Sector brief for 2018-10-09

HEALTHCARE

1. DHS issued an alert on attacks aimed at Managed Service Providers
2. Sunsets for Google Plus after Reports of Data Breach

TRANSPORT

3. Heathrow Airport fined £120,000 over USB data breach debacle

BANKING & FINANCE

4. Panda Banker Trojan becomes part of Emotet threat distribution platform
5. Amazon acknowledges that the company’s employees leaked user information to the seller
6. The Magecart Seal of Approval: Card-Skimming Group Executes Scaled Supply Chain Attack on Shopper Approved
7. Magecart group compromises customer ratings tool, affecting 'hundreds' of online stores
8. Phishing Campaign uses Hijacked Emails to Deliver URSNIF by Replying to Ongoing Threads
9. New Domains: A Wide-Open Playing Field for Cybercrime
10. Magecart Group Compromises Plugin Used in Thousands of Stores, Makes Rookie Mistake
11. Active Workload Protection on Amazon EKS and AWS Fargate
12. Police Warned that Phishing Text Messages are Used to Target the Bank Customers
13. Sunsets for Google Plus after Reports of Data Breach

INFORMATION & TELECOMMUNICATION

14. How does #FacexWorm #malware use @Facebook Messenger to spread? Learn more about this new malware with expert @lewisnic.
15. The Magecart Seal of Approval: Card-Skimming Group Executes Scaled Supply Chain Attack on Shopper Approved
16. As a way to inch forward in the battle of default passwords, California has passed a law that will make
17. Phishing Campaign uses Hijacked Emails to Deliver URSNIF by Replying to Ongoing Threads
18. Formjacking attacks are on the rise, with the recent #Magecart attacks the most notable examples. @Symantec has blocked almost 250,000
19. Google+ Shuts Down Following Undisclosed Data Breach
20. Phishing attacks use Azure Blob storage to simulate Microsoft
21. The end of Google+: Low usage and an API bug that exposed user data
22. 33,000 Accounting Inbox Credentials Exposed Online: BEC Made Easy. Read the full blog here:
23. For @5ean5ullivan, a security adviser at cyber firm F-Secure, a campaign’s cyber protections boil down to education — making sure
24. Google has made the decision to shut down much of its #GooglePlus social network following the disclosure of vulnerable data.
25. On our new #CyberSauna podcast: Find out how F-Secure's @nxsolle and Pasi Saarinen discovered a flaw that allows attackers to get
26. Hacked #Fortnite accounts and rent-a-botnet being pushed on
27. Hackers Targeting Instagram Accounts of Influential Profiles for Ransom in a Recent Campaign
28. one more reason to not use Facebook login everywhere, no matter how convenient it is.
29. Sunsets for Google Plus after Reports of Data Breach
30. Using web phishing, criminals have managed to steal $3.7 million (251 million rubles), which is 6% more than in the
31. Comienza en Moscú #CyberCrimeCon —el gran encuentro mundial sobre cibercrimen y ciberterrorismo— y de lo primero que hablan es de
32. Oh no, looks like we can't trust our data with Google either "Google hid major Google+ security flaw that exposed
33. #Ransomware Survival Guide: 10 things to know before, during, and after an attack:

FOOD

Nil

WATER

Nil

ENERGY

34. DHS issued an alert on attacks aimed at Managed Service Providers
35. Phishing Campaign uses Hijacked Emails to Deliver URSNIF by Replying to Ongoing Threads

GOVERNMENT & PUBLIC SERVICE

36. APT28 group return to covert intelligence gathering ops in Europe and South America.