Cloud Security News: Week in Review is our blog series, grabbing the more interesting cloud security scoops from the web. Sit back, relax, and catch up on all you should know about this week.
The election continued to steal headlines this week with the Institute for Critical Infrastructure Technology releasing a study on the possibility of an election hack. According to the investigation, voter databases from all 50 states can be found on Deep Web marketplaces. While this is of concern, researchers say it would be difficult for hackers to influence the outcome of an election. In other news, early this week, South Korea’s military cyber command was hacked via a central router. The surprising part? No information appears to have been stolen. Additionally, a dating site leaked details of over one million accounts and gamers beware, the previously hacked Steam accounts are now distributing malware through the chat feature of the gaming site. There’s lots to catch up on this week, learn more from the full recaps below:
Softpedia News: South Korea’s Military Cyber Command Suffers Embarrassing Hack
By Catalin Cimpanu (@campuscodi)
State officials find that an unknown attacker hacked South Korea’s military cyber command last month. The attack took place via a central router which inspected traffic for over 20,000 computers. Although the source of the hack is unknown, no information appears to have been stolen from the hacked server. Since the exploit of the hack, this network has been isolated from the rest of the network and is currently being investigated.
TechNewsWorld: Hacking Elections Is Easy, Study Finds
By John P. Mello Jr. (@jpmello)
The Institute for Critical Infrastructure Technology released a study on the security of elections. While a few states have had voter information compromised, the study says they aren’t alone. The look into voting system vulnerabilities found that attackers could alter registration records to disrupt the voting process. Tellagraff CEO Mark Graff shares his thoughts on the possibility of an election hack including that it would be difficult for a hacker to influence an election’s outcome. “It’s one thing to steal voter registration information from websites on the Internet, but it’s quite something else to modify that information on the sites.”
By Agan Uzunovic (@AganU8)
According to a Reddit user, previously hacked Steam accounts are now distributing malware. The malware is distributed through the chat feature via a malicious URL which then requests a Flash Player download. To avoid similar security mishaps, Hack Read urges readers to be aware of suspicious links and to never download any updates from third party websites.
By Zack Whittaker (@zackwhittaker)
A New Zealand-based dating company loses grip on personal data of more than 1.5 million users. How? The database was found exposed on the internet without a password. The leak includes email addresses, passwords, gender, dates of birth, photos, Snapchat usernames, and more. While the site says passwords have been reset for the “small number” affected, ZDNet analyzed a random selection of 300 accounts to suggest that the data was live.