{"id":21156,"date":"2022-04-04T08:10:36","date_gmt":"2022-04-04T12:10:36","guid":{"rendered":"https:\/\/www.itworldcanada.com?p=479240"},"modified":"2022-04-04T11:18:05","modified_gmt":"2022-04-04T15:18:05","slug":"cyber-security-today-april-4-2022-british-teens-face-lapsus-related-criminal-charges-an-mfa-warning-and-updates-needed-for-github-rockwell-plcs-and-apple-devices","status":"publish","type":"post","link":"https:\/\/technewsday.com\/staging\/cyber-security-today-april-4-2022-british-teens-face-lapsus-related-criminal-charges-an-mfa-warning-and-updates-needed-for-github-rockwell-plcs-and-apple-devices\/","title":{"rendered":"Cyber Security Today, April 4, 2022 \u2013 British teens face Lapsus$-related criminal charges, an MFA warning and updates needed for Github, Rockwell PLCs and Apple devices"},"content":{"rendered":"<p>British teens face Lapsus$-related criminal charges, an MFA warning and updates needed for Github, Rockwell PLCs and Apple devices.<\/p>\n<p>Welcome to Cyber Security Today. It\u2019s Monday, April 4th, 2022. I\u2019m Howard Solomon, contributing reporter on cybersecurity for ITWorldCanada.com.<\/p>\n<p><iframe style=\"border: none;\" title=\"Libsyn Player\" src=\"https:\/\/html5-player.libsyn.com\/embed\/episode\/id\/22664510\/height\/90\/theme\/custom\/thumbnail\/yes\/direction\/forward\/render-playlist\/no\/custom-color\/000000\/\" width=\"100%\" height=\"90\" scrolling=\"no\" allowfullscreen=\"allowfullscreen\"><\/iframe><\/p>\n<table style=\"width: 100%;\">\n<tbody>\n<tr>\n<td><a href=\"https:\/\/www.amazon.com\/ITWC-Cyber-Security-Today\/dp\/B07BRNG89P\/ref=sr_1_1?s=digital-skills&amp;ie=UTF8&amp;qid=1522688435\" rel=\"noopener noreferrer\"><img loading=\"lazy\" decoding=\"async\" loading=\"lazy\" class=\"aligncenter wp-image-396718 size-full\" src=\"https:\/\/i.itworldcanada.com\/wp-content\/uploads\/2017\/09\/sub-alexa-200.png\" alt=\"Cyb er Security Today on Amazon Alexa\" width=\"200\" height=\"74\" border=\"none\"><\/a><\/td>\n<td><a href=\"https:\/\/www.google.com\/podcasts?feed=aHR0cDovL2N5YmVyc2VjdXJpdHl0b2RheS5saWJzeW4uY29tL3Jzcw%3D%3D\" rel=\"noopener noreferrer\"><img loading=\"lazy\" decoding=\"async\" loading=\"lazy\" class=\"thumbnail aligncenter wp-image-408712 size-full\" src=\"https:\/\/i.itworldcanada.com\/wp-content\/uploads\/2018\/09\/sub-gp-200.png\" alt=\"Cyber Security Today on Google Podcasts\" width=\"200\" height=\"74\"><\/a><\/td>\n<td><a href=\"https:\/\/itunes.apple.com\/ca\/podcast\/cyber-security-today\/id1363182054\" rel=\"noopener noreferrer\"><img loading=\"lazy\" decoding=\"async\" loading=\"lazy\" class=\"aligncenter wp-image-396720 size-full\" src=\"https:\/\/i.itworldcanada.com\/wp-content\/uploads\/2017\/09\/sub-itunes-200.png\" alt=\"Subscribe to Cyber Security Today on Apple Podcasts\" width=\"200\" height=\"74\" border=\"none\"><\/a><\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<p><strong>Two of the seven young people<\/strong> recently detained in the United Kingdom for allegedly helping the Lapsus$ extortion gang <a href=\"https:\/\/www.cityoflondon.police.uk\/news\/city-of-london\/news\/2022\/march\/two-teenagers-charged-in-connection-with-investigation-into-hacking-group\/\" rel=\"noopener\">now face criminal charges<\/a>. The two, both teenagers, are charged with four counts of unauthorized access to a computer and one count of fraud. One 16 year old has also been charged with causing a computer to perform a function to secure unauthorized access to a program.<\/p>\n<p><strong>Separately,<\/strong> the SANS Institute is reminding IT leaders to train employees to be wary of techniques used by attackers to get around multifactor authentication. This is because one of the ways the Lapsus$ gang has been able to worm its way into victims\u2019 IT systems is by exhausting an employee with MFA approval requests. Multifactor authentication login protection often involves setting up a cellphone to receive a text message with a six-digit code. Usually that code has to be entered on a separate device in addition to a username and password. However, some MFA systems let a user press an \u201cAccept\u201d button on the screens of their mobile device to send the code and complete the login. This is called a push notification. If a Lapsus$ gang member gets hold of a victim\u2019s username and password, they bombard the victims\u2019 phone with repeated multifactor code requests hoping the victim will get annoyed and just press \u2018Accept.\u2019 Sometimes attackers will try harassing employees when they\u2019re sleeping, hoping they\u2019ll just press the button and let them get back to sleep. With the code received, the hacker gets into the IT system. A commentary published Friday by researchers at the SANS Institute notes this tactic isn\u2019t new. In fact sometimes hackers are smart enough to slowly send code requests. So where push notification is allowed employees have to be reminded not to fall for this trick \u2013 and if they get unexpected code approval requests it should be reported.