Oct 13, 2018

Daily brief for 2018-10-12

ASIA

  1. Cyber News Rundown: Windows 10 Update Deletes Files
  2. Threat Brief: FASTCash ATM Cash Out Tactics
  3. Five Eyes Intelligence agencies warn of popular hacking tools
  4. 360 Total Security has intercepted more than 50,000 Clipboard Wallet Hijacker attacks, helping users recover over 40 million

WORLD

  1. Facebook Data Breach Update: attackers accessed data of 29 Million users
  2. Pentagon Reveals Cyber Breach of Travel Records
  3. FDA Issues Warning about Security Vulnerabilities in Pacemaker Programmers
  4. Detecting Malicious Campaigns with Machine Learning
  5. Almost 12K MikroTik Routers Are Hunting Around for Cryptojacking Opportunities
  6. Cyber News Rundown: Windows 10 Update Deletes Files
  7. Fake browser update seeks to compromise more MikroTik routers
  8. An Examination of a Phishing Kit Dubbed Luis
  9. Five Eyes Intelligence agencies warn of popular hacking tools
  10. 360 Total Security has intercepted more than 50,000 Clipboard Wallet Hijacker attacks, helping users recover over 40 million
  11. DOM-XSS Bug Affecting Tinder, Shopify, Yelp, and More
  12. UK's NCSC to monitor internet routing to stop DDoS and hijacks
  13. Largest Cyber Attack Against Iceland Driven by Complex Phishing Scheme
  14. ​Labor seeks updated My Health Record legislation to prevent privatisation
  15. Senator asked Google to explain why the revealing of the Google+ vulnerability was postponed

ATTACKS

  1. Facebook Data Breach Update: attackers accessed data of 29 Million users
  2. Pentagon Reveals Cyber Breach of Travel Records
  3. NEW BETABOT CAMPAIGN UNDER THE MICROSCOPE
  4. Detecting Malicious Campaigns with Machine Learning
  5. Fitmetrix fitness software company may have exposed millions of customer records
  6. Fake browser update seeks to compromise more MikroTik routers
  7. Threat Announcement: Phishing Sites Detected on Emoji Domains
  8. Phishing Campaign uses Hijacked Emails to Deliver URSNIF by Replying to Ongoing Threads
  9. #TLBleed abuses @Intel's HTT chip feature to leak data and obtain sensitive memory information. Learn more about this new side-channel
  10. An Examination of a Phishing Kit Dubbed Luis
  11. Mindbody’s FitMetrix leaked millions of Users’ Personal Details
  12. Is Google Sync a Vector for Data Breaches?
  13. Do you know the top myths and facts of #mobile #phishing? If not, don't worry, we've compiled a list of
  14. Facebook Revises Data Breach Impact Downward, Provides New Details
  15. How #livechatsoftware leak personal #employeedata?
  16. Largest Cyber Attack Against Iceland Driven by Complex Phishing Scheme
  17. Spring Security With Radius Login
  18. ​Labor seeks updated My Health Record legislation to prevent privatisation

THREATS

  1. Windows 10 October 2018 Update: Release – Halt – Bug Identified – Fix!
  2. FDA Issues Warning about Security Vulnerabilities in Pacemaker Programmers
  3. Detecting Malicious Campaigns with Machine Learning
  4. Almost 12K MikroTik Routers Are Hunting Around for Cryptojacking Opportunities
  5. The Week in Ransomware - October 12th 2018 - NotPetya, GandCrab, and More
  6. Microsoft Zero-Day Patch for JET Bug Incomplete, Claims Firm
  7. Three Industries That Blockchain Will Impact the Most
  8. Proof-of-Concept Available for Edge Remote Code Execution Vulnerability
  9. Facebook States 30 Million People Affected by Last Month's "View As" Bug
  10. Fake Adobe Flash Updates Hide Malicious Crypto Miners
  11. Learn how the #NetSpectre vulnerability affects the #cloud from expert Ed Moyle of @securitycurve.
  12. What's keeping the #CISO up at night? The vulnerabilities caused by third-party vendors, finds @forrester research. 65% of organizations say
  13. Micropatch Released to Correct Partially Fixed JET DB Engine RCE Vulnerability
  14. Obfuscated JavaScript Cryptominer
  15. FDA warns users of cyber vulnerability in pacemaker programmers
  16. In 2008, @nokia dominated the mobile phone universe. Four years later, the company was on the verge of extinction. Discover
  17. .@ThreatFabric researchers uncovered an #Android malware, #MysteryBot, which uses overlay attacks to avoid detection. Learn how this #malware affects @Google's
  18. New @ESET research finds APT group dubbed #TeleBots was behind #Industroyer #malware attacks, #NotPetya #ransomware outbreaks, and a recent Exaramel
  19. Ryan Kalember, Senior VP of #Cybersecurity Strategy at Proofpoint, discussing why humans are a company’s biggest cybersecurity vulnerability.
  20. Researchers at the 2018 @RSAConference discussed #stegware: @malware that uses #steganography. Discover how this works with expert @lewisnic.
  21. Sony Patched Three Critical Vulnerabilities In Smart TV Bravia
  22. Hackers targeting Drupal vulnerabilities to install the Shellbot Backdoor
  23. 360 Total Security has intercepted more than 50,000 Clipboard Wallet Hijacker attacks, helping users recover over 40 million
  24. GandCrab ransomware operators team up with crypter service
  25. Now, watch this... Network time protocol bugs sting Juniper operating system
  26. GandCrab Ransomware Partners With Crypter Service
  27. This is how much the WannaCry ransomware attack cost the NHS
  28. Researchers at Cisco Talos (@TalosSecurity) recently discovered #GravityRAT, a remote access #Trojan. Discover how this RAT can check for
  29. GPlayed trojan seeks to play users out of their data
  30. This Trojan masquerades as Google Play to hide on your phone in plain sight
  31. DOM-XSS Bug Affecting Tinder, Shopify, Yelp, and More
  32. Facebook's WhatsApp says it has fixed a video call security bug that let hackers hijack accounts.
  33. Marion County Jail’s Reporting System Fall Prey to Virus Attack
  34. Some 10% of user-reported emails malicious
  35. Cryptomining software is hidden as Flash update
  36. ThreatFabric on stage @bsidesdelft talking about the evolution of
  37. Vulnerability allows hijacking of software installed in macOS
  38. Fortnite for Android Released, But Make Sure You Don't Download Malware
  39. Senator asked Google to explain why the revealing of the Google+ vulnerability was postponed
  40. Proof-of-concept code published for Microsoft Edge remote code execution bug

CRIME

  1. Facebook Data Breach Update: attackers accessed data of 29 Million users
  2. Facebook States 30 Million People Affected by Last Month's "View As" Bug
  3. Fake browser update seeks to compromise more MikroTik routers
  4. Threat Brief: FASTCash ATM Cash Out Tactics
  5. Hackers targeting Drupal vulnerabilities to install the Shellbot Backdoor
  6. 360 Total Security has intercepted more than 50,000 Clipboard Wallet Hijacker attacks, helping users recover over 40 million
  7. PoC exploit for Windows Shell RCE released
  8. DOM-XSS Bug Affecting Tinder, Shopify, Yelp, and More
  9. UK's NCSC to monitor internet routing to stop DDoS and hijacks
  10. Largest Cyber Attack Against Iceland Driven by Complex Phishing Scheme

POLITICS

Nil
at
Labels: