Daily brief for 2018-10-28

ASIA

1. Apple Made Apology Due to Apple ID Phishing Attacks
2. Security Affairs newsletter Round 186 – News of the week
3. Russian Research Lab Involved in the Development of TRITON Malware, Says FireEye

WORLD

4. Consulting Firm Leaked Data Of Democratic Party Fundraisers In Unsecured NAS Device
5. On Phishing Attacks and the Companies That are Targeted the Most
6. Security Affairs newsletter Round 186 – News of the week
7. Russian Research Lab Involved in the Development of TRITON Malware, Says FireEye
8. New ShadowTalk is out! @TheHVanRiper and Rafael Amado join @mazzazone to discuss #ransomware surges in October, Cathay Pacific Breach, and
9. After an attempted comeback by the Russian built #VPNFilter #botnet, home #networkdevices are at risk. Learn how this #malware targets

ATTACKS

10. Consulting Firm Leaked Data Of Democratic Party Fundraisers In Unsecured NAS Device
11. Apple Made Apology Due to Apple ID Phishing Attacks
12. On Phishing Attacks and the Companies That are Targeted the Most
13. Yahoo To Pay $50M, Other Costs For Massive Data Breach
14. A recent @HealthCareGov #breach exposed unknown types of data on 75,000 people, but a lack of information in the disclosure
15. "If an organization created #DMARC records for the first time, it would encounter syntax and content issues -- one of
16. The #NetSpectre vulnerability could enable a slow leak of data remotely via side channels. Expert Michael Cobb of @thehairyITdog explains

THREATS

17. Is blockchain a solution to IoT security problems?
18. Cisco Patched Privilege Escalation Vulnerability In Webex Meetings Desktop App
19. A flaw in @Cisco Webex -- called WebExec -- can allow #RemoteCodeExecution. And while experts don't agree on how dangerous
20. 12 Malicious Python Libraries Found And Removed From PyPi
21. Russian Research Lab Involved in the Development of TRITON Malware, Says FireEye
22. .@Siemens central plant clocks were affected by six SICLOCK flaws, three have been rated "critical." Learn what these SICLOCK flaws
23. How to deliver malware using weaponized Microsoft Office docs embedding YouTube video
24. New ShadowTalk is out! @TheHVanRiper and Rafael Amado join @mazzazone to discuss #ransomware surges in October, Cathay Pacific Breach, and
25. The #NetSpectre vulnerability could enable a slow leak of data remotely via side channels. Expert Michael Cobb of @thehairyITdog explains
26. Critical Code Execution Vulnerability Found in MKVToolNix Tools that Parses MKV Files
27. After an attempted comeback by the Russian built #VPNFilter #botnet, home #networkdevices are at risk. Learn how this #malware targets
28. Bingo. Investigators find the same remote access trojan deployed to several other machines. Now the responders know what to look for.
29. "My name is Mikko and I've been working with viruses and malware all my freaking life."

CRIME

30. Apple Made Apology Due to Apple ID Phishing Attacks
31. On Phishing Attacks and the Companies That are Targeted the Most
32. Security Affairs newsletter Round 186 – News of the week

POLITICS

33. Security Affairs newsletter Round 186 – News of the week