The week in security: Facebook scores password own-goal, ASD may not share new vulnerabilities

Credit: ID 130456767 © Sdecoret |

Facebook was on the back foot after revelations that hundreds of millions of customer passwords were being stored in plaintext.

A new form of ransomware called LockerGoga proved crippling for Norsk Hydro’s global IT network, putting the company into response mode and forcing it into a major effort to plan a recovery from what was potentially wiper malware.

The incident was a reminder about the ongoing incidence of malware in its various forms – including malvertising, which is both extremely common and extremely hard to fight.

Meanwhile, a 0day in SoftNAS Cloud drew warnings that users should upgrade ASAP, and Cisco was reaching out to customers to patch high-priority vulnerabilities in its 7800 and 8800 series IP phones.

The Australian Signals Directorate admitted it might be less proactive about a discovered vulnerability – keeping quiet about its discoveries if it was in the national interest to do so – the organisation said in outlining ‘Responsible Release Principles’ that elucidate its decision-making processes.

That leaves users to manage their security exposure using the likes of Microsoft Defender ATP – which the company rebranded from its previous Windows-only assignation after delivering it for Mac users as well.

That does nothing, of course, to stop other threats like the re-emergence of the Magecart payment card skimmer gang.

Join the newsletter!


Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.
Follow our new CSO Australia LinkedIn
Follow our new social and we'll keep you in the loop for exclusive events and all things security!
Have an opinion on security? Want to have your articles published on CSO? Please contact CSO Content Manager for our guidelines.

Tags Facebook

More about ATPCiscoFacebookMicrosoft

Show Comments

Featured Whitepapers

Editor's Recommendations

Brand Page

Stories by David Braue

Latest Videos

More videos

Blog Posts