Daily brief for 2018-11-21

ASIA

1. City of Valdez, Alaska admits to paying off ransomware infection
2. Lazarus APT Uses Modular Backdoor to Target Financial Institutions
3. Adobe issues fix for Flash bug allowing remote code execution
4. Despite early speculation, experts concluded the BGP route leak that sent Google traffic through China and Russia was due to
5. Amazon UK is notifying a data breach to its customers days before Black Friday
6. New Pterodo Backdoor Malware Detected By Ukraine
7. Is Magecart Checking Out Your Secure Online Transactions?
8. Weekly Threat Briefing: Russian APT Comes Back to Life with New US Spear-phishing Campaign
9. Phishing Scams Serious Problem for Canada’s Global Affairs
10. Millions Stolen by North Korea-Linked Hacking Group from Atms in Africa and Asia
11. Malaysia’s largest media company becomes victim of a ransomware attack

WORLD

12. Email Addresses and Phone Numbers of More than 60 Million Users Exposed by USPS
13. A flaw in US Postal Service website exposed data on 60 Million Users
14. Emotet Banking Trojan Uses Stolen Templates to Boost Phishing Campaign Numbers
15. Lazarus APT Uses Modular Backdoor to Target Financial Institutions
16. Facebook increases rewards for its bug bounty program and facilitate bug submission
17. Inspiring the Next Generation of Tech Talent
18. Google Taking Over Health Records Raises Patient Privacy Fears
19. What Is Windows PowerShell (And Could It Be Malicious)?
20. Spoofed addresses and anonymous sending: new Gmail bugs make for easy pickings
21. Amazon tech error leaks customers’ email addresses
22. USPS Site Exposed Data on 60 Million Users
23. Vision Direct Deals With Customer Data Leak
24. Amazon suffers data breach days before Black Friday
25. Major Flaws Found in IT Pentagon Processes After First Ever Financial Audit
26. Black Friday Phishing Dos and Don’ts
27. Amazon warns customers it leaked their names and email addresses
28. Russian Cozy Bear cyberspies awake from hibernation to sling spyware
29. German eID Authentication Flaw Lets You Change Identity
30. Despite early speculation, experts concluded the BGP route leak that sent Google traffic through China and Russia was due to
31. Amazon UK is notifying a data breach to its customers days before Black Friday
32. Italian Naval Industry Attacked By MartyMcFly Malware
33. Sofacy APT unleashes new 'Cannon' trojan
34. New Pterodo Backdoor Malware Detected By Ukraine
35. Black Friday & Cyber Monday Deals: Phishing and Site Skimmers
36. New Campaign by APT Group Sofacy Discovered using new Malware Named Cannon
37. White House admits Ivanka Trump used private email for government business
38. Magecart Black Hats Battle it Out On Infected Site
39. Fancy Bear hacker crew Putin dirty RATs in Word documents emailed to govt orgs – report
40. Is Magecart Checking Out Your Secure Online Transactions?
41. Weekly Threat Briefing: Russian APT Comes Back to Life with New US Spear-phishing Campaign
42. Infowars Online Store Got Infected with Card Skimming Malware
43. Sofacy APT group used a new tool in latest attacks, the Cannon
44. Phishing Scams Serious Problem for Canada’s Global Affairs
45. Malaysia’s largest media company becomes victim of a ransomware attack
46. Russian hackers are conducting more covert attacks on US and European computers
47. US Department of Justice is investigating Tether for manipulation of market prices
48. Sofacy APT Takes Aim with Novel ‘Cannon’ Trojan
49. Major Flaws Found in IT Pentagon Processes After First Ever Financial Audit
50. Russia Linked Group Resurfaces With Large-Scale Phishing Campaign

