Threat report for 2018-10-18

DATA BREACH & DATA LOSS

1. 35 Million Records Of US Voters Data For Sale On The Dark Web
2. Thousands of Neoflam Clients Had Their Data Leaked After Buying Frying Pans
3. Tracking Tick Through Recent Campaigns Targeting East Asia
4. Cyber Espionage Campaign Reuses Code from China's APT1
5. The #NetSpectre vulnerability could enable a slow leak of data remotely via side channels. Expert Michael Cobb of @thehairyITdog explains
6. Tumblr Privacy Bug Could Have Exposed Sensitive Account Data
7. Apple to US users: Here's how you can now see what personal data we hold on you
8. Open source web hosting software compromised with DDoS malware
9. Anthem Settles with OCR for $16M for 2015 Data Breach
10. Card Factory Exposed Customers Photos Publicly Due To A Website Flaw
11. Hackers can use legitimate #AdminTools to compromise networks. Learn more about "living off the land" attacks from expert Michael Cobb
12. Tumblr patches bug that could have exposed user data
13. 12.5 Million Email Archives Exposed - Why would #cybercriminals go to a #darkweb market and pay for access when they
14. #NetSpectre exploits leak data remotely via side-channel attacks. Learn how to use #ThreatModeling to stop speculative execution from expert Ed
15. Tracking Tick Through Recent Campaigns Targeting East Asia
16. McAfee researchers uncover ‘significant’ espionage campaign
17. Apple to US users: Here's how you can now see what personal data we hold on you
18. Tumblr Fixes Security Bug that Leaked Private Account Info
19. Tumblr fixed a #vulnerability that could have exposed sensitive account #data, including usernames/passwords and individual IP addresses. But the company
20. The #TLBleed vulnerability uses @Intel's HTT chip feature to leak data. Learn about how hackers could use #malware to launch
21. VestaCP compromised in a new supply-chain attack
22. VestaCP compromised in a new supply-chain attack
23. Anthem to pay record £12M for 2015 data breach
24. Around 600 Computers of Anne Arundel County Public Library have been Exposed to Emotet Virus
25. In the wake of numerous high-profile data breaches and privacy incidents, consumers are more aware and concerned than ever about
26. Senate inquiry recommends locking down My Health Record by default
27. Tumblr Vulnerability Exposed User Account Information
28. The Equifax Hack Uploaded Files the Right Way
29. Bug Trio Affecting Eight D-Link Models Leads to Full Compromise
30. SEO pollution campaign affects web searches related to EU midterm elections

DENIAL-OF-SERVICE

31. Open source web hosting software compromised with DDoS malware
32. Who and Why Make DDoS Attacks on The Site of Colleges and Universities ?
33. A10 Networks provides cloud, Internet and gaming providers with 1 RU DDoS defense appliance

MALVERTISING

Nil

PHISHING

34. The libssh “login with no password” bug – what you need to know [VIDEO]

WEB DEFACEMENT

Nil

BOTNET

35. After an attempted comeback by the Russian built #VPNFilter #botnet, home #networkdevices are at risk. Learn how this #malware targets
36. How does the resurgent VPNFilter botnet target victims?

RANSOMWARE

37. 7 best practices for negotiating ransomware payments

CRYPTOMINING & CRYPTOCURRENCIES

38. Fake Adobe Flash update hides cryptocurrency malware
39. Crooks are attempting to spread their cryptojacking malware to unsuspecting victims by disguising it as an update for Flash. The malicious
40. Top 10 Blockchain Development Companies
41. Crypto Mining Malware Runs on iPhone
42. Cryptocurrency Miners Hiding As Flash Updates
43. Cryptomining Malware Attacks On iPhones Grew By 400%
44. Hacking Attacks On Cryptocurrency Exchanges Resulted in a Loss of $882 Million
45. RAT author jailed for 30 months, ordered to hand over $725k worth of Bitcoin
46. RAT author jailed for 30 months, ordered to hand over $725k worth of Bitcoin
47. LuminosityLink spyware mastermind gets 30 months in the clink, forfeits $725k in Bitcoin
48. Researcher Livestreams 51% Attack on Altcoin Blockchain
49. Cryptojacking: A hidden cost for your company
50. Report: Cryptocurrency Exchanges Lost $882 Million to Hackers

