August 5, Securityweek – (International) Symantec patches critical vulnerabilities in Endpoint Protection. Security researchers from Code White discovered 6 vulnerabilities in Symantec Endpoint Protection (SEP) 12.1, including an authentication bypass, 3 path traversals, a privilege escalation, multiple structured query language (SQL) injections, and a high severity binary planting flaw which could allow an unauthenticated attacker to execute arbitrary commands on the SEP Manager (SEPM) server and on SEP clients running Microsoft Windows. Symantec released a patch addressing the vulnerabilities and users are urged to update their SEP installations. Source
August 5, Securityweek – (International) “Man-in-the-Cloud” attacks leverage storage services to steal data. Findings from Imperva’s latest Hacker Intelligence Initiative report revealed that attackers can abuse popular cloud storage services for command and control (C&C) communications, endpoint hacking, remote access, and data exfiltration via Man-in-the-Cloud (MITC) techniques in which they access and decrypt stored user synchronization tokens. Source
August 4, Washington Examiner – (National) Labor Department vulnerable to data breach. The inspector general’s office released a report August 4 which found several cybersecurity gaps in the U.S. Department of Labor’s information security program, including serious control deficiencies in how the department handles its personal identity verification (PIV) cards and related systems, as well as a lack of a system to lock out individuals after multiple unsuccessful log-in attempts, among other findings. The report stated that the department was made aware of the findings and continues to work to address the issues. Source