Daily brief for 2018-10-08

ASIA

Nil

WORLD

Nil

ATTACKS

1. 10/8/18: Dtex, Insider Threat, Privacy News: Dtex Earns Leadership, Product Awards; Insider Compromises French Law Enforcement Agency; The Big Hack
2. Google was aware of a flaw that exposed over 500,000 of Google Plus users, but did not disclose it
3. Hide and Seek IoT Botnet Now Spreads to New Android Devices Using ADB over Wi-Fi
4. Google Says Social Network Bug Exposed Private Data
5. Google+ Is Shutting Down After a Security Bug Exposed User Info
6. Google chose not to go public about bug that exposed Google Plus users’ data
7. Google shuts down Google+ after API bug exposed details for over 500,000 users
8. Assassin’s Creed Odyssey suffers DDoS attack at launch
9. #TLBleed exploits abuse Intel's HTT chip feature to leak data. Find out how hackers could launch side-channel attacks to obtain
10. California to Ban Weak Passwords
11. Phishing Enables Domestic Violence. Education Can Help Stop It.
12. GitLab API Vulnerability Leaked Confidential Data On Public Projects
13. Google announces plans to close Google+ for consumers following data breach
14. Google+ Shutting Down After Bug Leaks Info of 500k Accounts
15. .@David_Ingram of @NBCNews reports that political #campaigns and parties say they’re sending many more texts this year than in past
16. Google+ is Shutting Down After a Vulnerability Exposed 500,000 Users' Data
17. Expert presented a new attack technique to compromise MikroTik Routers
18. With 12,556,810 email archives already exposed across misconfigured online file stores, attackers don’t even need to perform #accounttakeovers to gain
19. Hook, Line and Sinker: After Phish Get Caught
20. ICO hits Heathrow Airport with £120,000 data breach fine over lost USB stick
21. MikroTik routers with default credentials can be easily compromised
22. Project Insecurity (@insecurity) researchers discovered certain #livechatsoftware that were leaking personal details of employee at several high-profile sites. Discover how
23. Aspire Health Lost 'Protected Health Information' after Getting Hacked by a Phishing Scheme
24. "Life is short - passwords are long." - Finnish Communications Regulatory Authority

THREATS

25. Google shutting down Google+ after covering up privacy bug
26. Hackers exploit vulnerability in Bitcoin code
27. Google was aware of a flaw that exposed over 500,000 of Google Plus users, but did not disclose it
28. Google Says Social Network Bug Exposed Private Data
29. WECON PI Studio HMI software affected by code execution flaws
30. Mozilla Patched Multiple Vulnerabilities In Thunderbird 60.2.1
31. Google+ Is Shutting Down After a Security Bug Exposed User Info
32. Google shuts down Google+ for consumers due to bug found months ago
33. Google chose not to go public about bug that exposed Google Plus users’ data
34. iOS 12.0.1 Released with Fixes to Passcode Bypass Bugs
35. GRRCon Augusta 2018, Ankur Tyagi’s ‘Analyzing Multi-Dimensional Malware Dataset’
36. Google+ Shutting Down After Google Discovers API Bug Affecting 500K Users
37. Google shuts down Google+ after API bug exposed details for over 500,000 users
38. #TLBleed exploits abuse Intel's HTT chip feature to leak data. Find out how hackers could launch side-channel attacks to obtain
39. Malware isn't the only threat to Android apps. Others include copies of popular apps and those that abuse permission requests. Here
40. Code Execution Flaws Found in WECON Industrial Products
41. GitLab API Vulnerability Leaked Confidential Data On Public Projects
42. Code Execution Bug In Malicious Repositories Resolved By Git Project
43. #Stegware: it's #Malware that uses #steganography techniques to avoid detection
44. 2018's Most Active Ransomware: The Ongoing Evolution of GandCrab
45. Websites vulnerable to attack exploiting major framework
46. Most hosting providers take too long to remove malware distribution sites
47. Google+ Shutting Down After Bug Leaks Info of 500k Accounts
48. .@Trustlook Labs discovered an #Android #Trojan stealing data from messaging apps. Learn what #mobilesecurity programs should look for to detect
49. Vulnerabilities in RouterOS could enble hackers to take control of routers
50. #Shodan, a device search engine, can help identify #ICS security vulnerabilities. Learn more about how Shodan works and how it
51. .@ThreatFabric researchers uncovered a #malware that uses overlay techniques to avoid detection. Learn from @lewisnic how this new #Androidmalware --
52. NEW #CYBERSAUNA EPISODE: Reinventing the Cold Boot Attack: Modern Laptop Version @nxsolle and Pasi Saarinen discuss how they discovered a flaw
53. Vulnerabilities discovered in electoral counting machines in 23 states
54. Most routers full of firmware flaws that leave users at risk
55. Google+ is Shutting Down After a Vulnerability Exposed 500,000 Users' Data
56. Who's watching your TV? Sony quietly killed three critical Bravia TV bugs
57. Microsoft says it can recover files lost to the Windows 10 October Update's data deletion bug
58. Mikko Hypponen's Picks For the Top 5 Viruses of All Time - F-Secure Blog
59. US government rolls out 2-step verification for .gov domain owners
60. Tenable Researcher Reveals Extended MikroTik Router Vulnerability
61. Intel’s 9th-Generation Core Processors Unveiled
62. MikroTik vulnerability climbs up the severity scale, new attack permits root access
63. Google Criticizes Apple Over Safari Security, Flaw Disclosures
64. Code execution bug in malicious repositories resolved by Git Project
65. Users complain of boot loops on Series 4 Apple Watch due to daylight savings bug
66. "It is no secret that the #RemoteDesktop Protocol has long been a source of exploitable vulnerabilities, and it is well
67. New Exploit for MikroTik Router WinBox Vulnerability Gives Full Root Access
68. #Android #Trojan: How is data being stolen from #messagingapps?
69. #GoScanSSH: How does this #malware work and differ from others?
70. How did an organized crime group get a zip file from a reputable malware scanning service? Malware researchers occasionally have ties
71. The Git Project addresses a critical arbitrary code execution vulnerability in Git
72. Keeping your cloud malware-free: What you need to know
73. D-Link Security Updates Fixed Multiple Vulnerabilities in WiFiManager Software
74. Virus Attack Hampers the Email System of Ulster Town
75. Beware!! Hackers Now Spreading Dangerous FlawedAmmyy Malware Through PDF & IQY File
76. First In-The-Wild UEFI Rootkit Discovered
77. PoC Attack Escalates MikroTik Router Bug to ‘As Bad As It Gets’
78. The MITRE ATT&CK Framework: Command and Control
79. .@TrendMicro researchers discovered #FacexWorm, a #malware that uses a #ChromeExtension and @Facebook Messenger to spread. Learn which users are at

CRIME

Nil

POLITICS

Nil