Threat report for 2018-10-09

DATA BREACH

1. URSNIF Phishing Campaign Spreads Malware by Replying to Existing E-mail Threads
2. Heathrow Fined For USB Stick Data Breach
3. Google+ Users, Upset Over Data Leak, Sue Google
4. Google+ will shut down after leaking info of 500k accounts
5. Amazon acknowledges that the company’s employees leaked user information to the seller
6. Upgrade Your Threat Intelligence Program Part 5: Take Down Fraud Campaigns & Cyber Scams
7. Magecart group compromises customer ratings tool, affecting 'hundreds' of online stores
8. Google: We're giving you more control over what personal data apps can use
9. Garmin's Navionics exposed data belonging to thousands of customers
10. Phishing Campaign uses Hijacked Emails to Deliver URSNIF by Replying to Ongoing Threads
11. Google+ shut down after bug exposed user data
12. Over 4.5 Billion Records Breached in H1 2018, Finds Report
13. Google+ Shuts Down Following Undisclosed Data Breach
14. The end of Google+: Low usage and an API bug that exposed user data
15. 33,000 Accounting Inbox Credentials Exposed Online: BEC Made Easy. Read the full blog here:
16. Magecart Group Compromises Plugin Used in Thousands of Stores, Makes Rookie Mistake
17. Heathrow Airport fined £120,000 over USB data breach debacle
18. "Application control bypass techniques are a big thing that is happening right now - - 80% to 85% of compromises
19. For @5ean5ullivan, a security adviser at cyber firm F-Secure, a campaign’s cyber protections boil down to education — making sure
20. Google has made the decision to shut down much of its #GooglePlus social network following the disclosure of vulnerable data.
21. ​Gemalto reports 4.6 billion record breaches in the first half of 2018
22. Hackers Targeting Instagram Accounts of Influential Profiles for Ransom in a Recent Campaign
23. Sunsets for Google Plus after Reports of Data Breach
24. Google Announced Google+ Shut down, Following Security Breach That Exposed 500,000 Users Accounts
25. Oh no, looks like we can't trust our data with Google either "Google hid major Google+ security flaw that exposed
26. Cryptojacking campaign targets add-ons for popular streaming app Kodi

DENIAL-OF-SERVICE

27. New Cloud VPS Provider with Built-In DDoS Protection and Anti-Virus | SkySilk Cloud Services
28. Over nine million cameras and DVRs open to APTs, botnet herders, and voyeurs
29. New IoT botnet “hide and seek” variants target Android devices
30. Hacked #Fortnite accounts and rent-a-botnet being pushed on

MALVERTISING

Nil

PHISHING

31. How to Evade Expensive Phishing Filters with One Simple Trick
32. URSNIF Phishing Campaign Spreads Malware by Replying to Existing E-mail Threads
33. With a few keystrokes, Number One used the admin/admin login to siphon all the email addresses, names and titles of
34. As a way to inch forward in the battle of default passwords, California has passed a law that will make
35. Phishing Campaign uses Hijacked Emails to Deliver URSNIF by Replying to Ongoing Threads
36. Phishing attacks use Azure Blob storage to simulate Microsoft
37. Weak IOT passwords outlawed in California
38. California’s ban on weak default passwords isn’t going to fix IoT security
39. Police Warned that Phishing Text Messages are Used to Target the Bank Customers
40. one more reason to not use Facebook login everywhere, no matter how convenient it is.
41. Using web phishing, criminals have managed to steal $3.7 million (251 million rubles), which is 6% more than in the

WEB DEFACEMENT

Nil

MALWARE

42. Cryptomining dethrones ransomware as 2018’s top threat - Webroot
43. Slideshow: Intel from Virus Bulletin 2018
44. Block puzzle games laced with malware | Avast
45. How does #FacexWorm #malware use @Facebook Messenger to spread? Learn more about this new malware with expert @lewisnic.
46. URSNIF Phishing Campaign Spreads Malware by Replying to Existing E-mail Threads
47. The @USAgov is rolling out #2FA authentication for officers managing .gov domains, but experts say #GoogleAuthenticator might not be the
48. Panda Banker Trojan becomes part of Emotet threat distribution platform
49. New Cloud VPS Provider with Built-In DDoS Protection and Anti-Virus | SkySilk Cloud Services
50. How does #MassMiner #malware infect systems across the web?
51. Hackers breach customer rating tool used on over 7,000 websites
52. The government domain registrar -- DotGov -- began rolling out two-factor #authentication for officials managing .gov domains in order to
53. Magecart group compromises customer ratings tool, affecting 'hundreds' of online stores
54. Proofpoint: One month out from deadline, half of agency domains are #DMARC compliant http://ow.ly/3SRI50iYi41 via CyberScoopNews
55. New Domains: A Wide-Open Playing Field for Cybercrime
56. #Ransomware Survival Guide: 10 things to know before, during, and after an attack:

EXPLOIT

57. Microsoft Patches Windows Zero-Day Exploited by 'FruityArmor' Group
58. Microsoft October 2018 Patch Tuesday fixes zero-day exploited by FruityArmor APT
59. Sophos recently discovered a #Samsam extortion code that performs whole-company attacks through a variety of vulnerability exploits. Discover how this
60. Active Workload Protection on Amazon EKS and AWS Fargate

VULNERABILITY

61. Microsoft patches 0-day Windows flaw under attack
62. Microsoft Patches Zero-Day Under Active Attack by APT
63. VMware Workstation, Fusion, and ESXi Affected by DoS Vulnerability, No Patch Yet
64. Microsoft Patches Windows Zero-Day Exploited by 'FruityArmor' Group
65. Microsoft October 2018 Patch Tuesday fixes zero-day exploited by FruityArmor APT
66. Vulnerability Spotlight: VMWare Workstation DoS Vulnerability
67. Microsoft Patch Tuesday — October 18: Vulnerability disclosures and Snort coverage
68. Vulnerability in the Intel Unified Shader compiler for the Intel Graphics Accelerator
69. Git Gets Patched for Newly Found Flaw
70. Microsoft October 2018 Patch Tuesday Fixes 12 Critical Vulnerabilities
71. Sony Bravia Smart TVs affected by a critical vulnerability
72. Apple fixes iOS 12 passcode bypass vulnerabilities
73. Vulnerability Spotlight: VMWare Workstation DoS Vulnerability
74. Microsoft October Patch Tuesday Fixes 12 Critical Vulnerabilities
75. Microsoft Patch Tuesday — October 18: Vulnerability disclosures and Snort coverage
76. Sophos recently discovered a #Samsam extortion code that performs whole-company attacks through a variety of vulnerability exploits. Discover how this
77. Google+ shut down after bug exposed user data
78. Vulnerability in the Intel Unified Shader compiler for the Intel Graphics Accelerator
79. Adobe Releases Security Patch Updates for 11 Vulnerabilities
80. The end of Google+: Low usage and an API bug that exposed user data
81. TOP 10 PHP Vulnerability Scanners
82. RIP Google Plus: Shutdown announced after API bug exposes 500,000 users' details
83. On our new #CyberSauna podcast: Find out how F-Secure's @nxsolle and Pasi Saarinen discovered a flaw that allows attackers to get
84. Critical vulnerability in Sony Bravia Smart TV
85. Oh no, looks like we can't trust our data with Google either "Google hid major Google+ security flaw that exposed