MALWARE

51. Fake Adobe Flash update hides cryptocurrency malware
52. After an attempted comeback by the Russian built #VPNFilter #botnet, home #networkdevices are at risk. Learn how this #malware targets
53. Open source web hosting software compromised with DDoS malware
54. LuminosityLink Spyware Mastermind Gets 30 Months In The Clink
55. Crooks are attempting to spread their cryptojacking malware to unsuspecting victims by disguising it as an update for Flash. The malicious
56. Crypto Mining Malware Runs on iPhone
57. GPlayed Trojan - .Net Playing with Google Market
58. Cryptomining Malware Attacks On iPhones Grew By 400%
59. RAT author jailed for 30 months, ordered to hand over $725k worth of Bitcoin
60. RAT author jailed for 30 months, ordered to hand over $725k worth of Bitcoin
61. LuminosityLink spyware mastermind gets 30 months in the clink, forfeits $725k in Bitcoin
62. The #TLBleed vulnerability uses @Intel's HTT chip feature to leak data. Learn about how hackers could use #malware to launch
63. XBash Malware Security Advisory
64. The author of the LuminosityLink RAT sentenced to 30 Months in Prison
65. Stegware: How is #malware using #steganography techniques to avoid detection?
66. Around 600 Computers of Anne Arundel County Public Library have been Exposed to Emotet Virus
67. In order to distribute the attack payload, the code needs to be downloaded onto the PLCs & safety controllers. This

EXPLOIT

Nil

VULNERABILITY

68. GitHub now warns devs about bugs that led to Equifax breach
69. Flaws in telepresence robots allow hackers access to pictures, video feeds
70. Branch.io Flaws may have affected as many as 685 million individuals
71. Critical Remote Code Execution Vulnerabilities Patched by Drupal
72. Code Execution Vulnerability Patched in Library Used by VLC, Other Media Players
73. Flaws Open Telepresence Robots to Prying Eyes
74. [SingCERT] Alert on Multiple Security Vulnerabilities in Oracle's Enterprise Products
75. The #NetSpectre vulnerability could enable a slow leak of data remotely via side channels. Expert Michael Cobb of @thehairyITdog explains
76. A newly disclosed #libSSH vulnerability could allow an attacker #AdminAccess to a server with little effort. By @MT_Heller
77. Drupal addresses multiple critical flaws with latest release
78. Tumblr Privacy Bug Could Have Exposed Sensitive Account Data
79. CVE-2018-8460: Exposing a Double Free in Internet Explorer for Code Execution
80. Wapiti – The Black Box Vulnerability Scanner for Web Applications
81. Vulnerability Spotlight: Live Networks LIVE555 streaming media RTSPServer code execution vulnerability
82. The libssh “login with no password” bug – what you need to know [VIDEO]
83. Card Factory Exposed Customers Photos Publicly Due To A Website Flaw
84. How Shodan helps identify ICS cybersecurity vulnerabilities
85. Oracle extends its thanks to Qihoo 360 for fixing the vulnerabilities of Weblogic
86. Tumblr patches bug that could have exposed user data
87. [SingCERT] Alert on Linksys E Series Routers Vulnerabilities (CVE-2018-3953, CVE-2018-3954, and CVE-2018-3955)
88. Apache Access Vulnerability Could Affect Thousands of Applications
89. Last year, D-Link flubbed a router bug-fix, so it's back with total pwnage
90. Party like it's 1989... SVGA code bug haunts VMware's house, lets guests flee to host OS
91. Oracle Patches 301 Vulnerabilities in October Update
92. Tumblr Fixes Security Bug that Leaked Private Account Info
93. Ruby 2.4.5 released: 40 bug fixes
94. Tumblr fixed a #vulnerability that could have exposed sensitive account #data, including usernames/passwords and individual IP addresses. But the company
95. The #TLBleed vulnerability uses @Intel's HTT chip feature to leak data. Learn about how hackers could use #malware to launch
96. New libSSH vulnerability gives root access to servers
97. A 4-year-old #libSSH vulnerability can allow attackers to easily log in to servers with full administrative control, but it is
98. The implications of the NetSpectre vulnerability
99. #Shodan can be a helpful tool for security professionals to locate #ICSsecurity vulnerabilities. Expert Ernie Hayden explains how Shodan works
100. Oracle security updates contains 45 critical-rated vulnerability
101. A #libSSH vulnerability that went undisclosed for almost five years could allow an attacker easy #AdminAccess to servers, @0xAmit said
102. Vulnerability Spotlight: Live Networks LIVE555 streaming media RTSPServer code execution vulnerability
103. Chaining three critical vulnerabilities allows takeover of D-Link routers
104. Tumblr Fixes Critical Security Bug That Exposes User Account Details
105. Tumblr Vulnerability Exposed User Account Information
106. Bug Trio Affecting Eight D-Link Models Leads to Full Compromise