Threat report for 2018-10-19

DATA BREACH & DATA LOSS

1. AWS FreeRTOS Bugs Allow Compromise of IoT Devices
2. Campaign 2018: Artificial intelligence is automating attacks on political campaigns
3. Chinese Hackers Use 'Datper' Trojan in Recent Campaign
4. A Pentagon #DataBreach exposed data on at least 30,000 individuals, but other details about the incident are still scarce. By
5. Campaign 2018: Artificial Intelligence Is Automating Attacks On Political Campaigns
6. New RTF-based Campaign Distributing Agent Tesla and Loki Malware
7. Did you know? Corporate email accounts can be compromised for as little as $150. Read more key findings from our
8. US Voter Leak Hits Tea Party Organization
9. VestaCP users warned about possible server compromise
10. jQuery File Upload Plugin Vulnerable for 8 Years and Only Hackers Knew
11. Recent phishing campaign against the Office of the First Deputy Prime Minister - Kingdom of Bahrain. Targeting Aysha Bukhelli, spoofed
12. Campaign launched to protect ethical hackers in the Americas
13. The blogging site Tumblr has disclosed and fixed a security flaw that could have exposed sensitive account information.
14. Facepunch 2016 breach exposed 343,000 users
15. Today we're explaining #Canada's Data Breach Regulations on the #blog. Jet on over to find out if your organization complies
16. ADHA's non-process for releasing My Health Record data revealed
17. MikroTik routers targeted by cryptomining campaign | Avast
18. Vulnerability in Tumblr could have compromise users’ account data
19. Poor security practices and access to hacking services are making it easy for #cybercriminals to compromise business email, research reveals:

DENIAL-OF-SERVICE

20. New DDoS Malware Infects Open-Source Web Hosting Software
21. Lawfare editor on persistent DDoS attack: 'We wish they'd knock it off'
22. DDoS Attack Prevention Method on Your Enterprise’s Systems – A Detailed Report

MALVERTISING

Nil

PHISHING

23. Password and credit card-stealing Azorult malware adds new tricks
24. AISA 2018: Hunting for phishing kits
25. Hackers launched #phishing attacks against @netflix users via malicious sites with TLS certificates. Learn how hackers mimic popular websites to
26. Recent phishing campaign against the Office of the First Deputy Prime Minister - Kingdom of Bahrain. Targeting Aysha Bukhelli, spoofed
27. #HurricaneMichael #phishing schemes leverage Azure blob storage to rake in credentials. http://ow.ly/J6m850js1sk via the @threatinsight research team.

WEB DEFACEMENT

Nil

BOTNET

28. Ok now, which one of you is running this Twitter botnet of fake infosec professionals?

RANSOMWARE

29. City Pays $2,000 in Computer Ransomware Attack
30. Water Utility ONWASA Hit by Ransomware Attack
31. Madison County Computer Systems Face a Ransomware Attack
32. The Week in Ransomware - October 19th 2018 - GandCrab, Birbware, and More
33. Top 4 tips to avoid getting hit by ransomware
34. Onslow County Utility Hit with Ransomware Attack

CRYPTOMINING & CRYPTOCURRENCIES

35. Report: Cryptocurrency Exchanges Lost $882 Million to Hackers
36. MikroTik routers targeted by cryptomining campaign | Avast
37. Fraudster Targets Cryptocurrency Wallets with a Variety of Info Stealers

MALWARE

38. Small or Big Business, Malware Hits Everyone
39. Kaspersky says it detected infections with DarkPulsar, alleged NSA malware
40. Chinese Hackers Use 'Datper' Trojan in Recent Campaign
41. Password and credit card-stealing Azorult malware adds new tricks
42. SettingContent-ms can be Abused to Drop Complex DeepLink and Icon-based Payload
43. New DDoS Malware Infects Open-Source Web Hosting Software
44. America’s First: US Leads in Global Malware C2 Distribution
45. New RTF-based Campaign Distributing Agent Tesla and Loki Malware
46. Hackers launched #phishing attacks against @netflix users via malicious sites with TLS certificates. Learn how hackers mimic popular websites to
47. The Golden Age of Malware
48. LuminosityLink RAT author sentenced to 30 years in prison
49. Inside Safari Extensions | Malware’s Golden Key to User Data
50. .@TrendMicro researchers discovered a malicious #ChromeExtension spreading #malware. Learn more with expert @lewisnic.
51. ADHA's non-process for releasing My Health Record data revealed
52. APT Group Uses Datper Malware To Launch Cyber Attack on Asia Countries by Executing Shell Commands
53. Canberra competence shines in day of PM domain lapses and tortured analogies

EXPLOIT

54. NSA-Linked 'DarkPulsar' Exploit Tool Detailed

VULNERABILITY

55. libssh Vulnerability: Is WatchGuard Affected?
56. 0-Day in jQuery Plugin Impacts Thousands of Applications
57. Fixing a CSRF Vulnerability
58. This Week in Security News: Apex One™ Release and Java Usage Tracker Flaws
59. AWS FreeRTOS Bugs Allow Compromise of IoT Devices
60. Drupal dev team fixed Remote Code Execution flaws in the popular CMS
61. Flaw in Libssh Grants Admin Control to Servers
62. FreeRTOS Vulnerabilities Expose Many Systems to Attacks
63. Linksys E Series Vulnerabilities
64. Google warns Apple: Missing bugs in your security bulletins are 'disincentive to patch'
65. jQuery Zero-Day Was Exploited For At Least Three Years
66. A Serious Security Flaw Found in LibSSH
67. In this week's Risk & Repeat podcast, editors discuss the #GAOreport on vulnerabilities and weaknesses in military weapons systems and
68. Splunk addressed several vulnerabilities in Enterprise and Light products
69. Serious D-Link router security flaws may never be patched
70. Scams and flaws: Why we get duped
71. Remote Code Execution Flaws Patched in Drupal
72. Tumblr bug bounty program detects flaw, no user info lost
73. .@Google Firebase's lack of #DatabaseSecurity and inadequate #BackendDevelopment led to #DataLeaks and vulnerabilities, including HospitalGown. Learn more about this
74. The blogging site Tumblr has disclosed and fixed a security flaw that could have exposed sensitive account information.
75. Critical Flaw Found in Streaming Library Used by VLC and Other Media Players
76. Drupal Remote Code Execution Vulnerability Alert
77. Business emails could represent a major security flaw for UK companies, after it was revealed millions of account details are
78. Splunk Patches Several Flaws in Enterprise, Light Products
79. Vulnerability in Tumblr could have compromise users’ account data
80. Three critical vulnerabilities can be chained to take full control of D-Link routers
81. Zero-day in popular jQuery plugin actively exploited for at least three years
82. Tumblr serious vulnerability can reveal everyone information
83. Critical Flaws Found in Amazon FreeRTOS IoT Operating System