<\/p>\n<p><strong>Attention developers<\/strong> using the Github application development platform: <a href=\"https:\/\/about.gitlab.com\/releases\/2022\/03\/31\/critical-security-release-gitlab-14-9-2-released\/#static-passwords-inadvertently-set-during-omniauth-based-registration\" rel=\"noopener\">Security updates have been released<\/a> for the Community and Enterprise Editions of the platform. Github says they have to be installed immediately. They fix a number of vulnerabilities. The most serious is the inadvertent setting of a hardcoded password for accounts using an OmniAuth provider like OAuth, LDAP or SAML. An attacker getting hold of the password can take over a Github user\u2019s account and manipulate or destroy their work.<\/p>\n<p><strong>Attention industrial<\/strong> operational network administrators: If you have programmable logic controllers from Rockwell Automation in your environments they need to be patched immediately. <a href=\"https:\/\/claroty.com\/2022\/03\/31\/blog-research-hiding-code-on-rockwell-automation-plcs\/\" rel=\"noopener\">Security researchers at Claroty<\/a> have discovered two serious vulnerabilities in Rockwell\u2019s Logix series of devices and in the Studio 5000 Logix Designer software for creating apps. These vulnerabilities can allow an attacker to modify code and therefore damage a systems\u2019 operations.<\/p>\n<p><strong>How does<\/strong> the Internet keep working in war-torn Ukraine? In certain parts of the country it can\u2019t. <a href=\"https:\/\/therecord.media\/meet-the-frontline-workers-keeping-the-internet-online-in-ukraine\/\" rel=\"noopener\">But according to the news site The Record<\/a>, where they can rival telecommunication companies are now working together to share their networks and personnel to keep connectivity up.<\/p>\n<p><strong>Finally,<\/strong> <a href=\"https:\/\/therecord.media\/apple-releases-fixes-for-two-zero-days-affecting-macs-iphones-and-ipads\/\" rel=\"noopener\">Apple released important fixes<\/a> for some models of iPhones, iPads and Macs. Usually they get installed automatically, but it doesn\u2019t hurt to check.<\/p>\n<p>Remember links to details about podcast stories are in the text version at ITWorldCanada.com.<\/p>\n<p>You can follow Cyber Security Today on Apple Podcasts, Google Podcasts or add us to your Flash Briefing on your smart speaker.<\/p>\n<p>The post <a href=\"https:\/\/www.itworldcanada.com\/article\/cyber-security-today-april-4-2022-british-teens-face-lapsus-related-criminal-charges-an-mfa-warning-and-updates-needed-for-github-rockwell-plcs-and-apple-devices\/479240\">Cyber Security Today, April 4, 2022 \u2013 British teens face Lapsus$-related criminal charges, an MFA warning and updates needed for Github, Rockwell PLCs and Apple devices<\/a> first appeared on <a href=\"https:\/\/www.itworldcanada.com\/\">IT World Canada<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Today&#8217;s podcast reports on U.K. teens charged with cyber offences, how MFA can be over-ridden and security updates to be installed<\/p>\n<p>The post <a href=\"https:\/\/www.itworldcanada.com\/article\/cyber-security-today-april-4-2022-british-teens-face-lapsus-related-criminal-charges-an-mfa-warning-and-updates-needed-for-github-rockwell-plcs-and-apple-devices\/479240\">Cyber Security Today, April 4, 2022 \u2013 British teens face Lapsus$-related criminal charges, an MFA warning and updates needed for Github, Rockwell PLCs and Apple devices<\/a> first appeared on <a href=\"https:\/\/www.itworldcanada.com\/\">IT World Canada<\/a>.<\/p>\n","protected":false},"author":17,"featured_media":20668,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[360,16],"tags":[389,388],"class_list":["post-21156","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-podcasts","category-security","tag-cyber-security-today","tag-privacy-security"],"acf":[],"_links":{"self":[{"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/posts\/21156","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/users\/17"}],"replies":[{"embeddable":true,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/comments?post=21156"}],"version-history":[{"count":3,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/posts\/21156\/revisions"}],"predecessor-version":[{"id":21196,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/posts\/21156\/revisions\/21196"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/media\/20668"}],"wp:attachment":[{"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/media?parent=21156"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/categories?post=21156"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/tags?post=21156"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}