Threat report for 2018-10-29

DATA BREACH & DATA LOSS

1. Girl Scouts Issues Data Breach Warning to 2,800 Members
2. Cathay Pacific Suffers World’s Largest Airline Data Breach
3. sLoad and Ramnit Campaign Against UK and Italy
4. Secret Service Confirms Focus on Email Compromise Cybercrimes Worth $12 Billion
5. Girl Scouts Alerted to Possible Data Breach
6. 'Narwhal Spider' group's spam campaign targets Japanese recipients with URLZone malware
7. DDoS and ransomware tools for starter and experienced cybercriminals exposed
8. Biggest Manufacturing Data Breaches of the 21st Century
9. The Worst Data Breach till Now 2018, and What It Means
10. Crooks continue to abuse exposed Docker APIs for Cryptojacking
11. IoT users uncertain if personal data is shared across multiple devices
12. Hackers Breach System of Healthcare.Gov Exposing Personal Data of 75,000 Users
13. Hackers steal personal data of up to 9.4 million Cathay Pacific passengers
14. Leaked: iOS 12.1 will be released on October 30th
15. 33,000 Accounting Inbox Credentials Exposed Online: BEC Made Easy | Read the details here:

DENIAL-OF-SERVICE

16. Remote Denial of Service Vulnerability Patched in Squid Proxy Cache Server
17. Man Ordered to Pay $8.6 Million for Launching DDoS Attacks against Rutgers University
18. Mirai Author Gets House Arrest for DDoS Attacks on University
19. DDoS and ransomware tools for starter and experienced cybercriminals exposed

MALVERTISING

Nil

PHISHING

20. Phishing spikes as private health continues to be most breached sector in Australia
21. Nation-State Phishing: A Country-Sized Catch
22. A new phishing report reveals Microsoft, Paypal, and Netflix are among the top brands impersonated by phishing attacks. Attackers tend to
23. This is getting worse and worse. And is going to normalize and lead to much more successful phishing through SMS
24. League of Legends Gamers Targeted by Phishing Scam | Avast
25. What can we do to tackle today’s phishing epidemic?
26. Das Geschäft mit gestohlenen Login-Daten von Privatnutzern und Unternehmensanwendern boomt. US-Journalist Brian Krebs beziffert die "Ausbeute" bei mehreren 100.000 US-Dollar
27. 19% still save their password on a piece of paper
28. Vulnerability In Microsoft Word Online Video Feature Allows for Phishing

WEB DEFACEMENT

29. Future Investment Initiative Conference Website, Defaced, Now Restored

BOTNET

30. Mirai Botnet Operator Ordered to Pay $8.6 Million
31. ‘DemonBot' Botnet Targets Hadoop Servers
32. Rise of the Bots

RANSOMWARE

33. The Ransomware Attack on a North Carolina Water Utility May Not Have Been What it Seemed
34. Ransomware and the enterprise: A new white paper
35. DDoS and ransomware tools for starter and experienced cybercriminals exposed
36. #Antivirus SW alone can't stop new #malware or #ransomware. by @MariaKorolov -
37. Have you ever wondered why #ransomware attacks happen on the Friday before a long weekend? We've teamed up with @SentinelOne

CRYPTOMINING & CRYPTOCURRENCIES

38. Mac CryptoCurrency Price Tracker Caught Installing Backdoors
39. Mac cryptocurrency ticker app installs backdoors
40. Call of Duty players caught up in cryptocurrency theft racket
41. Cyber-criminals exploit misconfigured container to deliver cryptominer
42. Crooks continue to abuse exposed Docker APIs for Cryptojacking
43. Revolutionary Blockchain 3.0 Under CSE Platform

MALWARE

44. Videos and MS Office documents - ingredients for a malware attack
45. Word documents seemingly carrying videos can deliver malicious code instead
46. Downloading Google Chrome via Microsoft Edge Endangered by Malware
47. Windows 10 UWP Bug Could Give Malicious Devs Access To All Your Files
48. Advanced Malware Protection Affected by Bug That Can Inhibit Intrusion Detection
49. Windows 10 UWP bug could give malicious devs access to all your files
50. Malware That Accompanies Google Chrome Download Detected
51. 'Narwhal Spider' group's spam campaign targets Japanese recipients with URLZone malware
52. Vulnerability found in Sophos anti-malware product
53. Privacy concerns cooling #InternetOfThings adoption in US & Europe, with consumers concerned about #DataLeaks, malware and product security (via @FSecure)
54. Same Old yet Brand-new: New File Types Emerge in Malware Spam Attachments
55. #Antivirus SW alone can't stop new #malware or #ransomware. by @MariaKorolov -
56. Beware! Downloader Malware Disguised as Game Apps Found On Google Play with More Than 51,100 Installations
57. Microsoft Bing Delivered Dangerous Malware When You Try to Download Google Chrome

EXPLOIT

58. Researchers exploit Microsoft Word through embedded video
59. Cyber-criminals exploit misconfigured container to deliver cryptominer
60. Our adventures at @thezdi Pwn2Own Desktop 2018 for Apple Safari exploit whitepaper (https://labs.mwrinfosecurity.com/assets/BlogFiles/apple-safari-pwn2own-vuln-write-up-2018-10-29-final.pdf …) and @t2.fi slides release (https://labs.mwrinfosecurity.com/assets/BlogFiles/mwri-t2-big-game-fuzzing-pwn2own-safari-final.pdf …)

VULNERABILITY

61. SandboxEscaper expert is back and disclosed a new Windows Zero-Day
62. IoT Flaw Allows Hijacking of Connected Construction Cranes
63. Remote Denial of Service Vulnerability Patched in Squid Proxy Cache Server
64. X.Org Flaw Allows Privilege Escalation in Linux Systems
65. X.Org Flaw Exposes Unix-Like OSes to Attacks
66. Windows 10 UWP Bug Could Give Malicious Devs Access To All Your Files
67. X.org Bug Bites OpenBSD And Other Big Operating Systems
68. If your company uses Windows 10, watch out: there are new vulnerabilities about
69. Advanced Malware Protection Affected by Bug That Can Inhibit Intrusion Detection
70. Logical Bug in Microsoft Word's 'Online Video' Allows Code Execution
71. Windows 10 UWP bug could give malicious devs access to all your files
72. Windows 10 Bug Allowed UWP Apps Full Access to File System
73. Magecart Exploits Zero Day Vulnerabilities
74. Serious Vulnerability Discovered In X.Org Server Affects Major Linux and BSD Variants
75. Security Vulnerability in Internet-Connected Construction Cranes
76. Systemd flaw could cause the crash or hijack of vulnerable Linux machines
77. Pentagon’s big audit will inspect for cybersecurity flaws, comptroller says
78. Vulnerability found in Sophos anti-malware product
79. Flaws in brain stimulation tech could let hackers erase or hold memories for ransom
80. Cisco patched a command injection vulnerability in Webex Meetings
81. Vulnerability In Microsoft Word Online Video Feature Allows for Phishing