Threat report for 2018-10-17

DATA BREACH & DATA LOSS

1. Tumblr Patches Security Issue that Would Leak Emails, Hashed-Salted Passwords
2. MartyMcFly Malware: new Cyber-Espionage Campaign targeting Italian Naval Industry
3. Redis 5.0 release, High-performance key-value database
4. Information of 396K Users Exposed in Facepunch Data Breach
5. 35 Million US Voter Registration Records Found for Sale on Dark Web
6. Phishers target book publishers in new campaign
7. Pentagon Disclosed Data Breach At Department Of Defense Affecting 30,000 Workers
8. 35 million US voter records up for sale on the dark web
9. Who is to blame for the majority of data breaches?
10. GreyEnergy: New malware campaign targets critical infrastructure companies
11. Tumblr Patches A Flaw That Could Have Exposed Users’ Account Info
12. Anthem pays out record $16m over data breach
13. SEO Poisoning Campaign Targeting U.S. Midterm Election Keywords
14. .@Google Firebase #DatabaseSecurity proved insufficient when bypassed by hackers to leak data. Learn more about this #SecurityFlaw from expert Michael
15. 35 million voter records from 19 US states for sale
16. Alphabet in the soup for keeping quiet about Google+ data leak bug
17. Anthem Mega-Breach: Record $16 Million HIPAA Settlement
18. US Voter Records for Sale on Hacker Forum
19. Millions of US Voter Records for Sale
20. 35 Million U.S Voter Records Selling in Popular Dark web Hacking Forum from $150 USD to $12,500 USD
21. Travel data for about 30,000 individuals was exposed in a Pentagon #DataBreach and experts expect that the information could be

DENIAL-OF-SERVICE

22. Brazil expert discovers Oracle flaw that allows massive DDoS attacks

MALVERTISING

Nil

PHISHING

23. FBI Releases Document with Measures for Defending Against Payroll Phishing Scams
24. How Office 365 learned to reel in phish
25. Another Phishing Scam is Appearing in Small Business Inboxes
26. Is this the simple solution to password re-use?
27. Public Cloud Phishing
28. Learn how hackers used TLS certificates to launch @netflix #phishing attacks from expert Michael Cobb of @thehairyITdog
29. "Attackers have expanded [phishing attacks] significantly into SMS and social media, and are displaying a preference for targeting personal email
30. Faculties and Staff of Chapman got Affected by the ‘Critical’ Phishing Attack
31. LibSSH Flaw Allows Hackers to Take Over Servers Without Password

WEB DEFACEMENT

Nil

BOTNET

Nil

RANSOMWARE

32. Podcast: A Utility Ransomware Attack, Post-Hurricane
33. Ransomware attack hits North Carolina water utility following hurricane
34. A crippling ransomware attack hit a water utility in the aftermath of Hurricane Florence

CRYPTOMINING & CRYPTOCURRENCIES

35. AISA 2018: Japan's journey from a cryptocurrency hack to better regulation
36. .@alienvault researchers recently discovered #MassMiner, a #cryptocurrency mining #malware that has the ability to infect systems across the web. Discover
37. How Blockchain Is Making it Easier for Fintech Companies to Scale Up
38. Im Interview erläutert Georgeta Toth, Regional Director bei dem Security-Spezialisten #Proofpoint, den Einfluss der Crypto-Mining-#Malware auf Endgeräte in Unternehmen.
39. Android Apps claim to mine unminable cryptocurrency, just show ads
40. #GroupIB has estimated that cryptocurrency exchanges suffered a total loss of $882 mln due to targeted attacks in 2017 and

