Nov 24, 2018

Threat report for 2018-11-23

DATA BREACH & DATA LOSS

  1. NUI Galway’s Problem: Misplaced USB Flash Drive Containing Unencrypted Student Records
  2. Data breach in OSIsoft
  3. Brazil's largest professional association suffers massive data leak
  4. Amazon Snafu Exposed Customers' Names and Email Addresses
  5. “Back in Black” – Article 13 has YouTube threatening to pull the plug over upload filter
  6. New Emotet Thanksgiving campaign differs from previous ones
  7. US Postal Service Website Left Data Exposed for Over a Year
  8. .@Amazon unveils new settings to help users avoid S3 data leaks, but UpGuard's Chris Vickery, who uncovered most #AWS exposures,
  9. Exclusive Cybaze ZLab – Yoroi – Hunting Cozy Bear, new campaign, old habits
  10. A #phishing campaign was recently found to be hijacking the traffic of @Trezor user #cryptocurrency wallets. Learn how such an
  11. Software company OSIsoft has suffered a data breach
  12. SAVE 50% FOR BLACK FRIDAY! Get half off FREEDOME VPN and TOTAL with coupon code BLACKFRIDAY.
  13. DNS Shell – Tool to Compromise and Maintain Control Over Victim Machine
  14. @FSecure fait son #BlackFriday ! Profitez de 50% de remise sur une sélection de produits !
  15. 60 million users’ data were exposed by the US Postal Service

DENIAL-OF-SERVICE

  1. Why e-commerce needs DDoS protection for Cyber Monday

MALVERTISING

Nil

PHISHING

  1. 8 tips for avoiding phishing, malware, scams, and hacks while holiday shopping online
  2. New Linux crypto-miner steals your root password and disables your antivirus
  3. Attackers Are Landing Email Inboxes Without the Need to Phish
  4. Do you know the top myths and facts of #mobile #phishing? If not, don't worry, we've compiled a list of
  5. Phishing Used to Launch GreyEnergy's ICS Attacks
  6. Southwest Washington Regional Surgery Center suffered a Phishing attack
  7. A #phishing campaign was recently found to be hijacking the traffic of @Trezor user #cryptocurrency wallets. Learn how such an

WEB DEFACEMENT

Nil

BOTNET

  1. Malware scum want to build a Linux botnet using Mirai
  2. Deep Instinct recently blogged about a new #botnet -- dubbed #Mylobot -- that has shown new, complex tools and techniques.

RANSOMWARE

  1. SMBs suffered the brunt of ransomware attacks in 2018
  2. The number of ransomware attacks on individuals has come down as it has become harder to get them to pay,

CRYPTOMINING & CRYPTOCURRENCIES

  1. Cryptocurrency ‘minting’ flaw could have leached money from exchanges
  2. A #phishing campaign was recently found to be hijacking the traffic of @Trezor user #cryptocurrency wallets. Learn how such an

MALWARE

  1. 8 tips for avoiding phishing, malware, scams, and hacks while holiday shopping online
  2. New Crypto-Miner Attacks Linux Machines, Kills Other Miners and Anti-Malware
  3. Malware scum want to build a Linux botnet using Mirai
  4. Ukrainian police arrest hacker who infected over 2,000 users with DarkComet RAT
  5. Black Friday special by Emotet: Filling inboxes with infected XML macros
  6. Black Friday special by Emotet: Filling inboxes with infected XML macros
  7. Ukrainian police arrest hacker who infected over 2,000 users with DarkComet RAT
  8. VMware patches guest-to-host malware vulnerability
  9. #WebCache poisoning poses a serious threat to #BrowserSecurity. Learn how #hackers can use unkeyed inputs for malicious intent from expert
  10. Best way to Remove Malware on Mac, Including Other Unwanted Apps
  11. New Crypto Malware Spreading that Infects Linux Machines & Removes Anti-Virus
  12. Over 500k Play Store users have installed 13 games that contain malware

EXPLOIT

Nil

VULNERABILITY

  1. DoS Vulnerabilities Found in Linux Kernel, Unpatched
  2. Apache Hadoop spins cracking code injection vulnerability YARN
  3. German e-government SDK patched against ID spoofing vulnerability
  4. US Postal Service Plugs API Flaw - One Year Later
  5. VMware fixed Workstation flaw disclosed at the Tianfu Cup PWN competition
  6. Adobe Flash Player Remote Code Execution Vulnerability Threat Alert
  7. Old Printer Vulnerabilities Die Hard
  8. VMware Patches Workstation Flaw Disclosed at Hacking Contest
  9. Cryptocurrency ‘minting’ flaw could have leached money from exchanges
  10. USPS Bug affects 60 Million Users, Finally Fixed.
  11. German eID vulnerability allows hackers to change identities
  12. VMware patches guest-to-host malware vulnerability
  13. Internet connected devices might be the hot item for Christmas this year, but are they secure?
  14. Hacker says USPS ignored serious security flaw for over a year
  15. CVE-2018-6983: integer overflow vulnerability in VMware Workstation and Fusion
at
Labels: