Over a million developers have joined DZone.

This Week in Security: Hilton, GlassRAT, Amazon, Cryptowall, and Anonymous

This week in security we check in on hotel POS malware intrusions, GlassRAT discovers a trojan, and Amazon resets user passwords.

· Performance Zone

Evolve your approach to Application Performance Monitoring by adopting five best practices that are outlined and explored in this e-book, brought to you in partnership with BMC.

Hilton Hotels have announced that their POS system was infected with malware that targeted card information and suggests customers should check their statements if they used a card at a Hilton hotel between November 18 and December 5, 2014 or April 21 and July 27, 2015.

You can read Hilton's press release here

Starwood Hotels

Starwood Hotels were also hit by POS Malware intrusion. You can read more about the details of the Starwood POS Malware intrusion here.

Starwood Press Release

GlassRAT

RSA has discovered yet another trojan that has remained hidden for year, this trojan originated in China and is principally targeted at Chinese citizens.

Read more about it here on Dark Reading

or

here at RSA

Amazon

Amazon has forcibly reset some users passwords for security reasons, they found a possible vulnerability but they have no reason to believe that passwords have been disclosed. They also introduced this week two-step verification to offer even greater security to their customers.

DELL

DELL accidentally installed on new computers and via software update on others the private key for one of its CA certificates leaving customers open to Man in the Middle Attacks, a second certificate was also later found called DSDTestProvider which leaves customers open to a slightly different attack.

eDellroot and DSDTestProvider Certificate issues

Talk Talk Blackmailer

An 18 year old from Wales has been arrested and bailed on suspicion of Blackmail

More on the October Breach

Cryptowall 4.0

Cryptowall 4.0 is now being delivered by the nuclear exploit kit. You can read more about this in the following two articles:

SC Magazine Cryptowall 4.0

InfoSec Handlers Diary Blog

Anonymous

Anonymous launched Rickrolling attacks on IS. Good old Rick Astley from Warrington is being used to fight terrorism.

Read about it here

Oops!

Learn tips and best practices for optimizing your capacity management strategy with the Market Guide for Capacity Management, brought to you in partnership with BMC.

Topics:
vulnerabilities ,security

Opinions expressed by DZone contributors are their own.

The best of DZone straight to your inbox.

SEE AN EXAMPLE
Please provide a valid email address.

Thanks for subscribing!

Awesome! Check your inbox to verify your email so you can start receiving the latest in tech news and resources.
Subscribe

{{ parent.title || parent.header.title}}

{{ parent.tldr }}

{{ parent.urlSource.name }}