May 31, SecurityWeek – (International) 65 million users affected by Tumblr breach. Tumblr officials reported that as a precaution, they have reset all their customers’ passwords after an Australian security researcher found that a hacker under the online name, “peace_of_mind” posted the information of 50 million Tumblr accounts on a darknet Web site called, “The Real Deal” for a small sum of money. The same hacker was also seen selling millions of records of LinkedIn, Fling.com, and Myspace users. Source
May 30, Softpedia – (International) Tor browser 6.0 based on Firefox 45-ESR released with updated security features. The Tor Project released version 6.0 for its Web browser affected Linux, Mac, and Window products that will include Hyper Text Markup Language 5 (HTML5) support, code-signing for Mac operating system (OS) X, and the removal of support for Secure Hash Algorithm 1 (SHA-1) certificates. Source
May 30, SecurityWeek – (International) Recently patched OpenSSL flaw still plagues top sites. An OpenSSL vulnerability previously patched in early May was discovered unpatched on 19 percent of Alexa Top 10,000 Web sites after a security researcher from High-Tech Bridge conducted an automated, non-intrusive scan by searching for the use of Advanced Encryption Standard (AES) Cipher Block Chaining (CBC) and by using custom OpenSSL code designed to check for the vulnerability. Source
May 30, IDG News Service – (International) WordPress plug-in flaw puts over 1M websites at risk. Security researchers from Sucuri discovered a cross-site scripting (XSS) vulnerability that affects all Jetpack versions starting with 2.0 and released since 2012 after finding that the flaw was located in the Shortcode Embeds Jetpack module and could allow an attacker to inject malicious JavaScript code into the comments of external videos, images, documents, tweets, and other resources. The flaw can be exploited to steal users’ authentication cookies, redirect victims to exploits, and inject search engine optimization (SEO) spam. Source
May 30, Softpedia – (International) Ancient Bayrob backdoor trojan resurfaces after nine years with updated versions. Security researchers discovered that the Bayrob trojan, which was dormant for nine years, started reappearing with new features including cloning techniques that allows the trojan to launch multiple processes tasked with its own malicious routine, encrypt exfiltrated information, and uses a custom protocol over Transmission Control Protocol/ Internet Protocol (TCP/IP) to communicate with its server. Source
May 27, Softpedia – (International) Reddit resets passwords for 100,000 users after recent surge in hacked accounts. A Reddit spokesperson reported May 26 that as a precaution, the company advised 100,000 of its users to reset their passwords after a security researcher detecting an increase in account hijackings. Source
Reprinted from the USDHS Daily Open Source Infrastructure Report