Threat report for 2018-10-05

DATA BREACH

1. Sales intel firm Apollo data breach exposed more than 200 million contact records
2. Fortnite gamers targeted by data theft malware
3. Apollo hackers steal info from database of 200M contact
4. Security researchers @proofpoint recently uncovered new #DanaBot campaigns.
5. GhostDNS hijacking campaign steps up attacks on Brazilians; 100K+ devices compromised
6. Smart TV kit featuring Google Home Mini and third-gen Chromecast leaks
7. UK pins 'reckless campaign of cyber attacks' on Russian military intelligence
8. Experts warns of a new extortion campaign based on the Breach Compilation archive
9. Cryptomining malware steals Fortnite gamers' Bitcoins and personal data
10. Intel, AMD both claim server speed records
11. Samsung predicts a return to record profits in Q3
12. New research reveals the DanaBot banking Trojan is now targeting banks in the United States as well. The campaign attempts to

DENIAL-OF-SERVICE

13. Hacked #Fortnite accounts and rent-a-botnet being pushed on Instagram

MALVERTISING

Nothing to report

PHISHING

14. Facebook Found “No Evidence” Of Facebook Login Exploited To Access Linked Apps
15. Remove Ursnif Trojan (Purolator Phishing) Scam
16. California Is Making It Illegal for Devices to Have Shitty Default Passwords
17. Report: The bigger the company, the messier the password practices
18. The most commonly used passwords in the world are... 1. 123456 2. password 3. 123456789 4. 12345678 5. 12345 6. qwerty
19. Can the @Microsoft Authenticator really replace passwords in the enterprise? Microsoft says the answer is yes and proclaimed the password
20. Weak Passwords Banned In California From 2020
21. New IoT legislation bans shared default passwords
22. US users open 30% of phishing emails with 12% of those clicking on infected links or attachments. Prepare for 2019's
23. Credential-Phishing Attempts Highest on Tuesdays
24. Credential-Phishing Attempts Highest on Tuesdays
25. If you're thinking passwords, check out #CyberSauna episode #13: A Hacker's Take on Cracking & Protecting Your Creds
26. FYI: "password" is the 2nd most popular password in the world. Can you guess the first?
27. Facebook Logins Available on the Dark Web for $2.60
28. Passware Kit: Forensic software recovers passwords for Bitcoin wallets

WEB DEFACEMENT

Nothing to report

MALWARE

29. Ransomware Recovery at the Taxpayers’ Expense
30. Virus Bulletin 2018: Saudi Dissident Spyware Attack Belies Bigger Threat
31. Fortnite gamers targeted by data theft malware
32. Remove Ursnif Trojan (Purolator Phishing) Scam
33. Trojans go after MS Office vulnerabilities and China hacks US hardware
34. .@alienvault researchers recently discovered #MassMiner, a #cryptocurrency mining #malware that has the ability to infect systems across the web. Discover
35. Virus Bulletin 2018: Exposing the Social Media Fraud Ecosystem
36. AirNaine Uses New ARS RAT Strain Named ZeroEvil Against Canadian Businesses
37. Danabot Banking Malware Targets U.S. Organizations
38. The Virus Bulletin conference returns home: VB2019 to take place in London
39. Fileless malware: part deux
40. Cisco Discovered Multiple Vulnerabilities In Atlantis Word Processor
41. Hackers fly under the radar for two years after infecting chiropractic clinic with malware
42. DanaBot Banking Trojan’s Journey to North America
43. Virus Bulletin 2018: Supply chain hacking grows up
44. The Kronos banking trojan is back from the malware dustbin. After years of lying dormant, hackers have reworked the underlying
45. Cisco Talos spotted 18 vulnerabilities in Foxit PDF Reader, 8 in Atlantis World Processor
46. Cryptomining malware steals Fortnite gamers' Bitcoins and personal data
47. How does FacexWorm malware use Facebook Messenger to spread?
48. Malicious remote admin tool seemingly linked to KONNI malware, North Korea
49. New research reveals the DanaBot banking Trojan is now targeting banks in the United States as well. The campaign attempts to
50. .@FireEye researches discovered that the group behind #Sanny #malware attacks has made delivery method changes that put users at risk.
51. Fake News Domains Spoof UK News Sites
52. Roaming Mantis Hacking Group Inject Web Crypto Mining for iOS Devices via Malicious Content Delivery System
53. Top 5 Viruses of All Time by Security Expert Mikko Hyppönen
54. CMake 3.12.3 releases: managing the build process of software

EXPLOIT

55. Facebook Found “No Evidence” Of Facebook Login Exploited To Access Linked Apps
56. Advanced Persistent Threat Activity Exploiting Managed Service Providers

VULNERABILITY

57. Adobe October Patch Update Fixed 86 Different Security Vulnerabilities
58. Sony Smart TV Bug Allows Remote Access, Root Privileges
59. Unit 42 Vulnerability Research October 2018 Disclosures – Adobe
60. Unit 42 Vulnerability Research October 2018 Disclosures – Adobe
61. D-Link Patches RCE Bugs in Wireless Access Point Gear
62. VMware Releases Patches for Critical A/W Console Auth Bypass Vulnerability
63. 150 Bugs Found in the Hack the Marine Corps Challenge
64. Trojans go after MS Office vulnerabilities and China hacks US hardware
65. 150 Bugs Found in the Hack the Marine Corps Challenge
66. Most Home Routers Are Full of Vulnerabilities
67. Vulnerability Scanning vs. Penetration Testing: What's the Difference?
68. Adobe update cleans up 86 bugs in Acrobat and Reader, many critical
69. Missing Files, Bugs Reported After Windows 10 October 2018 Update
70. Cisco Discovered Multiple Vulnerabilities In Atlantis Word Processor
71. Mozilla Resolves Critical Code Execution Flaw In Thunderbird
72. Cisco patches critical flaws in DNA Center and Prime Infrastructure
73. Marine Corps bug bounty program finds 150 vulnerabilities
74. Mozilla resolves critical code execution flaw in Thunderbird email client
75. Cisco Talos spotted 18 vulnerabilities in Foxit PDF Reader, 8 in Atlantis World Processor
76. D-Link Patches Code Execution, XSS Flaws in Management Tool
77. Cisco updates address 36 vulnerabilities, three critical
78. Vulnerability Scanning vs. Penetration Testing: What's the Difference?
79. #PulseNet: How does an improper #authentication flaw affect it?
80. Cisco Released Security Updates & Fixed 37 Vulnerabilities that Affected Cisco Products
81. Mozilla Patches Critical Vulnerability in Thunderbird 60.2.1