In this ever-changing world, cyber threats are constantly evolving. It is getting smarter and more sophisticated which poses a threat to your enterprises’safety. Cyber risks such as hacking, data leaking, and phishing may happen. StormEye balances the benefit of a rapidly growing digital economy while endeavor to secure cybersecurity. We protect your cyber safety from providing a one-stop service from prevention to solution.
Provide an overview of your enterprise’s cyber health by analysing activities that may indicate threat
Evaluate vulnerabilities on workstations and network system and identify potential risks and data leakage
Provide real time analysis of security alert generated by applications and network hardware
Raise employees cybersecurity awareness by participating in cybersecurity training
Examine attack and give recommendations on cybersecurity solutions
What happens if cooperate data has been leaked?
According to the GDPR, a personal data breach occurs when there’s a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, personal data processed. If this happens, the organization holding the personal data must notify the supervisory authority without undue delay. If the personal data breach is likely to result in a high risk to your rights and freedoms and the risk hasn’t been mitigated, then you, as an individual, must also be informed. – ec.europa.eu – GDPR, European Commission
Articles 32, to 34 and Recitals (85) to (88) of the GDPR
Lightweight cybersecurity Under the new normality of enterprises, network applications such as human resources management, purchasing, conferencing and customer service system are becoming more popular. At the same time, the challenges of security are becoming more forbidding. Under daily challenges…
Brazilian General Data Protection Act Brazilian General Data Protection Act (Lei Geral de Proteção de Dados, LGPD, in Portuguese) was a privacy law introduced by Brazil. It was passed by the Brazilian Federal Senate on August 14, 2018, and will…
StormEye believes these maladvertisements and acts of phishing will be abated, and more people will fall victim. Whilst regulatory monitoring and the resulting punishment might deter, as the cyber world has no geographical, the deterrent effect is limited. StormEye strongly…
As maladvertising content, prove to be so commonplace, is crafted to target specific groups of people, StormEye suggests users to be vigilant when visiting unfamiliar websites or clicking into advertisements and links sent by their friends and someone unknown. should…
It is important for organizations and companies to protect an individual’s data privacy. General Data Protection Regulation (GDPR), Personal Data Privacy Ordinance(PDPO) and California’s new IoT Security Law (SB-327) are laws that regulate personal data usage and security of devices.…
We classified the collected websites into 3 categories based on how a website acts when the user lands the page. Content We observed these websites have been hosted statically without any redirection scripts or iframe embedded. All hyperlinks in…
Since late June, 2019, StormEye team have observed a rise of Facebook advertisements related to Alan Tam’s secret investment. It raised our caution that this might be related to a series of cryptocurrency scam or maladvertising events. The following screenshot…
After analyzing the content of collected websites, we found that Type 1 and Type 2 websites provide the identical content of Bitcoin investment suggested as by the alleged “Alan Tam”. The layout of the page was also identical, with special…
With this proven case, StormEye extended its instigations to other potentially malicious Facebook advertisements. One prominent celebrity Mr. Andy Lau was found to have been victim to maladvertisements which have the same. We observed that this could be an auto-generated…
Data Collection StormEye began the investigation on 2 Sept 2019 and collected the related Facebook advertisements between 2 Sept 2019 and 13 Sept 2019. StormEye completed the analysing of the collected data on 18 Sept 2019 and has concluded 26…
The General Data Protection Regulation (GDPR) was imposed since 2018, aiming to protect the privacy of personal data of residents in the Eurozone. It has gain momentum in the business sector in Europe as all enterprises or companies that uses…
StormEye, based on initial validated suspicion of these Facebook advertisements were but a concerted malicious campaign carried out by hackers, began to collect data and proofs of validity from multiple locations and thereupon performed an in-depth analysis that covered more…
