SECURITY WARNINGS & Notices - Please post them here

[mchain]

7 Big Ways Online Rights Have Changed This Year
https://blog.mozilla.org/internetcitizen/2018/06/25/changes-to-online-rights/?utm_source=desktop-snippet&utm_medium=snippet&utm_campaign=OnlineRights&utm_term=9193&utm_content=REL&sample_rate=0.001&snippet_name=9193

[Asyn]

Phishing scam targets WordPress users
https://blog.avast.com/phishing-scam-targets-wordpress-users

[Asyn]

Theft of Customer Data at British Airways
http://www.iairgroup.com/phoenix.zhtml?c=240949&p=irol-newsArticle_Print&ID=2366426
https://www.britishairways.com/en-gb/information/incident/data-theft/latest-information

A lot in the papers and the news in the UK about this today.  They are already talking about financial penalties, something like a few million or 4% of turnover, whichever is higher and that could be as much as a few £billion. 

Now would be the question where does this financial penalty go ?
I rather doubt it would go towards and fraudulent use of those customers card information, etc.  They may well be able to try and get recovery from the banks for fraudulent use, but why should the banks be held liable or responsible.

380K British Airways transactions compromised in data breach
https://blog.avast.com/british-airways-hack-similar-to-ticketmaster-breach

[DavidR]

Theft of Customer Data at British Airways
http://www.iairgroup.com/phoenix.zhtml?c=240949&p=irol-newsArticle_Print&ID=2366426
https://www.britishairways.com/en-gb/information/incident/data-theft/latest-information

A lot in the papers and the news in the UK about this today.  They are already talking about financial penalties, something like a few million or 4% of turnover, whichever is higher and that could be as much as a few £billion. 

Now would be the question where does this financial penalty go ?
I rather doubt it would go towards and fraudulent use of those customers card information, etc.  They may well be able to try and get recovery from the banks for fraudulent use, but why should the banks be held liable or responsible.

380K British Airways transactions compromised in data breach
https://blog.avast.com/british-airways-hack-similar-to-ticketmaster-breach

Very interesting and scary article.

[Pondus]

Security flaw in ‘nearly all’ modern PCs and Macs exposes encrypted data
https://techcrunch.com/2018/09/12/security-flaw-in-nearly-all-modern-pcs-and-macs-leaks-encrypted-data/?guccounter=1


The Chilling Reality of Cold Boot Attacks  >>  https://blog.f-secure.com/cold-boot-attacks/

[Pondus]

Attack Landscape of 2018, So Far
https://blog.f-secure.com/attack-landscape-2018-far/

[polonus]

L.S.

Content injection vulnerability via install.php in outdated Duplicator Word-Press plug-in:
Read https://blog.sucuri.net/2018/09/outdated-duplicator-plugin-rce-abused.html
Weakness: https://github.com/vichan-devel/vichan/issues/284
Word Press vuln. https://secure.wphackedhelp.com/blog/wordpress-vulnerabilities-how-to-fix-guide-tools/
The wp-config.php-file should be checked or reinstalled when overwritten through this plug-in hole.

PHP weaknesses and bad word press configuration will facilitate such attacks.
Still loads of WP websites with user enumeration set on enabled and directory listing enabled.
PHP-based Word Press CMS is not for the ill-instructed or n00bs, learn to configure properly and securely.

polonus (volunteer website security analyst and website error-hunter)

[Asyn]

Peekaboo! They can see you!
https://blog.avast.com/nuuo-peekaboo-vulnerability-gives-hackers-your-camera-feed

[CraigB]

Adguard attacked

https://adguard.com/en/blog/adguard-security-notice/

[polonus]

Word Press sites hacked to facilitate help desk fraud. :
https://blog.malwarebytes.com/threat-analysis/2018/09/mass-wordpress-compromises-tech-support-scams/

Scan: https://hackertarget.com/wordpress-security-scan/  and here: https://webhint.io/
PHP installs have an over 78% insecurity. WordPress, Drupal, Joomla and Magenta are PHP-based CMS.

Word Press is a CMS that comes without internal encryption, which makes it more insecure.

Read: https://developers.slashdot.org/story/14/12/31/002253/over-78-of-all-php-installs-are-insecure

Also: https://paragonie.com/blog/2017/12/2018-guide-building-secure-php-software
and https://paragonie.com/blog/2016/08/on-insecurity-popular-open-source-php-cms-platforms

polonus (volunteer 3rd party cold reconnaissance website security analyst and website error-hunter)

[Asyn]

Magecart claims another victim in Newegg merchant data theft
https://www.zdnet.com/article/magecart-claims-another-victim-in-newegg-merchant-data-theft/

[mchain]

A Big Change in Chrome 69 can put you at risk
https://www.komando.com/happening-now/486524/a-big-change-in-chrome-69-can-put-you-at-risk
To view/read relevant information, see topic listed below:
Big change in Chrome's address bar
Follow instructions on how to disable Default settings for chrome://flags/#omnibox-ui-hide-steady-state-url-scheme-and-subdomains

Apparently Avast Secure Browser 69.0 is affected as well.

[EDIT:] ASB may or may not be affected.

[bob3160]

A Big Change in Chrome 69 can put you at risk
https://www.komando.com/happening-now/486524/a-big-change-in-chrome-69-can-put-you-at-risk
To view/read relevant information, see topic listed below:
Big change in Chrome's address bar
Follow instructions on how to disable Default settings for chrome://flags/#omnibox-ui-hide-steady-state-url-scheme-and-subdomains

Apparently Avast Secure Browser 69.0 is affected as well.

[EDIT:] ASB may or may not be affected.

I personally have also applied that recommended change in the Avast Secure Browser.
Better safe than sorry.

[Asyn]

Facebook Vulnerability Affecting 50 Million Users Allowed Account Takeover
https://www.bleepingcomputer.com/news/security/facebook-vulnerability-affecting-50-million-users-allowed-account-takeover/
https://newsroom.fb.com/news/2018/09/security-update/

[Asyn]

Facebook Vulnerability Affecting 50 Million Users Allowed Account Takeover
https://www.bleepingcomputer.com/news/security/facebook-vulnerability-affecting-50-million-users-allowed-account-takeover/
https://newsroom.fb.com/news/2018/09/security-update/

Facebook security breach - what should you do?
https://blog.avast.com/facebook-security-breach-what-should-you-do