Daily brief for 2018-11-26
ASIA
- Half of all Phishing Sites Now Have the Padlock
- Cyberthreats to financial institutions 2019: overview and predictions
- Ukrainian Police Nab Suspected RAT-Slinger
- Crypto Mining Malware Infects Make-A-Wish-Foundation Website
WORLD
- Microsoft launches review after a trio of Azure bugs locked users out of Office 365
- Did UK city council over-react to a vulnerability report in its recycling app or not?
- Knuddels Flirt App Slapped with Hefty Fine After Data Breach
- When Do You Need to Report a Data Breach?
- Democrats Introduce Bill for Stopping Automated Grinch Bots from Ruining Xmas
- Siemens patches major firewall flaw, other vulnerabilities
- How Pirated Versions of ‘Super Smash Bros. Ultimate’ Leaked Weeks Before Release
- Microsoft PowerPoint as Malware Dropper
- Recent Attacks on US Entities Attributed to APT29
- U.S. Postal Service API Flaw Exposes Data of 60 Million Customers
- Phishing Campaign targeting French Industry
- Russia Plans To tighten Data Protection Owing To Intelligence Leaks
- German Social Media Provider Fined €20K for Data Breach
- Cyberthreats to financial institutions 2019: overview and predictions
- Ukrainian Police Nab Suspected RAT-Slinger
- Crypto Mining Malware Infects Make-A-Wish-Foundation Website
- Experts found a new powerful modular Linux cryptominer
- HR Software Firm PageUp Finds No Evidence of Data Theft
- An ongoing phishing campaign is targeting French industry, @FSLabs finds.
- Phishing Campaign targeting French Industry
ATTACKS
- Knuddels Flirt App Slapped with Hefty Fine After Data Breach
- When Do You Need to Report a Data Breach?
- USPS, Amazon Data Leaks Showcase API Weaknesses
- Holiday Season: Cybercriminals are Phishing All The Way
- How Pirated Versions of ‘Super Smash Bros. Ultimate’ Leaked Weeks Before Release
- Half of all Phishing Sites Now Have the Padlock
- Easy as APT: Spear phishing highlighted as ongoing threat for 2019
- Despite growing concerns about cybersecurity and the number of data breach incidents in the news, many employees still have bad
- Trivial Spotify Phishing Campaign Targets Users To Steal Login Credentials
- Phishing Campaign targeting French Industry
- Russia Plans To tighten Data Protection Owing To Intelligence Leaks
- German Social Media Provider Fined €20K for Data Breach
- No need to compromise freedom for security - Europol audience told
- 50% use password managers to store login details
- HR Software Firm PageUp Finds No Evidence of Data Theft
- Internal negligence to blame for most data breaches involving personal health information
- Sextortion 2.0: We have continued to monitor the campaigns and have seen a recent change in tactics, with some unusual
- An ongoing phishing campaign is targeting French industry, @FSLabs finds.
- Phishing Campaign targeting French Industry
- Beware!! Cyber Criminals Launching Serious Phishing Attack that Target Spotify Customers
- My Health Record opt-out officially extended to January 31
THREATS
- Microsoft launches review after a trio of Azure bugs locked users out of Office 365
- Did UK city council over-react to a vulnerability report in its recycling app or not?
- Ransomware attack disrupted emergency rooms at Ohio Hospital System
- Lenovo to Pay $7.3 Million in Settlement for Installing Adware on 800K Notebooks
- 13 Newly Discovered Malicious Apps, Deleted By Google From the Play Store
- Hacker backdoors popular JavaScript library to steal Bitcoin funds
- What is Data Classification? Guidelines and Process
- Linux Kernel is affected by two DoS vulnerabilities still unpatched
- Mobile Rotexy Malware Touts Ransomware, Banking Trojan Functions
- Harberger Taxes on Ethereum
- DoS Vulnerabilities Impact Linux Kernel
- Subscribe to the relaunched Virus Bulletin eNews newsletter
- Apache Hadoop Spins Cracking Code Injection Vulnerability YARN
- Siemens patches major firewall flaw, other vulnerabilities
- Play Store Malware Infects Half a Billion
- Microsoft PowerPoint as Malware Dropper
- #Bluetooth devices might be at risk after a new Bluetooth vulnerability was found targeting #firmware and #OperatingSystem software drivers. Learn
- U.S. Postal Service API Flaw Exposes Data of 60 Million Customers
- Ransomware Attack Forced Ohio Hospital System to Divert ER Patients
- Positive Technologies researchers recently found two serious vulnerabilities that target NCR's #ATMs. Learn how a "black box attack" was involved
- OSX.Dummy #malware has been discovered to use chat platforms in order to target #cryptocurrency investors. Learn more with expert @lewisnic
- Cryptocurrency threat predictions for 2019
- Ukrainian Police Nab Suspected RAT-Slinger
- Crypto Mining Malware Infects Make-A-Wish-Foundation Website
- Experts found a new powerful modular Linux cryptominer
- A new ransomware -- dubbed #Thanatos #ransomware -- was found encrypting data but not decrypting it despite victims paying the
- Discover how a @DLink #router vulnerability targeted a banking site to steal #UserCredentials with expert Judith Myerson.
- For recent big data software vulnerabilities, botnets and coin mining are just the beginning
- Frost & Sullivan Commends Rapid7 for Capturing Nearly a Quarter Share of the Global Vulnerability Management Market
CRIME
- When Do You Need to Report a Data Breach?
- Holiday Season: Cybercriminals are Phishing All The Way
- Half of all Phishing Sites Now Have the Padlock
- Russia Plans To tighten Data Protection Owing To Intelligence Leaks
- Cryptocurrency threat predictions for 2019
- Cyberthreats to financial institutions 2019: overview and predictions
- Ukrainian Police Nab Suspected RAT-Slinger
- Experts found a new powerful modular Linux cryptominer
- HR Software Firm PageUp Finds No Evidence of Data Theft
- Sextortion 2.0: We have continued to monitor the campaigns and have seen a recent change in tactics, with some unusual
POLITICS
- Russia Plans To tighten Data Protection Owing To Intelligence Leaks
- Cryptocurrency threat predictions for 2019
- Ukrainian Police Nab Suspected RAT-Slinger
