Threat report for 2018-11-19

DATA BREACH & DATA LOSS

1. Not So Cozy: An Uncomfortable Examination of a Suspected APT29 Phishing Campaign
2. Data Leak Incident Reported by Fortune 500 Metropolitan Life Insurance Company
3. VisionDirect Blindsided by Magecart in Data Breach
4. OSIsoft Breached, All Domain Accounts, Emails, and Passwords Assumed Compromised
5. “Simplicity without Compromise” with Catalyst 9200 – Intent Based Networking Everywhere!
6. EOS.IO Smart Contract Database Walkthrough
7. Ford Eyes Use of Customers’ Personal Data to Boost Profits
8. Vision Direct Admits To Breach With CVVs Compromised
9. Instagram Bug, Now Fixed, Exposed User Passwords
10. Business email compromise scam costs Pathé $21.5 million
11. Database Misconfiguration Leaks 26 Million SMS Messages
12. The Most Damaging Election Disinformation Campaign Came From Donald Trump, Not Russia
13. SUNY Upstate Hospital announced a former employee inappropriately accessed more than 1,200 patient records.
14. Subject: Invoice. The cause of 6 out of 10 of the most effective phishing campaigns in 2018
15. Vision Direct reveals customer credit card leak, fake Google script may be to blame
16. Most Important Consideration of Confidentiality,Integrity, Availability (CIA Triad) to Avoid Organization Data Breach
17. New security feature to prevent Amazon S3 bucket misconfiguration and data leaks
18. Instagram Privacy Tool Exposed Passwords
19. Vision Direct Notifies Customers of Data Compromise
20. Proofpoint #ThreatInsight research: #sLoad and #Ramnit pairing in sustained personalized campaigns against UK and Italy:
21. Instagram Accidentally Exposed Some User Passwords
22. Email campaign spreading new tRAT malware
23. The promised integration with #HaveIBeenPwned is expanding in #FirefoxMonitor with new breach alerts when a user visits a recently compromised
24. Instagram Critical Bug Leaked User’s Password Via its Data Download Tool
25. After early speculation of #malicious intent, experts said an accidental misconfiguration caused the BGP route leak that sent traffic destined
26. Firefox automatically alerts users when you access sites that have data breaches
27. Instagram Accidentally Exposed Some Users' Passwords In Plaintext

DENIAL-OF-SERVICE

Nil

MALVERTISING

Nil

PHISHING

28. Not So Cozy: An Uncomfortable Examination of a Suspected APT29 Phishing Campaign
29. Top 5 ways to pick a secure password
30. Top 5 ways to pick a secure password
31. 2FA Login Failure in Office 365 and Azure
32. Subject: Invoice. The cause of 6 out of 10 of the most effective phishing campaigns in 2018
33. A little phishing knowledge may be a dangerous thing
34. The more you say you know about phishing, the more vulnerable you are … Until you’re hoodwinked
35. More than 50% forgot their password once at least one in the last month
36. An espionage group used stolen #DigitalCertificates to sign Plead #malware and used a password stealer component that was used in
37. How #privacy intersects with #CyberSecurity. “Criminals can craft better phishing emails to scam you when they know what you’re interested in.”
38. Review: Specops Password Policy
39. Instagram Critical Bug Leaked User’s Password Via its Data Download Tool
40. Sai quali sono i modelli più utilizzati dagli utenti per creare le proprie #password? Qui ti suggeriamo alcune 'best practice'

WEB DEFACEMENT

Nil

BOTNET

41. Outlaw Group Distributes Botnet for Cryptocurrency-Mining, Scanning, and Brute-Force
42. How do you think the #Mylobot #botnet attack will affect the future of botnets?

RANSOMWARE

43. Texas hospital becomes victim of Dharma ransomware
44. A History of Ransomware Attacks: The Biggest and Worst Ransomware Attacks of All Time
45. Wannacry Continues to be Dominant Ransomware

CRYPTOMINING & CRYPTOCURRENCIES

46. EOS.IO Smart Contract Database Walkthrough
47. Bitcoin Falls Below $5,000
48. Cryptojacking Attack Targets Make-A-Wish Foundation Website
49. WebCobra Installs Cryptominer On Victim's System
50. Outlaw Group Distributes Botnet for Cryptocurrency-Mining, Scanning, and Brute-Force
51. How can a @Trezor #cryptocurrency wallet fall victim to attack? Learn more with expert @lewisnic
52. Turkish Police Arrested Cryptocurrency Hackers

MALWARE

53. New Modular tRat Remote Access Trojan Surfaced During September
54. OSIsoft Breached, All Domain Accounts, Emails, and Passwords Assumed Compromised
55. Traps: Fighting Threats With Cloud-Based Malware Analysis
56. U.S. warns countries not to 'manipulate the extradition process' for cybercriminals
57. DarkGate Malware Avoids Endpoint AV Detection
58. New ShadowTalk update looks at: New nation-state threat actor uses advanced TTPs to target Pakistan Lazarus Group’s FASTCash malware
59. Cybaze ZLab – Yoroi team analyzed malware used in recent attacks on US entities attributed to APT29
60. An espionage group used stolen #DigitalCertificates to sign Plead #malware and used a password stealer component that was used in
61. Email campaign spreading new tRAT malware
62. After early speculation of #malicious intent, experts said an accidental misconfiguration caused the BGP route leak that sent traffic destined
63. Fun fact: The Morris Worm of 1988 did never spread to Finland, as the outbreak happened two weeks before we
64. October 2018’s Most Wanted Malware: For The First Time, Remote Access Trojan Reaches Global Threat Index’s Top 10

EXPLOIT

Nil

VULNERABILITY

65. Finds vulnerabilities in wordpress websites using WPSCAN
66. TP-Link Patches Remote Code Execution Flaws in SOHO Router
67. Tianfu Cup PWN hacking contest – White hat hackers earn $1 Million for Zero-Day exploits
68. Instagram Flaw Exposes User Passwords
69. Multiple Remote TP-Link TL-R600VPN Router Vulnerabilities Patched
70. A bug in EA Origin client exposes gamers' data
71. Vulnerabilities Dip 7%, but Researchers Are Cautious
72. Instagram Bug, Now Fixed, Exposed User Passwords
73. Vulnerability Spotlight: Multiple remote vulnerabilities in TP-Link TL-R600VPN
74. SUNY Upstate Hospital announced a former employee inappropriately accessed more than 1,200 patient records.
75. Instagram flaw exposes user passwords
76. Hackers Earn $1 Million for Zero-Day Exploits at Chinese Competition
77. Privilege escalation bug patched in Accelerated Mobile Pages WordPress plug-in
78. How does a Bluetooth vulnerability enable validation attacks?
79. How does site isolation defend against #Spectre vulnerabilities? Expert Michael Cobb of @thehairyITdog explains
80. Helping researchers with IoT firmware vulnerability discovery
81. Vulnerability Spotlight: Multiple remote vulnerabilities in TP-Link TL-R600VPN
82. Instagram Critical Bug Leaked User’s Password Via its Data Download Tool