blog-banner.jpg

Total Cloud Security Blog

Bitglass Security Spotlight: Vulnerability Found on TikTok Platform

By Juan Lugo | January 13, 2020 at 5:00 AM
Newspaper Icon with News Title - Red Arrow on a Grey Background. Mass Media Concept.

Here are the top stories of recent weeks:

  • Security Vulnerability Found on TikTok Platform Jeopardized More Than One Billion Users
  • Cyber Attack Warning Issued to Businesses by Homeland Security
  • New Data Wiper Malware Compromises Bapco, a Leading Oil Company
  • Backdoor Created by Hackers to Infiltrate High-Value Targets
  • High-Severity Password Security Vulnerability Exposes PayPal Users

Security Vulnerability Found on TikTok Platform Jeopardized More Than One Billion Users

Recent security analysis confirms that the social platform, TikTok, had multiple discrepancies that put more than one billion mobile users at risk of having their information compromised. Threat actors could easily exploit the social media platform’s SMS messaging feature, by spoofing messages in order to send them to any user on the platform – to gain access to users’ information. In addition to that, the messages would appear as if they were from the company itself, rather than from an individual user. 

Cyber Attack Warning Issued to Businesses by Homeland Security

Just days after the killing of a leading Iranian military commander, Qasem SoleimaniIt, the first official cybersecurity warning has been issued. The U.S. government’s cyber advisory unit, the Cybersecurity and Infrastructure Security Agency (CISA), claims that all organizations across the nation should be proactively cautious in the event of cyber attacks. CISA went on to state that American communications and energy companies may be prime strategic targets for malicious actors. 

New Data Wiper Malware Compromises Bapco, a Leading Oil Company

Bapco, an oil company in Bahrain was hit with a new strain of data-wiping malware. The hackers that are said to be state-sponsored by Iran, used a new threat vector coined “Dustman”. According to ZDNet, this malware is designed to delete data on infected devices, once launched into execution. Dustman is the upgraded version of the “ZeroCleare” wiper that was discovered in the fall of 2019. The malicious actors are said to have gained control over a VPN server, then escalated their access to a Bahrain local domain controller.

Backdoor Created by Hackers to Infiltrate High-Value Targets

TrickBot, the infamous cybercriminal group that targets high-value assets such as banking credentials, typically from enterprise companies globally. It is said to specialize in Trojans that are in constant states of evolution, and recently developed a new backdoor to monitor valuable victim systems. The revamped protocol is said to have new modules and tools that enable them to stay one step ahead of IT teams and to conduct both data exfiltration and persistence. 

High-Severity Password Security Vulnerability Exposes PayPal Users

Upon exploring PayPals login form a hacker, Alex Birsan, found a big problem. The login prompt being the most popular page on the site had a backdoor that would enable sophisticated hackers to gain access to users accounts.The attack methodology was not straightforward but threat actors are not afraid of comprehensive security measures if the potential payout is worth it. As such, the researcher that found the flaw earned a bug bounty of $15,300 from PayPal.

To learn about cloud access security brokers (CASBs) and how they can protect your enterprise from data leakage, malware, and more, download the Top CASB Use Cases below. 

Top CASB Use Cases