targeted in cyber-attacks due to budgets not being allocated to update systems/cybersecurity and also healthcare’s reputation of not focusing on cybersecurity as a priority./**enSilo is proud to have tiny feet. Supporting all Windows versions – from XP and above, enSilo leaves no computing traces on devices **/Read the full story on Krebs On Security