Who needs the Dark Web when there’s Facebook? 74 groups caught selling hacked data Researchers at Cisco Talos uncover 74 Facebook groups being used for illicit activity by hundreds of thousands of users. Read more: https://zd.net/2FWAerh Cisco has warned that state-backed hackers are attempting to manipulating domain name systems (DNS) by using a combination of spear phishing and a number of known software flaws. “DNS is a foundational technology supporting the internet. Manipulating that system has the potential to undermine the trust users have on the internet. That trust and the stability of the DNS system as a whole drives the global economy. Responsible nations should avoid targeting this system,” the Cisco Talos researchers said. Over the past two years, the so-called Sea Turtle group have hacked numerous DNS registrars and registries to carry out DNS hijacking attacks against national security organizations and government agencies. The attacks have impacted 40 organizations in 13 countries. Among the flaws are ones revealed in WikiLeaks’ 2017 Vault7 leak of CIA hacking tools. Thanks to the Vault7 leak, Cisco found the critical remote code execution bug CVE-2017-3881 in its widely-deployed IOS and IOS XE network software that affected over 300 switch models, many of them from its Catalyst brand. The networking company has bumped the 2017 warning back up to the top of its security advisories page with a warning it had new information about the flaw’s exploitation by this state-sponsored hacking group. SEE: Cybersecurity in an IoT and mobile world (ZDNet special report) |… [Read full story]
ZDNet is a business technology news website published by CBS Interactive, along with TechRepublic. The brand was founded on April 1, 1991, as a general interest technology portal from Ziff Davis and evolved into an enterprise IT-focused online publication owned by CNET Networks.