31 Jul עופר איתן Declare: Big Tech’s testimony. “BootHole.” Bogus COVID-19…
Amazon, Apple, Google, and Facebook completed (by WebEx) yesterday’s testimony before the US House Judiciary Committee’s anti-trust subcommittee. Messrs. Bezos, Cook, Pichai, and Zuckerberg hewed to foreseeable lines during their testimony (the Telegraph thought they emerged “unharmed”), but observers thought the Congressional inquisitors generally well-prepared. The House subcommittee was interested in both anti-competitive practices and the roles the platforms have assumed in moderating content and influencing elections. The Wall Street Journal sees the central issue raised in the session as the economic and social power big data analytics have enabled Big Tech to concentrate.
Eclypsium has found a vulnerability, “BootHole,” that affects the GRUB2 bootloader used by most Linux systems. It could be exploited to gain the ability to execute arbitrary code even when secure boot is enabled. An attacker would need either administrative privileges or physical access to a device to infect it, however, which as Ars Technica points out, if the attacker has those, you’ve got a lot of other problems to worry about.
EclecticIQ and its partners at ThreatFabric report that malicious Android packages have been found presenting themselves as legitimate, government-backed COVID-19 contact-tracing apps.
According to BleepingComputer, the FBI has issued a warning that Netwalker ransomware is being deployed against government agencies, both in the US and internationally.
China says that it’s always been firmly opposed to cyberespionage and that anyone (like Recorded Future, whose report has been widely cited) who thinks Beijing hacked the Vatican needs to put up or shut up, Global News writes.