(2015 Jun) Adobe Flash Player zero-day vulnerability
In June, FireEye’s Service team in Singapore uncovered a phishing campaign exploiting an Adobe Flash Player zero-day vulnerability (CVE-2015-3113). The attackers’ emails included links to compromised web servers that served either benign content or a malicious Adobe Flash Player file that exploits CVE-2015-3113.
Adobe has already released a patch for CVE-2015-3113 with an out-of-band security bulletin (https://helpx.adobe.com/security/products/flash-player/apsb15-14.html). FireEye recommends that Adobe Flash Player users update to the latest version as soon as possible.
Additional information can be found here.
(2015 Jun) Gift Card Scam
Original release date: June 11, 2015
The Unites States Computer Emergency Readiness Team ('US-CERT') Internet Crime Complaint Center (IC3) has released an alert warning consumers of fraud around the resale of gift cards. The secondary gift card market has grown in recent years, and criminal activity has been identified on sites facilitating such exchanges. When purchasing gift cards, look for reputable merchants who will ensure resold cards contain correct balances.
US-CERT encourages consumers to review the IC3 Alert for more details on avoiding gift card fraud and US-CERT Security Tip ST07-001 for information on shopping safely online.
(2015 Jun) Google Chrome - Web Browser Update
10 June 2015 - Google has released Chrome version 43.0.2357.65 for Windows, Mac, and Linux to address multiple vulnerabilities. Exploitation of one of these vulnerabilities could allow a remote attacker to take control of an affected system.
CIRT-KY encourages users and administrators to review the Google Chrome blog entry here and apply the necessary updates.
(2015 May) Ransomware Trojan “TeslaCrypt” active in Cayman!
At least three local companies have reported active infections of this Trojan which encrypts all files (network and local) that the infected machine/user has access to. These files are then unreadable without the decrypt key which is held for ransom. Once the infected user machine is removed from the system the files can be restored from backup.
Infections have so far been traced to a 'drive by download' operating on www.paradisepropertiescayman.com. It is recommended that you immediately block access to this site. (thanks to Sean Slattery of Caribbean Solutions Lab for identifying the source of the local infections.).
DO NOT GO TO THE WEBSITE TO VERIFY THE ADDRESS, INFECTION IS NEAR IMMEDIATE.
Further details of this Trojan can be found here.
Note we are unaware of any reports where paying the ransom demanded has in fact resulted in a decryption key being provided.
(2015 Mar) Email Scams
The Authority has become aware of an increasing occurance of emails to candw.ky (LIME) email accounts purporting to be local banks, LIME email security, etc.
The Authority would like the public to be wary of emails they receive that purport to be from an official source asking for your personal information, be it bank account information, email login information or other such personal information.
The Authority recommends to always verify by calling the company directly, in the event that you are not sure if an email is genuine or not.
Please click here for additional information.
(2015 Mar) New KY Domain Registration System
New KY Domain Registration System Live please use the following link to register new domains
(2015 Feb) DataLink - Safety Guidelines
DataLink, working with an Industry working group, has set out its General Guidelines for Telecommunication Workers when Attaching to Electric Utility Assets, a copy of which can be found here. These Guidelines are aimed at ensuring that telecommunications workers working on the electricity poles do so in a safe manner.
(2015 Jan) .ky Domain Name Registration Fee Notice
Since its inception, the Information and Communications Technology Authority (the 'Authority') has been responsible for the management and control of the Cayman Islands’ country code top-level domain ('ccTLD') name system, .ky (the 'Registry').
The Authority published Notices on 1 September 2014 and 30 October 2014 summarising the amendments to be made to the operation of the Registry.
The date by when the Authority intends to update the operation of the Registry as set out is now 2 February 2015.
Also, it is intended that the registration/renewal fees for a .ky domain name will be US$39, with a 20% discount for those qualified Cayman entities, i.e. organisations and individuals resident in the Cayman Islands, or companies registered with the Cayman Islands' Company Registry.
Further information can be found here.