Sector brief for 2018-10-17

HEALTHCARE

1. Who is to blame for the majority of data breaches?
2. Anthem pays out record $16m over data breach

TRANSPORT

Nil

BANKING & FINANCE

3. AISA 2018: Japan's journey from a cryptocurrency hack to better regulation
4. FBI Releases Document with Measures for Defending Against Payroll Phishing Scams
5. New research highlights Vietnamese group's custom hacking tools
6. How Blockchain Is Making it Easier for Fintech Companies to Scale Up
7. 35 million voter records from 19 US states for sale
8. Alphabet in the soup for keeping quiet about Google+ data leak bug
9. WTB: MuddyWater Expands Operations
10. A crippling ransomware attack hit a water utility in the aftermath of Hurricane Florence
11. Oracle releases Critical Patch Update Advisory – October 2018: fix 301 security bugs
12. Git RCE Vulnerability (CVE-2018-17456)Security Advisory

INFORMATION & TELECOMMUNICATION

13. Tumblr Patches Security Issue that Would Leak Emails, Hashed-Salted Passwords
14. Tumblr discloses vulnerability but says 'no evidence that this bug was abused'
15. How Office 365 learned to reel in phish
16. CVE-2018-3211: Java Usage Tracker Local Elevation of Privilege on Windows
17. A hacker who used fake advertisements placed on local newspaper websites to spread malware has been sentenced to 33 months
18. Tumblr Patches A Flaw That Could Have Exposed Users’ Account Info
19. "Attackers have expanded [phishing attacks] significantly into SMS and social media, and are displaying a preference for targeting personal email
20. Millions of US Voter Records for Sale
21. How does #FacexWorm #malware use @Facebook Messenger to spread? Learn more about this new malware with expert @lewisnic.
22. #GroupIB has estimated that cryptocurrency exchanges suffered a total loss of $882 mln due to targeted attacks in 2017 and
23. Russian Hackers Attack Specialist in Customer Review Tied to Innumerable Websites
24. A crippling ransomware attack hit a water utility in the aftermath of Hurricane Florence
25. Sony has solved the crash of PS4 receiving malicious message
26. Vulnerability in Apple VoiceOver allows hackers access to user photos
27. Google Chrome 70.0.3538.67 releases: fix multiple high-risk vulnerabilities

FOOD

Nil

WATER

Nil

ENERGY

28. 3 Years After Attacks on Ukraine Power Grid, BlackEnergy Successor Poses Growing Threat
29. Meet GreyEnergy, the newest hacking group hitting Ukraine’s power grid

GOVERNMENT & PUBLIC SERVICE

30. MartyMcFly Malware: new Cyber-Espionage Campaign targeting Italian Naval Industry
31. 35 Million US Voter Registration Records Found for Sale on Dark Web
32. New research highlights Vietnamese group's custom hacking tools
33. Meet GreyEnergy, the newest hacking group hitting Ukraine’s power grid
34. SEO Poisoning Campaign Targeting U.S. Midterm Election Keywords
35. 35 million voter records from 19 US states for sale
36. WTB: MuddyWater Expands Operations
37. Millions of US Voter Records for Sale
38. 35 Million U.S Voter Records Selling in Popular Dark web Hacking Forum from $150 USD to $12,500 USD
39. Vulnerability in voting machines has not been corrected after 11 years