Nov 11, 2018

Threat report for 2018-11-10

DATA BREACH & DATA LOSS

  1. FIFA Preps for Next Wave of Bad Press after New Data Breach
  2. According to the @FBI's Internet #CrimeReport, business email compromise attacks cost more than $676 million in 2017. Learn more from
  3. What is the average time it takes for an organization to identify a data breach?
  4. Botnet infects over 400krouters for spam campaign
  5. Pakistani banks suffer data breach

DENIAL-OF-SERVICE

Nil

MALVERTISING

Nil

PHISHING

  1. "Keep in mind that it's not just users who can find and exploit #SQLinjection, but business logic flaws, password policy

WEB DEFACEMENT

Nil

BOTNET

  1. Botnet infects over 400krouters for spam campaign
  2. New #spam #botnet infected over 100,000 home routers through a UPnP vulnerability, according to researchers at @360Netlab. By @MaddieBacon11

RANSOMWARE

  1. GandCrab Ransomware Virus Threat Alert

CRYPTOMINING & CRYPTOCURRENCIES

  1. Cryptocurrency Mining Malware Targets Linux Machines Uses Rootkit to Hide From Monitoring Tools

MALWARE

  1. GandCrab Ransomware Virus Threat Alert
  2. Symantec shared details of North Korean Lazarus’s FastCash Trojan used to hack banks
  3. The Cyber National Mission Force will share unclassified U.S. Cyber Command #malware samples to #VirusTotal and one expert hopes there
  4. In @usnistgo's draft on 'Vetting the #Security of #MobileApplications,' several key general requirements are discussed. However, the process could be
  5. Cryptocurrency Mining Malware Targets Linux Machines Uses Rootkit to Hide From Monitoring Tools
  6. Researchers reveal the malware used by North Korean hackers to attack ATMs

EXPLOIT

  1. "Keep in mind that it's not just users who can find and exploit #SQLinjection, but business logic flaws, password policy

VULNERABILITY

  1. Apache mod_jk Access Control Bypass Vulnerability (CVE-2018-11759) Threat Alert
  2. Nginx server security flaws expose more than a million of servers to DoS attacks
  3. "Keep in mind that it's not just users who can find and exploit #SQLinjection, but business logic flaws, password policy
  4. VMware Releases Security Updates To Fix Critical Vulnerability Discovered in GeekPwn2018 Event
  5. Vulnerabilities in DJI drone manufacturer
  6. New #spam #botnet infected over 100,000 home routers through a UPnP vulnerability, according to researchers at @360Netlab. By @MaddieBacon11
at
Labels: