Threat report for 2018-10-10

DATA BREACH & DATA LOSS

1. Campaign 2018: These hacking groups could target the 2018 midterm elections
2. 4.5 Billion Records Stolen in Data Breaches in the First Six Months of 2018
3. Threat Actors Prey on Drupalgeddon Vulnerability to Mass-Compromise Websites and Underlying Servers
4. Google Restricts Android Apps From Accessing Your Personal Data
5. Triangulating Beyond the Hack: Stolen Records Just One Tool in a Comprehensive Kit
6. #NetSpectre exploits leak data remotely via side-channel attacks. Learn how to use #ThreatModeling to stop speculative execution from expert Ed
7. A Google security audit uncovered a glitch in Google+ that exposed data from nearly 500,000 accounts. Ping CTO West @baber
8. Razer Phone 2 leaks hours before announcement: wireless charging and IP67 water resistance
9. Goodbye Google Plus – Google Plans Google+ Shut Down After Data Breach
10. The #TLBleed vulnerability uses @Intel's HTT chip feature to leak data. Learn about how hackers could use #malware to launch
11. New state-backed espionage campaign targets military and government using freely available hacking tools
12. Flaw in Ghostscript sandbox allowed system compromise
13. Leaks suggest Samsung is working on a mid-range smartphone with four cameras
14. Rebound Orthopedics & Neurosurgery hacked; 2,800 records exposed
15. Business email compromise made easy for #cybercriminals as 12.5 million company email boxes and 33,000 finance department credentials are openly
16. Hackers can compromise your WhatsApp account by tricking you into answering a video call
17. Google+ API glitch exposed user profile data to developers
18. 291 records breached per second in first half of 2018
19. Hackers can use legitimate #AdminTools to compromise networks. Learn more about "living off the land" attacks from expert Michael Cobb
20. Don't make us pay compensation for employee data breach, Morrisons begs UK court
21. A $12 million case of business email compromise.
22. Microsoft WindowsCodecs.dll SniffAndConvertToWideString Information Leak Vulnerability
23. A #Google security audit uncovered a glitch in #GooglePlus that exposed data from nearly 500,000 accounts, causing the company to
24. California state primaries put spotlight on election campaign vulnerabilities #cybersecurity @5ean5ullivan
25. '5,000 UK firms' financial details exposed in data breaches' http://www.cityam.com/264491/uk-business-emails-could-represent-major-cyber-security … @CityAM Read the full research report here:
26. New Phishing Campaign Drops Ursnif into Conversation Threads
27. October Patch Tuesday: Microsoft Repairs JET Database Engine Bug, Win32K EoP Zero-Day
28. October Patch Tuesday: Microsoft Repairs JET Database Engine Bug, Win32K EoP Zero-Day
29. Leak reveals Google's Chinese search engine is months away from launch
30. PHASE 2 - INITIAL INTRUSION Number One decides it is time to launch a targeted spearphishing campaign. Through the newsletter, he learns
31. My Health Record justifications 'kind of lame': Godwin
32. Just Answering A Video Call Could Compromise Your WhatsApp Account
33. .@Google Firebase #DatabaseSecurity proved insufficient when bypassed by hackers to leak data. Learn more about this #SecurityFlaw from expert Michael

DENIAL-OF-SERVICE

34. Ubisoft Hit With DDoS Attack During The Launch of Assassin’s Creed: Odyssey
35. DDoS Attacks Target Multiple Games including Final Fantasy XIV
36. Researchers have recently observed an alarming trend: #DDoS attacks are multiplying in size, often far exceeding what many service providers
37. Acorus Network protects enterprises and service providers from DDoS attacks

MALVERTISING

Nil

PHISHING

38. “You have 48 hours after reading this letter”– How to Identify the Latest Phishing Scam
39. Cyber Fraud Ring Used Phishing to Steal $4 Million, Alleged Leader Faces Charges
40. Innovative Phishing Tactic Makes Inroads Using Azure Blob
41. Follow @PhishingAi to stay up to date on #phishing attacks and trends!
42. Emerging threat: password stuffing explained
43. New Threat Insight research: German-language threats span #phishing, BEC, #malware, and more...
44. The spearphishing email contained a zip folder with a custom-built remote access trojan (RAT). Once executed, it would connect back to
45. WTB: Phishing Attack Uses Azure Blob Storage To Impersonate Microsoft
46. New Phishing Campaign Drops Ursnif into Conversation Threads
47. PHASE 2 - INITIAL INTRUSION Number One decides it is time to launch a targeted spearphishing campaign. Through the newsletter, he learns
48. Zero trust security: 5 reasons it’s not just about passwords

WEB DEFACEMENT

Nil

BOTNET

49. The Many Faces of Necurs: How the Botnet Spewed Millions of Spam Emails for Cyber Extortion

RANSOMWARE

50. Rapidly Evolving Ransomware GandCrab Version 5 Partners With Crypter Service for Obfuscation
51. Decrypting GandCrab Ransomware
52. Cryptomining replaces ransomware as 2018's top cybersecurity threat
53. Port of San Diego Hit by a Ransomware Attack Affecting its Computer Systems

