Daily brief for 2018-09-30

ASIA

1. Cryptomining Malware Grows by 86% in Q2: McAfee Report
2. Facebook monetizes 2FA, Singapore monetizes hacker, and ransomware creeps monetize US Democrats

WORLD

3. Estonia sues Gemalto for 152M euros over flaws in citizen ID cards issued by the company
4. Cryptomining Malware Grows by 86% in Q2: McAfee Report
5. Security Affairs newsletter Round 182 – News of the week
6. The British Airways #databreach may be the handiwork of hacking group #Magecart, according to researchers. By @MaddieBacon11
7. Facebook monetizes 2FA, Singapore monetizes hacker, and ransomware creeps monetize US Democrats
8. Telegram exposes the IP address during a user call by default

ATTACKS

9. Experts comment on Facebook’s 50 million user credential leak
10. 40 million more likely affected by massive Facebook data leak - Bitdefender
11. Project Insecurity (@insecurity) researchers discovered certain #livechatsoftware that were leaking personal details of employee at several high-profile sites. Discover how
12. Telegram Leaks Public & Private IP Address While Making Calls
13. The United Nations (@UN) accidentally exposed sensitive information on public @trello boards, in the Jira app, and in #GoogleDocs and
14. Chegg forces password reset on 40 million users
15. Hackers are Selling Social Media Logins & Financial Details On Dark Web starting from £2
16. 3 GOP senators doxed during Kavanaugh hearing
17. Uber has agreed to pay more than $140 Million for a data breach settlement
18. USBStealer – Password Hacking Tool For Windows Machine Applications to Perform Windows Penetration Testing

THREATS

19. Mutagen Astronomy – Linux Vulnerability Hits CentOS, Debian, and Red Hat Distros
20. GANDCRAB 5.0.1 Ransom Virus – How to Remove It and Restore Data
21. Facebook Says Three Different Bugs Are Responsible For The Massive Account Hacks
22. Week in review: First-ever UEFI rootkit, Apple DEP vulnerability, new tactics subvert traditional security measures
23. Estonia sues Gemalto for 152M euros over flaws in citizen ID cards issued by the company
24. Facebook Ad Targeting Exploits Users’ 2FA Phone Numbers
25. Apple DEP Authentication Flaw Leaves Devices Vulnerable To Malicious MDM Enrolling
26. Telegram Leaks Public & Private IP Address While Making Calls
27. #Android #Trojan: How is data being stolen from #messagingapps?
28. Docs reveal how Fruitfly Mac spyware initially spread
29. Cryptomining Malware Grows by 86% in Q2: McAfee Report
30. #Cisco patches yet another hardcoded credentials flaw, this time in its video surveillance manager appliance; the latest vulnerability is at
31. Facebook monetizes 2FA, Singapore monetizes hacker, and ransomware creeps monetize US Democrats
32. Security roundup: Facebook, ransomware, UEFI rootkit, Berners-Lee’s plan for new internet
33. Telegram exposes the IP address during a user call by default
34. #GoScanSSH: How does this #malware work and differ from others?
35. Xbash Malware Combines Many Malicious Functions in Worm
36. Discover how the #VPNFilter #malware works and affects users
37. Mojave Flaws Allow An Attacker To Bypass Full Disk Access Requirement
38. FBI IC3 warns of cyber attacks exploiting Remote Desktop Protocol (RDP)
39. Alphabet's Chronicle has given #VirusTotal a makeover. Find out what's in the new VirusTotal Enterprise offering. By @RobWright22
40. Improving core processes with next-generation mobile productivity solutions can bring power and cost efficiency gains. However, we must not lose
41. Malware in the Cloud: What You Need to Know
42. Beware !! USB Devices & Removable Media are Used to Inject Cryptocurrency Mining Malware
43. Election equipment vendors come under fire for #votingmachine security in the latest #DEFCON report, which details flaws -- one from
44. Cisco Multiple Security Vulnerabilities Alert
45. Zero-Day MacOS Mojave Privacy Bypass Bug Exposes Protected Files
46. A Top Facebook Bug Bounty Hunter Shares Their Insights on the Facebook Breach

CRIME

47. Estonia sues Gemalto for 152M euros over flaws in citizen ID cards issued by the company
48. Cryptomining Malware Grows by 86% in Q2: McAfee Report
49. Security Affairs newsletter Round 182 – News of the week
50. Xbash Malware Combines Many Malicious Functions in Worm
51. Beware !! USB Devices & Removable Media are Used to Inject Cryptocurrency Mining Malware

POLITICS

52. Election equipment vendors come under fire for #votingmachine security in the latest #DEFCON report, which details flaws -- one from