In July 2019, StormEye, in its routine scouting over online security landscape, spotted irregularities in multiple Facebook advertisements related to Mr. Alan Tam’s investment of Bitcoin. The series of advertisements triggered StormEye’s alert system which ran on the back of…
There are a few Zoom hacks selling in the black market right now. That means the hacker can buy the hacks and hack people directly and spy on camera (not just when you are using Zoom), monitor the target computer…
About California’s new IoT Security Law California is the first state to pass an Internet of Things (IoT) cybersecurity law (SB-327). The law has taken effect starting from 1st January 2020 and is passed to ensure that all IoT devices…
We believe that 0day or public available script would appear within 3 days to 2 weeks. At this point, we suggest acting fast to protect the systems before receiving the system patch. We recommend you to disable the compression of…
Details Microsoft has recently (10 March 2020) leaked the information of the upcoming SMBv3 patch. The CVE tracking is CVE-2020-0796. We observed that the vulnerability is in SMB3.1.1, which affects only Windows 10 and Windows Server 2016 or maybe other…
Executive Summary Microsoft has recently (10 March 2020) leaked the information of the upcoming patch, which affects only Windows 10 and Windows Server 2016 or maybe other newer versions. This vulnerability affects Windows 10 and potential Windows Server 2016 and…
StormEye carried out an investigation into the case a stolen identity of Mr. Alan Tam, a Hong Kong celebrity, whose name has been used to promote in fake “secret investment” Facebook advertisements. This investigation gives in-depth technical analysis and provides…
以色列Israel Defense Forces (IDF) 發射導彈炸毀黑客建築物以色列政府的軍方部隊 Israel Defense Forces (IDF) 日前發射導彈炸毀有指是哈馬斯黑客份子 (Hamas cyber operatives)基地的建築物,並宣稱成功停止黑客入侵及瓦解該黑客組織。此事有指為世界第一個開打網路戰的第一彈,但同時被質疑軍方消息是否可靠及是否確定黑客份子正處於該建築物而非使用被入侵並用作跳板的受害者電腦。 WordPress 插件 WPGraphQL 發現有嚴重漏洞受影響軟件: WPGraphQL, WordPress plugin受影響版本: 0.2.3WordPress 插件 WPGraphQL 被發現有不需要經過授權能執行管理員指令,可導致黑客全權接管網站,建議馬上更新插件到最新版並檢查網站日誌和可疑行為。 WordPress 正式發佈 5.2 版本 加強安全性及自動更新新版本Wordpress 正式發佈,此版本將加上自動更新功能,為Wordpress網站自動更新到最新版本以防止有任何因為未更新Wordpress而帶來的危機。為保障此自動更新功能的可靠性,Wordpress官方亦加上加密功能去確保更新伺服器回傳的檔案並未有被修改。同時官方亦簡介一下在5.3或5.4版本中會加入插件自動更新功能及Code signing,以確保插件安全。 Biance 幣安 再次被駭 盜走7,000枚比特幣(Bitcoin)相關交易資料: https://www.blockchain.com/btc/tx/e8b406091959700dbffcff30a60b190133721e5c39e89bb5fe23c5a554ab05eaBiance 幣安 宣佈 8May2019 發現一起黑客入侵,黑客疑似在入侵前已獲取了大量使用者的API密鑰及個人資料,同時亦能繞過雙重認證檢查,估計是一起帶針對性的釣魚攻擊。事件中有7,000…
[漏洞消息] Git 客戶端發現有遠程指令執行漏洞,建議馬上更新軟件 #security #cybersecurity#CVE-2018-17456 #git
[漏洞消息] WordPress 插件WooCommerce 被發現有漏洞,可令商店經理帳戶刪除伺服器上有可寫權限之檔案,建議馬上更新到 3.4.6 或以上版本。 受影響WooCommerce 插件版本:< 3.4.6#CYBERSECURITY #stormeye #Wordpress #WooCommerce #RCE
[漏洞消息] Intel SMT/Hyperthreading 比發現漏洞可被利用並偷取OpenSSL 密鑰,建議停用SMT/Hyperthreading 或更新OpenSSL 至1.1.1版本。 #Stormeye #CYBERSECURITY #OpenSSL #Intel #Hyperthreading
[漏洞消息] FreeRTOS發現有多個遠程代碼執行漏洞,請盡快更新到最新版本。 #CYBERSECURITY #stormeye #FreeRTOS
[漏洞消息] Drupal 7/8 被發現有遠端指令執行漏洞,請盡快更新到7.60/8.6.2/8.5.8 版本。 官方資料: https://www.drupal.org/sa-core-2018-006#CYBERSECURITY #stormeye #Drupal #threatintel
[安全新聞] VestaCP 開源源碼發現自5月起被植入後門,請用家馬上更新並更改密碼 #VestaCP #cybersecurity
[漏洞消息] libssh 0.6 <=; version < (0.8.4/0.7.6) 被發現能bypass 登錄驗證,請及時更新到0.8.4 或0.7.6 版本 #cybersecurity #cve-2018-10933 #libssh #ssh
[安全消息] Facebook及FBI證實有3千萬用戶資料(email/電話) 被盜,有1.4千萬資料涉及地址。 #cybersecurity #facebookhack
[安全消息] Microsoft本周二發放Windows重大更新,修正黑客組織所理用的漏洞,請盡快更新系統 #cybersecurity #windows #APT
[漏洞消息] Mozilla Firefox剛發佈重要更新修正2個嚴重漏洞,請務必更新。 #cybersecurity #CVE-2018-12386 #CVE-2018-12387
ECShop 漏洞 黑客可通過WEB攻擊直接獲得服務器權限 阿里雲應急中心在實測中證實。 ECShop全部版本(包括2.x、3.0.x、3.6.x)均存在遠程代碼執行漏洞。 阿里雲態勢感知數據研究中心監控數據顯示,該漏洞容易使用,可以造成的破壞強,並已經發現入侵跡,需要用戶進行修補。 include/lib_insert.php中,以下兩個Var的定義容許非特定類型輸入。 $arr[id] $arr[num] 導致可以在未登入情況下修改並注入木馬 #定義 #漏洞 #網絡保安#SOC
證監早在上年十月已公佈有關網絡保安的指引。當中,除左一般公司都可以應付的危機處理機制、正確建立系統外,Stormeye的網絡監察就可以幫持牌公司:2.5 偵測關鍵系統伺服器及工作站內的惡意應用程式及惡意軟件。3.1(e) 審視內部和外部稽查及網絡保安檢視所識別出的重大發現;批准作出補救行動及監察有關工作直至行動完成為止;3.1(f) 監察及評估最新的網絡保安威脅及攻擊; 證監會及金管局處理與互聯網交易相關的黑客入侵,以下為連結 https://www.sfc.hk/edistributionWeb/gateway/TC/news-and-announcements/news/doc?refNo=17PR133#證監2018年9月3日 SM Lam
“The UK government will fine companies in “critical industries” up to £17 million if they have woefully inadequate cybersecurity defenses. The penalty system is a response to an EU directive, passed in August 2016, that was drawn up to ensure its member states…