ATTACKS

51. Phishing: It's all too easy on mobile devices
52. Email Addresses and Phone Numbers of More than 60 Million Users Exposed by USPS
53. A flaw in US Postal Service website exposed data on 60 Million Users
54. Emotet Banking Trojan Uses Stolen Templates to Boost Phishing Campaign Numbers
55. Amazon Customer Email Addresses Leaked Because of 'Technical Error'
56. Google Taking Over Health Records Raises Patient Privacy Fears
57. Amazon tech error leaks customers’ email addresses
58. USPS Site Exposed Data on 60 Million Users
59. Vision Direct Deals With Customer Data Leak
60. Amazon suffers data breach days before Black Friday
61. Emotet’s Thanksgiving Campaign Delivers New Recipes for Compromise
62. Researchers Reveal Identity of Hacker Behind Massive Data Breaches
63. Record Retention
64. A hacker known as #Tessa88 offered several compromise databases obtained from LinkedIn, MySpace and other companies. Now Recorded Future believes
65. Black Friday Phishing Dos and Don’ts
66. The promised integration with #HaveIBeenPwned is expanding in #FirefoxMonitor with new breach alerts when a user visits a recently compromised
67. Amazon warns customers it leaked their names and email addresses
68. Amazon leaks users' email addresses due to 'technical error'
69. High Tail Hall data breach exposes over 400,000 furry fans
70. Facebook Ads Urge Its Staff To Leak Secrets
71. Amazon Suffers Data Breach Days Before Black Friday
72. Bah HumBUG: 5 Recent Holiday Phishing Samples You Need to Watch Out For
73. New Wine in Old Bottle: New Azorult Variant Found in FindMyName Campaign using Fallout Exploit Kit
74. Phishing Emails with .COM Extensions Are Hitting Finance Departments
75. Despite early speculation, experts concluded the BGP route leak that sent Google traffic through China and Russia was due to
76. Amazon UK is notifying a data breach to its customers days before Black Friday
77. Black Friday & Cyber Monday Deals: Phishing and Site Skimmers
78. New Campaign by APT Group Sofacy Discovered using new Malware Named Cannon
79. White House admits Ivanka Trump used private email for government business
80. New OceanLotus watering hole attacks target southeast Asia
81. #CyberMonday Tip 1: Be careful of phishing scams claiming to be from a package-delivery company with links to tracking information. AVG
82. .@Amazon unveils new settings to help users avoid S3 data leaks, but UpGuard's Chris Vickery, who uncovered most #AWS exposures,
83. How have #phishing campaigns threatened your #EnterpriseSecurity system?
84. Weekly Threat Briefing: Russian APT Comes Back to Life with New US Spear-phishing Campaign
85. Amazon Data Leak Exposes Email Addresses Right Before Black Friday
86. Yikes...#Instagram Accidentally Exposed Some Users' #Passwords In Plaintext
87. #Gmail Glitch Enables Anonymous Messages in #Phishing Attacks:
88. APAC consumers want IoT devices, but fear data leaks
89. Phishing Scams Serious Problem for Canada’s Global Affairs
90. OUR BLACK FRIDAY DEALS ARE LIVE! Get 50% off from FREEDOME VPN and TOTAL subscriptions with coupon code BLACKFRIDAY. Buy now:
91. Microsoft now lets you log into Outlook, Skype, Xbox Live without a password
92. Russia Linked Group Resurfaces With Large-Scale Phishing Campaign

