Threat report for 2018-11-14

DATA BREACH & DATA LOSS

1. 21K Donors Had Their Personal Info Leaked Following Kars4Kids Data Breach
2. Google services collapsed due to BGP leak
3. Google services collapsed due to BGP leak
4. Facebook vulnerability could have leaked your private information – again
5. Cathay Apologizes Over Data Breach but Denies Cover-up
6. Business Email Compromise - When You Don’t Need to Phish:
7. Australian Senate extends My Health Record opt-out period
8. The July edition of Beazley Breach Insights found that business email compromise attacks have been rising steadily. Is business email
9. Microsoft covertly collects personal data from enterprise Office ProPlus users
10. Facebook flaw could have exposed private info of users and their friends
11. Hunt finally submits to My Health Record arm-twists as opt-out window extended
12. This year’s success adds to @MWRLabs’ #Pwn2Own existing track record, which includes demo attacks against Chrome.
13. The @mwrlabs research team used zero-day vulnerabilities to compromise smart phones from Xiaomi and Samsung.
14. Healthcare.gov Health Data Breach Exposes Personal Data
15. Facebook Patches Another Vulnerability That Exposed User’s Private Information
16. Senate votes to extend My Health Record opt-out to January 31

DENIAL-OF-SERVICE

17. Just because you're paranoid doesn't mean hackers won't nuke your employer into the ground tomorrow
18. A Large Retailer Responds to #DDoS Extortion: To Pay or Not to Pay?

MALVERTISING

Nil

PHISHING

19. Did you by chance hack OPM back in 2015? Good news, your password probably still works!
20. Business Email Compromise - When You Don’t Need to Phish:
21. Is it time to change your password? Check out this list of the 25 worst passwords for 2018 and make
22. Support wouldn’t change his password, so he mailed them a bomb
23. Public get Warning from Scotts Bluff County Sheriff’s Office about a Phishing Email Scam
24. BDO Unibank Warned its Customers to Remain Beware from New Phishing Scheme

WEB DEFACEMENT

Nil

BOTNET

25. 'Mylobot' botnet now downloading second-stage malware meant to siphon data
26. Airlines Have a Big Problem with Bad Bots
27. A 100k routers around the world are on the botnet to conduct emails spam

RANSOMWARE

28. 1,000 Bitcoins Ransom Asked from Media Prima After Successful Ransomware Attack
29. Targeted ransomware attacks – SophosLabs 2019 Threat Report
30. Ransomware is the leading cyber threat experienced by SMBs
31. Key takeaways from Datto’s State of the Channel Ransomware Report 2018
32. Big Game Hunting: The Evolution of INDRIK SPIDER From Dridex Wire Fraud to BitPaymer Targeted Ransomware

CRYPTOMINING & CRYPTOCURRENCIES

33. Bitcoin Giveaway Scam Balloons, with Google the Latest Victim
34. French Data Protection Authority Issues Guidance on Interaction of Blockchain Technology with GDPR
35. Cryptojacking, Mobile Malware Growing Threats to the Enterprise
36. Why cryptojacking malware is a bigger threat to your PC than you realise
37. Don’t fall for fake NEO, Tether and MetaMask cryptocurrency wallets on Google Play
38. Researchers recently discovered a new #MacOS #malware that targets #cryptocurrency investors through chat platforms. Discover how this is possible and
39. Bitcoin fraud on the official Twitter account of Google GSuite

