ClickSSL Weekly InfoSec Snipper January 9, 2017

This entry is part 56 of 73 in the series Weekly Infosec Snipper

The rise of Cyber Attack in December 2016, Symantec report says

Symantec is ready with its last intelligence report for 2016 year. The intelligence report indicates that Symantec has blocked 388,000 web attacks compare to 299,000 attacks recorded in previous month. The ratio of exploit kit was not changed this month where exploit kit like RIG, Fiesta and Magnitude were on the top of the chart. The ratio of malware was seen on downtrend with 19.5 million from 71.2 million spotted in November month. The use of malicious PowerShell scrip is mounting this month. Even, the global spam rate was declined to 54.2% from last month.

Google fixed 95 Vulnerabilities in Mobile OS

Google rolled out security updates and fixed 95 vulnerabilities in mobile OS. Google has patched 22 vulnerabilities with this update and most of them affected its own Nexus, and Pixel device. The updates were in two parts and sent to Android devices. The updates fixed RCE, privilege elevation, information disclosure, denial of service vulnerabilities. There were also patches for audio server, networking, storage, telephone modules.

Android, Debian Linux and Ubuntu Linux are most Vulnerable, says Report

CVE database that collects details of software vulnerabilities disclosed that Android, Debian Linux and Ubuntu Linux were most vulnerable products in the last 2016 year. Android recorded 523 vulnerabilities while Debian Linux had 319 vulnerabilities and Ubuntu Linux was on third position with 278 vulnerabilities. While Adobe Flash Player was on fourth position with 266 vulnerabilities. The report shows a serious concern in rise of denial of service vulnerability in 2016. The DDoS vulnerability increased from 56 to 104 in 2016 year. Microsoft product like Windows 10 had 172 vulnerabilities while Windows server 2012 had 156 vulnerabilities.

Symantec SSL Certificate

Symantec introduced Norton Core for IoT device Security

Symantec has introduced Norton Core product at CES 2017, the product was introduced to keep monitoring packets of data transferred by connected IoT devices. The product detects malware and suspicious activity that can put the travelling date at risk. The device is equipped with 1.7 GHZ dual core processor that offers maximum speed of 2.5 Gbps. The device indicates score rating to help users to fix priority issues in their network. Upon finding issue, the core device sends notification to the user and isolates the device. Thus, it tries to secure all connected devices from any infection.

The Organization for Security and Co-operation suffered from breach

The organization “OSCE” (Organization for Security and Co-operation in Europe) created for monitoring international election and military operation has been hacked. Hackers successfully breached the IT network of the organization. However, there is no confidential documents were stolen and the reliability of the organization was affected. All systems were running even after this hacking. It is believed that Russian hacker namely Fancy Bear is involved in this breach. Still there is no confirmation about the hacking group. The OSCE is investigating the attack has identified the way in which hackers breached the network.

Series Navigation<< ClickSSL Weekly InfoSec Snipper January 2, 2017ClickSSL Weekly InfoSec Snipper January 16, 2017 >>
 

We Assure to Serve

Leading Brands

ClickSSL is platinum partner of leading CAs & offering broad range of SSL certificate products.

Valued Price

You are at right place to get cheapest SSLs; our prices are up to 79% low as compared to CAs.

100% Refund Policy

If you are not satisfied, our all SSL certificates are backed by 30-day 100% money back guarantee.

24×7 Support

Our experts are always active to help you, so you will get instant solutions for your queries.