Silensec Newsletter

Category: News

Top News

Kenya's Communication Authority looking into WhatsApp regulation

The Communications Authority of Kenya is considering a move to regulate online services which is a big move by the regulator.

According to reports, the authority is in search of a consultant to study how these services, also termed as over-the-top services (OTTS) like WhatsApp or Skype could be regulated.

The authority will study the outcome and the recommendations from the consultancy and decide what aspects it will implement as part of its mandate.

Read more...

Two New Bluetooth Chip Flaws Expose Millions of Devices to Remote Attacks

Security researchers have unveiled details of two critical vulnerabilities in Bluetooth Low Energy chips embedded in millions of access points and networking devices used by enterprises around the world.

Dubbed BleedingBit, the set of two vulnerabilities could allow remote attackers to execute arbitrary code and take full control of vulnerable devices without authentication, including medical devices such as insulin pumps and pacemakers, as well as point-of-sales and IoT devices.

Read more...

Major Hacks of the Week

The Radisson Hotel Group has suffered a data breach

The hotel chain Radisson Hotel group suffered a security breach that exposed personal information (name, address; including country of residence), email address, and in some cases, company name, phone number, Radisson Rewards member number, and any frequent flier numbers on file) of the members of its loyalty scheme.

Read more...

Illinois invests $7 million in cybersecurity to prevent election hacking

The state of Illinois is concentrating all its efforts on voter registration security to avoid incidents similar to those in when Russian hackers used SQL injection to breach the state’s voter registration database.

As it was the only state to lose its voter database to hackers two years ago, Illinois has used millions of dollars it received from Congress to improve cybersecurity and prevent further programming errors to ensure the democratic process won’t be affected during the midterms, writes Tech Republic.

Read more...

Major Vulnerabilities Disclosed

Just after Apple released iOS 12.1, a researcher presented a Passcode Bypass issue

A few hours after Apple released iOS 12.1 the iPhone bug hunter Jose Rodriguez has found a new passcode bypass issue that could be exploited to see all contacts' private information on a locked iPhone.

The new passcode bypass attack doesn't leverage on Siri or VoiceOver screen reader feature enabled on a target iPhone.

Read more...

DDoS attacks demand different defense strategies

Despite the fact that firewalls, IPS and load balancers are some of the least effective mitigation measures against distributed denial of service DDoS attacks, they remain at the top of the list of security measures that organizations have said they plan to employ against DDoS attacks.

Read more...

Legal, Regulatory and Corporate
Security and Beyond

DDoS-Capable IoT Botnet 'Chalubo' Rises

A new piece of malware is targeting Internet of Things (IoT) devices in an attempt to ensnare them into a botnet capable of launching distributed denial-of-service (DDoS) attacks, Sophos Labs reports.

Dubbed Chalubo (ChaCha-Lua-bot), the malware incorporates code from the Xor(dot)DDoS and Mirai families, but also brings improvements in the form of anti-analysis techniques.

Read more...

Russian Government-owned research institute linked to Triton attacks

Security experts discovered a new strain of malware dubbed Triton that was specifically designed to target industrial control systems ICS.

The Triton malware has been used in attacks aimed at a critical infrastructure organization in the Middle East, experts speculate the involvement of a state-sponsored actor for sabotage purpose due to the lack of financial motivation and the level of sophistication of the attacks.

Read more...

Security Awareness Tip

DID YOU KNOW?: Some alarming Cyber Security Facts & Stats

  1. There is a hacker attack every 39 seconds, affecting one in three cyber users each year.
  2. 95% of breached records came from three industries in 2016: Government, retail, and technology.
  3. 43% of cyber attacks target small business. 64% of companies have experienced web-based attacks.
  4. The average cost of a data breach in 2020 will exceed $150 million, as more business infrastructure gets connected.
  5. Over 75% of health care industry has been infected with malware over last year.
  6. Large-scale DDoS attacks up 140% in 2016’s Q4.
  7. Approximately $1 trillion is expected to be spent globally on cybersecurity since 2017 to 2021.
  8. Unfilled cybersecurity jobs worldwide will reach 3.5M by 2021.
  9. By 2020 there will be roughly 200 billion connected devices. The risk is real with IoT and its alarming growth.
  10. Only 38% of global organizations claim they are prepared to handle a sophisticated cyber attack.
  11. Total cost for cyber crime committed globally has added up to 100 billion dollars.

Now you are in the know! Stay Tuned for more information on cybersecurity

Read more...

Silensec Editorial Team

Editor: Dr. Almerindo Graziano
Dr. Graziano is the Silensec CEO. He holds an MSc in Electronic Engineering and a PhD in Mobile Computer Security, both from the University of Naples, Italy. Dr. Graziano has consulted in information security for private and government organisations across Europe, Africa and Middle East over the last 15 years. He is also a BSI-certified ISO27001 Lead Auditor trainer and auditor

Vice Editor: George Nicolaou (BSc, MSc)
George Nicolaou (BSc, MSc) leads the Silensec Malware Analysis Lab (MAL). He received his BSc in Computer Science and MSc in Advanced Computing Security from the University of Bath in UK, where he pursued research in malware and vulnerability analysis. For many years George has also been the Head of Research and Development department of the Astalavista Security Community. George is also a frequent speaker at security conferences around the world on advanced malware analysis, reverse engineering and exploit development techniques.

Digital Editor: Salome Omondi (B.Com)
Salome Omondi leads the Silensec Marketing Department. She holds a Bachelors of Commerce and Management from Strathmore University. Miss Omondi publishes the weekly Silensec Newsletter, keeping you up to date with the latest infosec news as well as improving information security awareness.


Please feel free to share this with interested parties via email, and social media. For a free subscription, please subscribe to our Mailing list and feed-image Feed .

For any questions please click on the following contact us link

Silensec Cyprus HQ

Silensec Africa

Feel free to contact us if you have any problems.

Silensec UK

Feel free to contact us if you have any problems.

News Feed