MALWARE

41. LuminosityLink RAT Author Sentenced to 30 Months in Prison
42. MartyMcFly Malware: new Cyber-Espionage Campaign targeting Italian Naval Industry
43. .@alienvault researchers recently discovered #MassMiner, a #cryptocurrency mining #malware that has the ability to infect systems across the web. Discover
44. A hacker who used fake advertisements placed on local newspaper websites to spread malware has been sentenced to 33 months
45. Im Interview erläutert Georgeta Toth, Regional Director bei dem Security-Spezialisten #Proofpoint, den Einfluss der Crypto-Mining-#Malware auf Endgeräte in Unternehmen.
46. GreyEnergy: New malware campaign targets critical infrastructure companies
47. Insult to injury: Malware menace soaks water-logged utility ravaged by Hurricane Florence
48. How does #FacexWorm #malware use @Facebook Messenger to spread? Learn more about this new malware with expert @lewisnic.
49. New GreyEnergy Malware Targets ICS, Tied with BlackEnergy and TeleBots
50. How does #MassMiner #malware infect systems across the web?
51. Avast scores high in malware protection | Avast
52. Sony has solved the crash of PS4 receiving malicious message
53. Abandoned Tweet Counter Hijacked With Malicious Script
54. 21-year-old Hacker Sentenced to 30 Months Prison for Creating Popular Hacking Tool LumunosityLink RAT
55. The attackers learn that due to the complexity and fluctuations of the pulping process, any changes could take up to

EXPLOIT

Nil

VULNERABILITY

56. Cisco Patches Remotely Exploitable High Risk Security Bugs in Multiple Products
57. Libssh Vulnerability Exposes Servers to Attacks
58. Chrome 70 Updates Sign-In Options, Patches 23 Flaws
59. VoiceOver iOS 12 Bug Creates Lock Screen Bypass Exposing User Photos
60. Tumblr discloses vulnerability but says 'no evidence that this bug was abused'
61. Oracle Fixes 301 Flaws in October Critical Patch Update
62. Serious SSH bug lets crooks log in just by asking nicely
63. Oracle Patched Over 300 Vulnerabilities in Its Q3 2018 Critical Patch Update
64. LibSSH Flaw Leaves Thousands Of Servers At Risk Of Hijacking
65. CVE-2018-10933: Libssh Server Side Authentication Bypass Vulnerability Alert
66. Thousands of servers easy to hack due to a LibSSH Flaw
67. Take a Bite out of the Vulnerability Remediation Backlog with InsightVM
68. WhiteSource raises $35 million for open source flaw detection platform
69. CVE-2018-3211: Java Usage Tracker Local Elevation of Privilege on Windows
70. Oracle CPU October 2018: 301 vulnerabilities patched
71. Thousands Of Servers Vulnerable To Hacking Due To libssh Flaw
72. Critical Vulnerabilities Allow Takeover of D-Link Routers
73. Tumblr Patches A Flaw That Could Have Exposed Users’ Account Info
74. Remote Code Implantation Flaw Found in Medtronic Cardiac Programmers
75. Alphabet in the soup for keeping quiet about Google+ data leak bug
76. Hacker: I'm logged in. New LibSSH Vulnerability: OK! I believe you.
77. Brazil expert discovers Oracle flaw that allows massive DDoS attacks
78. Endpoint security solutions challenged by zero-day and fileless attacks
79. VMware addressed Code Execution Flaw in its ESXi, Workstation, and Fusion products
80. Flaws in Branch.io Affected Over 685 Million Users
81. Security flaw in libssh leaves thousands of servers at risk of hijacking
82. Oracle patches 301 vulnerabilities, including 46 with a 9.8+ severity rating
83. VMware Patches Code Execution Flaw in Virtual Graphics Card
84. CVE-2018-3245: Weblogic Remote Code Execution Vulnerability Alert
85. Oracle releases Critical Patch Update Advisory – October 2018: fix 301 security bugs
86. Git RCE Vulnerability (CVE-2018-17456)Security Advisory
87. LibSSH Flaw Allows Hackers to Take Over Servers Without Password
88. Vulnerability in voting machines has not been corrected after 11 years
89. Vulnerability in Apple VoiceOver allows hackers access to user photos
90. Google Chrome 70.0.3538.67 releases: fix multiple high-risk vulnerabilities
91. The Qihoo @360CoreSec team found a @Microsoft vulnerability -- named Double Kill -- that affects applications through #MicrosoftOffice documents. Learn