Threat report for 2018-11-07
DATA BREACH & DATA LOSS
- New Jersey AG Announces $200,000 Settlement with Business Associate and Permanent Ban for BA’s Owner due to 2016 Data Breach Affecting Over 1,650 Patients
- Half a Million People Potentially Affected by Data Breach at Bankers Life
- Data Of Nearly 700,000 Amex India Customers Exposed Via Unsecured MongoDB Server
- HSBC Bank Suffers Data Breach
- Amex India accounts exposed by misconfigured MongoDB installation
- Data of nearly 700,000 Amex India customers exposed via unsecured MongoDB server
- Hacker Leaked Unpatched Virtual Box Zero-day Vulnerability and its Exploit Online
- HSBC Bank Data Breach Exposed Customer’s Account Details and More
- HSBC US Customers Hit by Data Breach
- What do you think is the average cost of a data breach?
- HSBC now stands for Hapless Security, Became Compromised: Thousands of customer files snatched by crims
- ICO poised to fine Leave campaign and Arron Banks’ insurance biz £135,000
- HSBC suffers data breach, customer banking info exposed
- We recently detected an Android banking malware campaign (Anubis) actively targeting the Dutch market by #abusing the @PostNL brand. After
- New dropper campaign with at least 8 droppers in #GooglePlay (30k+ installs total), found with the help of @avast_antivirus @apklabio.
- How voting history data benefits political campaigns
- HSBC Bank Data Breach Exposed Account Numbers, Balances, Transaction History and Other Details
- Personal data of police and ministries employees leaked by Anonymous Italy
- Five Guys suffers employees’ data theft
- Rushed My Health Record changes still missing the point
- What businesses can learn from political campaigns about using big data
DENIAL-OF-SERVICE
Nil
MALVERTISING
Nil
PHISHING
- A Phishing Incident is Being Investigated by the Carthage Police
- Why you should use a password manager
- They stopped a phishing attack in 10 minutes. It used to take days.
- Password Grabber Module Added to Trickbot
- Why Password Management and Security Strategies Fall Short
- Learn About Phishing Incident Response on Nov 15
- Learn why @Google chose U2F authentication over OTP to eliminate #PhishingEmails from expert Michael Cobb of @thehairyITdog.
- A poor password is a key for the wrong person to get in.
WEB DEFACEMENT
Nil
BOTNET
- IoT Botnet Infects 100,000 Routers To Send Spam
- Rapidly Growing Router Botnet Takes Advantage of 5-Year-Old Flaw
- IoT botnet infects 100,000 routers to send Hotmail, Outlook, and Yahoo spam
- A fresh #botnet is rapidly growing by targeting a five-year-old #vulnerability.
So far, @360Netlab said hundreds of thousands of bot
- Linux servers and IoT devices, main targets of Shellbot botnet
RANSOMWARE
- Healthcare Targeted by 37 Percent of All Ransomware Attacks in Q3 2018
- Security Alert: New Dharma Ransomware Strains Alarmingly Go Undetected By Antivirus Engines
- #SamSam #ransomware targeted 67 organizations in 2018, according to @symantec research. By @MaddieBacon11
- How to Remove NOBAD Ransomware
- #Kraken #ransomware as a service is getting more popular after being bundled into the Fallout #ExploitKit and getting more update
- Managing Third-Party Risk in the Age of Ransomware
CRYPTOMINING & CRYPTOCURRENCIES
- Uni cans crypto-mining CPU raid by switching off whole IT network
- Salesforce Aims to Curb Spam With Blockchain
- Using Blockchain Technology to Solve Global Problems
- JavaScript attack aimed to reroute bitcoin transactions
- University shuts down network to thwart Bitcoin cryptojacking scheme
- Attackers breached Statcounter to steal cryptocurrency from gate.io users
- Elon Musk Bitcoin Scammers Hijack Verified Status Accounts
- #Kraken #ransomware as a service is getting more popular after being bundled into the Fallout #ExploitKit and getting more update
- Hackers seed StatCounter with nasty JavaScript in elaborate Bitcoin theft scheme
- Blockchain: The Good, the Bad and the Legal
- New cryptocurrencies offer better anonymity, new security challenges, from @CSOonline http://0fox.co/sSmx30i8vm4 ZeroFOX CTO weighs in on the #infosec challenges
- Bitcoin Cryptojacking Attack Forces University to Disable Entire Network
- Researchers rank cryptocurrency exchanges by how secure they are
MALWARE
- Cisco removed its seventh backdoor account this year, and that's a good thing
- 3,2 Million New Android Malicious Apps Detected Until the End of Q3 2018
- Not sure how to tell if your Android phone has a virus?