THREATS

93. Pen-test at Dropbox turns up three Apple 0-day bugs
94. City of Valdez, Alaska admits to paying off ransomware infection
95. A flaw in US Postal Service website exposed data on 60 Million Users
96. Emotet Banking Trojan Uses Stolen Templates to Boost Phishing Campaign Numbers
97. Lazarus APT Uses Modular Backdoor to Target Financial Institutions
98. Facebook increases rewards for its bug bounty program and facilitate bug submission
99. What Is Windows PowerShell (And Could It Be Malicious)?
100. Spoofed addresses and anonymous sending: new Gmail bugs make for easy pickings
101. Take a Look at L0rdix, The Super Malware Toolkit of 2018
102. Mirai Used as Payload in Hadoop YARN Vulnerability
103. Facebook entices researchers with $40,000 reward for account takeover vulnerabilities
104. 500K Android users hit with malware, and what to do if you're infected
105. Major Flaws Found in IT Pentagon Processes After First Ever Financial Audit
106. Russian Cozy Bear cyberspies awake from hibernation to sling spyware
107. How a Security Test for DropBox Revealed 3 Apple Zero Day Vulnerabilities
108. Adobe issues fix for Flash bug allowing remote code execution
109. 13 Malware-Laden Fake Apps on Google Play
110. A new vulnerability was discovered to affect #Bluetooth #firmware or operating system software drivers. Learn what this vulnerability is and
111. German eID Authentication Flaw Lets You Change Identity
112. Hackers target Drupal servers chaining several flaws, including Drupalgeddon2 and DirtyCOW
113. New vulnerabilities are coming faster than you can fix them
114. Red Hawk – Open Source Information Gathering and Vulnerability Scanning Tool
115. Hackers target critical WordPress plugin flaw to install backdoors and create admin accounts
116. Hackers target critical WordPress plugin flaw to install backdoors and create admin accounts
117. Italian Naval Industry Attacked By MartyMcFly Malware
118. Sofacy APT unleashes new 'Cannon' trojan
119. New Pterodo Backdoor Malware Detected By Ukraine
120. New Campaign by APT Group Sofacy Discovered using new Malware Named Cannon
121. Experts found flaws in Dell EMC and VMware Products. Patch them now!
122. From directory traversal to direct travesty: Crash, hijack, siphon off this TP-Link VPN box via classic exploitable bugs
123. A @DLink #router vulnerability was used to send banking users to a fake site in order to steal #UserCredentials. Learn
124. Malicious programs disguised as racing games on Google Play
125. Adobe plugs critical RCE Flash Player flaw, update ASAP! Exploitation may be imminent
126. Patches Released for Flaws Affecting Dell EMC, VMware Products
127. Adobe Fixes Critical Flash Vulnerability with
128. How is Plead #malware used for #cyberespionage attacks? Learn more with Michael Cobb of @thehairyITdog.
129. Conficker: A 10-year retrospective on a legendary worm
130. Malware Moves: Attackers Retool for Cryptocurrency Theft
131. Infowars Online Store Got Infected with Card Skimming Malware
132. Facebook Increases Rewards for Account Hacking Vulnerabilities
133. Adobe Flash Player Update Released for Remote Code Execution Vulnerability
134. New Hacking Group Outlaw Distributing Botnet to Scan The Network & Perform Cryptocurrency-Mining & Brute-Force Attack
135. Facebook Boosts Bug Bounty Payouts for Account Takeover Flaws
136. Signing and Verifying Ethereum Signatures
137. Hacker got Rewarded for Discovering a Critical Steam Bug
138. CVE-2018-15981: Adobe Flash Player Arbitrary Code Execution Vulnerability
139. Malaysia’s largest media company becomes victim of a ransomware attack
140. US Department of Justice is investigating Tether for manipulation of market prices
141. Awake Security uncovers malicious intent across on-premise, IoT and cloud infrastructure
142. Centreon releases Remote Server functionality for cross-domain monitoring of multi-site IT operations
143. Fancy Bear APT Uses New Cannon Trojan to Target Government Entities
144. "Luiz O Pinto" pushed 500,000+ installs of malware via Google Play, in ~1 week.
145. Uncover virtual hosts of domain with Fierce
146. Sofacy APT Takes Aim with Novel ‘Cannon’ Trojan
147. Major Flaws Found in IT Pentagon Processes After First Ever Financial Audit
148. How to find, is link malicious/URL or not
149. Worried about cryptojacking? Check out how SentinelOne Detects and Protects from GhostMiner CryptoMiner

CRIME

150. Emotet Banking Trojan Uses Stolen Templates to Boost Phishing Campaign Numbers
151. Facebook increases rewards for its bug bounty program and facilitate bug submission
152. What Is Windows PowerShell (And Could It Be Malicious)?
153. Spoofed addresses and anonymous sending: new Gmail bugs make for easy pickings
154. Take a Look at L0rdix, The Super Malware Toolkit of 2018
155. USPS Site Exposed Data on 60 Million Users
156. Researchers Reveal Identity of Hacker Behind Massive Data Breaches
157. Bah HumBUG: 5 Recent Holiday Phishing Samples You Need to Watch Out For
158. How Retailers Can Protect Against Magecart This Black Friday and Holiday Season
159. New Wine in Old Bottle: New Azorult Variant Found in FindMyName Campaign using Fallout Exploit Kit
160. Black Friday & Cyber Monday Deals: Phishing and Site Skimmers
161. Is Magecart Checking Out Your Secure Online Transactions?
162. Weekly Threat Briefing: Russian APT Comes Back to Life with New US Spear-phishing Campaign
163. How is Plead #malware used for #cyberespionage attacks? Learn more with Michael Cobb of @thehairyITdog.
164. Signing and Verifying Ethereum Signatures
165. Phishing Scams Serious Problem for Canada’s Global Affairs
166. Millions Stolen by North Korea-Linked Hacking Group from Atms in Africa and Asia
167. Malaysia’s largest media company becomes victim of a ransomware attack

POLITICS

168. What Is Windows PowerShell (And Could It Be Malicious)?
169. USPS Site Exposed Data on 60 Million Users
170. New Pterodo Backdoor Malware Detected By Ukraine
171. Weekly Threat Briefing: Russian APT Comes Back to Life with New US Spear-phishing Campaign
172. How is Plead #malware used for #cyberespionage attacks? Learn more with Michael Cobb of @thehairyITdog.
173. Phishing Scams Serious Problem for Canada’s Global Affairs
174. Russian hackers are conducting more covert attacks on US and European computers
175. US Department of Justice is investigating Tether for manipulation of market prices
176. MageCart Group Sabotages Rival to Ruin Data and Reputation