CRYPTOMINING & CRYPTOCURRENCIES

54. #ISC2Congress: The Promise of Blockchain
55. Cryptomining replaces ransomware as 2018's top cybersecurity threat
56. Why Apple must be looking into using blockchain
57. Hacker steals over $30k USD in cryptocurrency of SpankChain

MALWARE

58. CCSP Domain 4: Cloud Application Security
59. CCSP Domain 3: Cloud Platform and Infrastructure Security
60. CCSP Domain 2: Cloud Data Security
61. CCSP Domain 1: Architectural Concepts & Design Requirements
62. The CAP Exam: Application Process, Rules and Eligibility, Exam Length and More
63. Top 5 ThreatConnect Resources for Malware Analysis
64. KeyBoy Abuses Popular Office Exploits for Malware Delivery
65. Malware 101: How Malware Avoids Static Detection Techniques
66. The #TLBleed vulnerability uses @Intel's HTT chip feature to leak data. Learn about how hackers could use #malware to launch
67. CSEU 2018: Nato grappling with implications of cyberspace as domain of warfare
68. Symantec reveals state-sponsored group that doesn’t care for malware
69. New Threat Insight research: German-language threats span #phishing, BEC, #malware, and more...
70. Stegware: How is #malware using #steganography techniques to avoid detection?
71. The spearphishing email contained a zip folder with a custom-built remote access trojan (RAT). Once executed, it would connect back to
72. A remote access #Trojan -- dubbed #GravityRAT -- was discovered by Cisco Talos (@TalosSecurity) to be checking for #antimalware sandboxes.
73. Gallmaker: New Attack Group Eschews Malware to Live off the Land
74. Old-School Malware Tricks Still Work
75. "Creation of complex malware and organisation of multi-layered targeted attacks has shifted from financially motivated cyber-criminals to state-sponsored threat actors"
76. At the 2018 @RSAConference, researchers discussed the rise of stegware -- #malware that uses #steganography techniques to avoid detection. Learn

EXPLOIT

77. Zero-day exploit (CVE-2018-8453) used in targeted attacks

VULNERABILITY

78. FruityArmor APT Exploits Yet Another Windows Graphics Kernel Flaw
79. Threat Actors Prey on Drupalgeddon Vulnerability to Mass-Compromise Websites and Underlying Servers
80. WhatsApp Fixes Vulnerability That’s Triggered by Answering a Call.
81. WhatsApp fixes video call bug that could have let hackers in, says report
82. Microsoft Added Severity Levels to Feedback Hub Bug Reports for Windows 10
83. Vulnerabilities found in Intel Unified Shader compiler
84. The #TLBleed vulnerability uses @Intel's HTT chip feature to leak data. Learn about how hackers could use #malware to launch
85. Flaw in Ghostscript sandbox allowed system compromise
86. Four Critical Flaws Patched in Adobe Digital Edition
87. CVE-2018-8453 Zero-Day flaw exploited by FruityArmor APT in attacks aimed at Middle East
88. SAP Patches Critical Vulnerability in BusinessObjects
89. A @Google #SecurityAudit uncovered privacy flaws and potential exposure of #PersonalData, leading to API changes, the shutdown of #GooglePlus and
90. #Shodan can be a helpful tool for security professionals to locate #ICSsecurity vulnerabilities. Expert Ernie Hayden explains how Shodan works
91. Security Vulnerabilities in US Weapons Systems
92. Microsoft Patch Tuesday update covers zero-day, 12 critical issues
93. Many Siemens Products Affected by Foreshadow Vulnerabilities
94. Microsoft has fixed the Windows 10 October Update data deletion bug
95. It's October 2018, and Exchange can be pwned by an 8 year-old... bug
96. Adobe security update fixes a handful of critical bugs, ignores Flash Player
97. .@FBI, @DHSgov call on users to mitigate #RemoteDesktop Protocol vulnerabilities and handle RDP exploits on their own, even as the
98. October 2018 Patch Tuesday: Microsoft fixes 49 flaws, one APT-wielded zero-day
99. Microsoft WindowsCodecs.dll SniffAndConvertToWideString Information Leak Vulnerability
100. Adobe October Security Update fixes 20 security flaws
101. Apple Released Security Updates for iOS 12.0.1 & iCloud with the Fixes for 21 Vulnerabilities
102. Google+ to shut down due to lack of adoption and privacy bug
103. Microsoft Fixes Zero Day and Data Deletion Bugs
104. California state primaries put spotlight on election campaign vulnerabilities #cybersecurity @5ean5ullivan
105. Zero-day exploit (CVE-2018-8453) used in targeted attacks
106. Windows Zero-Day Exploited in Attacks Aimed at Middle East
107. Bug bounties not a silver bullet, Katie Moussouris warns
108. Microsoft Released Security Updates & Fixed 49 Vulnerabilities that Affected Microsoft Products
109. October Patch Tuesday: Microsoft Repairs JET Database Engine Bug, Win32K EoP Zero-Day
110. October Patch Tuesday: Microsoft Repairs JET Database Engine Bug, Win32K EoP Zero-Day
111. WhatsApp fixes bug that let hackers take over app when answering a video call