Android malware comes in many forms, ranging from spyware
- Weekly Threat Briefing: Scammers Ride on Popular Vote411 Voter Info Site to Push Scareware Alerts
- On the #blog today, we talk about how fileless malware is changing the way we as organizations treats #cyberthreats.
- We recently detected an Android banking malware campaign (Anubis) actively targeting the Dutch market by #abusing the @PostNL brand. After
- New dropper campaign with at least 8 droppers in #GooglePlay (30k+ installs total), found with the help of @avast_antivirus @apklabio.
- Coupa Simplifies Fragmented B2B Payments Process
- Turning Malware Trends into Proactive Behaviors
- DHS on Election Day: No malicious cyber-activity observed
- AMD and TSMC outline 7nm process products to be listed next year
EXPLOIT
- Hacker Leaked Unpatched Virtual Box Zero-day Vulnerability and its Exploit Online
- VirtualBox Guest-to-Host escape 0day and exploit released online
- According to @digitalshadows, attackers used a browser exploit to steal the private #Facebook messages of at least 81,000 people. Read
- #Virtualbox hat eine #Zeroday Sicherheitslücke. Tipp: Ändern Sie Ihren virtuellen Netzwerkadapter auf etwas anderes als Intel PRO/1000.
- VirtualBox Zero-Day Vulnerability Details and Exploit Are Publicly Available
VULNERABILITY
- U.S. Air Force announced Hack the Air Force 3.0, the third Bug Bounty Program
- Security Flaws Found in Widely Used Data Storage Devices | Avast
- A flaw in WooCommerce WordPress Plugin could be exploited to take over e-stores
- Flaw in Icecast streaming media server allows to take off online Radio Stations
- VirtualBox zero-day dumped on GitHub
- Security Researcher Drops VirtualBox Guest-to-Host Escape Zero-Day on GitHub
- WordPress Flaw Opens Millions of WooCommerce Shops to Takeover
- Rapidly Growing Router Botnet Takes Advantage of 5-Year-Old Flaw
- Flaw Leads to RCE in WordPress Plugins, WooCommerce
- Hacker education, inclusivity, and shifting perceptions of bug bounties
- Apache alerts developers of remote code execution flaw
- Evernote Flaw Allows Hackers to Steal Files, Execute Commands
- Top 20 application vulnerabilities in the enterprise are dominated by Adobe and Microsoft
- Equifax nemesis Apache Struts found vulnerable to 2-year old unpatched flaw; workaround available
- Rapid7 Wins Frost & Sullivan 2018 Global Vulnerability Management Market Leadership Award
- Hacker Leaked Unpatched Virtual Box Zero-day Vulnerability and its Exploit Online
- Zero-day flaw in VirtualBox details go public
- Erratic Windows 10 Bug Breaks Changing of Default File Associations
- Researcher discloses VirtualBox Zero-Day without reporting it to Oracle
- Serious XSS flaw discovered in Evernote for Windows, update now!
- Researchers say #Bleedingbit vulnerabilities could allow #RemoteCodeExecution on wireless access points, medical devices and any other products using the affected
- Enterprises Sinking Under 100+ Critical Flaws Per Day
- WordPress, WooCommerce flaws combine to allow website hijacking
- Apache Struts vulnerability would allow system take over
- Up to 4 million online merchants who use the popular @WooCommerce #WordPress plugin are vulnerable to a file deletion flaw.
- Researcher Drops Oracle VirtualBox Zero-Day
- Stop us if you've heard this one: Remote code hijacking flaw in Apache Struts, patch ASAP
- Bug bounty: Hack the US Air Force and Get Paid
- Microsoft, Google apps feature in the top 20 vulnerabilities in enterprise environments
- VirtualBox zero-day published by disgruntled researcher
- A fresh #botnet is rapidly growing by targeting a five-year-old #vulnerability.
So far, @360Netlab said hundreds of thousands of bot
- .@Siemens SICLOCK central plant clocks were recently found to be affected by several vulnerabilities, some of which have been rated
- Apache Struts users have to update FileUpload library to fix years-old flaws
- Zero-Day #Vulnerability Explained
- November Android Security Update Fixes Critical Bugs, Drops Media Library
- Researcher publishes new VirtualBox zero-day vulnerability
- Vulnerabilities in self encrypted SSD allow attackers to bypass disk encryption
- #Virtualbox hat eine #Zeroday Sicherheitslücke. Tipp: Ändern Sie Ihren virtuellen Netzwerkadapter auf etwas anderes als Intel PRO/1000.
- Popular WooCommerce WordPress Plugin Patches Critical Vulnerability
- Google's automated fuzz bot has found over 9,000 bugs in the past two years
- VirtualBox Zero-Day Vulnerability Details and Exploit Are Publicly Available