MALWARE

40. 'Mylobot' botnet now downloading second-stage malware meant to siphon data
41. FlawedAmmy, the Only RAT in CheckPoint’s Global Threat Index 2018 List
42. Ad-Injecting Mac Malware Rediscovered
43. Monitoring file output for malicious code 'could have stopped BA attack more quickly'
44. It's Amateur Hour In The World Of Spyware And Victims Will Pay The Price
45. Cryptojacking, Mobile Malware Growing Threats to the Enterprise
46. A bypass was found by @okta researchers that allows #macOS #malware to pose as @Apple files despite needing to be
47. Why cryptojacking malware is a bigger threat to your PC than you realise
48. Researchers recently discovered a new #MacOS #malware that targets #cryptocurrency investors through chat platforms. Discover how this is possible and
49. Holiday Shopping Tip 1: Inoculate Your Computer You need to protect against malware with regular updates to your anti-virus program and
50. Researchers demo how machine learning can be used to track Gh0st RAT variants
51. This remote access trojan just popped up on malware's most wanted list
52. Do you believe that the application #security vetting process would benefit from the addition of an entropy source?
53. How does signed software help mitigate malware?
54. Beers with Talos Ep. #41: Sex, money and malware
55. Cyber security is a process: Prevent, Detect, Respond, Predict. @5ean5ullivan @FSecure @ohjelmisto_ry
56. Are you safe on social? "Countering the Social Hack" a 5-step process from ZF CEO @FirstNameFoster in @BRINKNewsNow
57. FlawedAmmy: Dangerous RAT enteres most wanted malware list
58. Card skimming malware removed from Infowars online store

EXPLOIT

59. Chinese APT Group Exploit Fixed Critical Adobe ColdFusion Vulnerability On Unpatched Servers
60. Zero-day Windows exploit fix stars in November Patch Tuesday
61. A new exploit for zero-day vulnerability CVE-2018-8589
62. This year’s success adds to @MWRLabs’ #Pwn2Own existing track record, which includes demo attacks against Chrome.

VULNERABILITY

63. Microsoft Patches RCE Vulnerabilities in Word, Excel, and Windows Search
64. Siemens Patches Firewall Flaw That Put Operations at Risk
65. Chinese APT Group Exploit Fixed Critical Adobe ColdFusion Vulnerability On Unpatched Servers
66. Facebook vulnerability could have leaked your private information – again
67. Cyber espionage group used CVE-2018-8589 Windows Zero-Day in Middle East Attacks
68. CVE-2018-15961: Adobe ColdFusion Flaw exploited in attacks in the wild
69. How Threat Intelligence Prioritizes Risk in Vulnerability Management
70. Hackers Taking Over Websites Due to WordPress GDPR Plugin Flaw
71. November 2018 Patch Tuesday: Microsoft fixes 63 flaws, one actively exploited zero-day
72. Siemens Releases 7 Advisories for SIMATIC, SCALANCE Vulnerabilities
73. Adobe Patch Tuesday updates for November 2018 fix known Acrobat flaw
74. Zero-day Windows exploit fix stars in November Patch Tuesday
75. Microsoft's Patch Tuesday addresses Zero Day vulnerabilities
76. Facebook reportedly fixes search bug that could have threatened user privacy
77. CyberSecurity Asean security alert on A Vulnerability in Cisco Unity Express Could Allow for Arbitrary Code Execution
78. November Patch Tuesday Fixes Another Zero-Day Win32k Bug, Other Public Vulnerabilities
79. AVEVA InduSoft Web Studio and InTouch Edge HMI Critical Vulnerabilities Threat Alert
80. A #bug allowing websites to capture private data from Facebook users through Chrome has been discovered:
81. Microsoft Patches Windows Zero-Day Exploited in Cyber Attacks
82. 7 New Meltdown and Spectre-type CPU Flaws Affect Intel, AMD, ARM CPUs
83. APT Group Uses Windows Zero-Day in Middle East Attacks
84. Facebook flaw could have exposed private info of users and their friends
85. A new exploit for zero-day vulnerability CVE-2018-8589
86. Adobe November Security Update: fixes multiple vulnerabilities in its products
87. Microsoft Released Security Updates & Fixed More than 60 Vulnerabilities Along with Active Windows Zero day
88. The @mwrlabs research team used zero-day vulnerabilities to compromise smart phones from Xiaomi and Samsung.
89. Exploits confirmed! Congrats to F-Secure’s @MWRLabs team for another great #Pwn2Own performance. @thezdi
90. New Press Release: Team from @FSecure's @MWRLabs demos exploits for previously undisclosed vulnerabilities at Mobile #Pwn2Own competition -
91. Facebook Patches Another Vulnerability That Exposed User’s Private Information
92. 63 New Flaws (Including 0-Days) Windows Users Need to Patch Now
93. Confirmed! The @mwrlabs team used a download bug along with a silent app installation to load their custom app and