Sep 26, 2018

Threat report for 2018-09-25

DATA BREACH

  1. Ex-NSA Hacker Sentenced to Jail Over Kaspersky Leak
  2. Malware on SHEIN Servers Compromises Data of 6.4M Customers
  3. Mozilla Launches Firefox Monitor Data Breach Notification Service
  4. Third-Party Patch Available for Microsoft JET Database Zero-Day
  5. 130 Million Hotel Customers Breached Due to Exposed Database
  6. State Department data breach exposes employee info (w/ commentary from @TripwireInc’s @craigtweets http://bit.ly/2MTcplE
  7. New Adwind RAT Campaign Targets Windows, Linux and Mac Users
  8. Shein Data Breach Exposes Personal Data and Email Address of 6.42 Million Customers
  9. SHEIN Data breach affected 6.42 million users
  10. Security In The Crypto World: Exchanges, Wallets, Personal Data. Kiev To Host The Largest Cybersecurity Forum In Eastern Europe
  11. Symantec accountancy audit uncovers customer transaction recorded as revenue
  12. NewsNow suffers security breach - passwords should be considered compromised
  13. First known malicious cryptomining campaign targeting Kodi discovered
  14. SHEIN-Fashion Shopping Site Suffers Data Breach Affecting 6.5 Million Users
  15. macOS zero-day vulnerability leads to user data leaks
  16. How Long Does it Take to Find Compromised Data
  17. DBeaver Community Edition 5.2.1 Releases: Free universal database tool and SQL client

DENIAL-OF-SERVICE

  1. DDoS Attack on Infinite Campus Limits Parent Access http://dlvr.it/QlL12Z
  2. DDoS Attack on Infinite Campus Limits Parent Access https://www.infosecurity-magazine.com/news/ddos-attacks-infinite-campus?utm_source=twitterfeed&utm_medium=twitter …
  3. DDoS attack on education vendor hinders access to districts’ online portals
  4. Bitcoin Core Team fixes a critical DDoS flaw in wallet software
  5. Some credential-stuffing botnets don't care about being noticed any more
  6. Advanced DDoS Detection and Defense
  7. ZombieBoy
  8. Bitcoin Core Software Patches a Critical DDoS Attack Vulnerability

MALVERTISING

Nothing to report

PHISHING

  1. Firefox Monitor provides password breach alerts, Would it convince you to set up a Firefox Account
  2. GrrCon Augusta 2018, Rachel Giacobozzi’s ‘The Hybrid Analyst: How Phishing Created A New Type Of Intel Analyst’
  3. Tomorrow: Go beyond the usual defenses and *really* protect your email from #spearphishing attacks. Find out how with @AlexanderGTster and @illena_a from @SCmagazine. http://www.workcast.com/register?cpak=2026696370909275&referrer=valimailA …
  4. Cisco patches critical default password vulnerability
  5. Security researcher fined for hacking hotel Wi-Fi and putting passwords on the internet
  6. Users fret over Chrome auto-login change
  7. Security Engineer Hacks Hotel WiFi, Fined for Exposing Admin Password
  8. AdGuard adblocker resets passwords after credential-stuffing attack
  9. 5 Notable Security Incidents that Recently Affected Federal Entities https://tripwire.me/2xGwKoH
  10. Anti-Phishing Requires A Three-Pronged Strategy https://www.infosecurity-magazine.com/white-papers/antiphishing-requires-threepronged?utm_source=twitterfeed&utm_medium=twitter …
  11. Microsoft: Here's why we're declaring end of password era
  12. Microsoft 'kills' passwords, throws up threat manager, APIs Graph Security
  13. Baddies just need one email account with clout to unleash phishing hell
  14. Why Was Equifax So Stupid About Passwords?
  15. NewsNow suffers security breach - passwords should be considered compromised
  16. Cisco patches critical default password vulnerability
  17. 5 Notable Security Incidents that Recently Affected Federal Entities https://tripwire.me/2xGwKoH

WEB DEFACEMENT

Nothing to report

MALWARE

  1. The MITRE ATT&CK Framework: Exfiltration https://tripwire.me/2NDbSJV
  2. Malware on SHEIN Servers Compromises Data of 6.4M Customers
  3. Operator of Scan4You Malware-Scanning sentenced to 14 Years in prison
  4. New Adwind RAT Campaign Targets Windows, Linux and Mac Users
  5. Cryptomining Malware Continues Rapid Growth: Report
  6. Freelancers baited with job offers to download malicious macros
  7. DanaBot trojan sets sights on Europe, new features
  8. Crooks turn to Delphi packers to evade malware detection
  9. Mac Mojave Zero-Day Allows Malicious Apps to Access Sensitive Info
  10. Astaroth Trojan Resurges in South America
  11. BrandPost: Malicious Tactics Have Evolved: Your DNS Needs to, Too
  12. Bloodhound – A Tool For Exploring Active Directory Domain Security
  13. #SecurityNews: #Cryptocurrency mining soars 459% from 2017 to 2018 with no indication of slowing down. Read more about this story here: https://bit.ly/2PXYSew
  14. #SecurityNews: Scottish #Brewery recovers from #ransomware attack. #Arran Brewery in Scotland, received what they thought was a cover letter as part of a job application, but the email attachment contained malware. Read more here: https://bit.ly/2PYAR7k
  15. Man gets two years in prison for sabotaging US Army servers with 'logic bomb'
  16. Malware Analysis using Osquery Part 2
  17. Off-the-shelf RATs Targeting Pakistan
  18. Malware Analysis using Osquery Part 1
  19. Malicious Documents from Lazarus Group Targeting South Korea
  20. GZipDe: An Encrypted Downloader Serving Metasploit
  21. Satan Ransomware Spawns New Methods to Spread
  22. MassMiner Malware Targeting Web Servers
  23. 14 years prison for man who helped hackers evade detection by anti-virus software
  24. USB threats from malware to miners
  25. DanaBot trojan sets sights on Europe, new features
  26. Stealthy cryptomining apps still on Google Play
  27. New Version of GandCrab Ransomware Appends 5 Character Extension To Encrypted Files
  28. First known malicious cryptomining campaign targeting Kodi discovered
  29. 14 years prison for man who helped hackers evade detection by anti-virus software
  30. New malware-as-a-service, Black Rose Lucy targets Android devices
  31. Domain registrar oversteps taking down Zoho domain, impacts over 30Mil users

EXPLOIT

  1. New CVE-2018-8373 Exploit Spotted in the Wild

VULNERABILITY

  1. Open-source reuse has left Android’s most-popular apps laced with critical vulnerabilities
  2. Monero bug could have allowed hackers to steal massive amounts of cryptocurrency
  3. New Linux 'Mutagen Astronomy' security flaw impacts Red Hat and CentOS distros
  4. Third-Party Patch Available for Microsoft JET Database Zero-Day
  5. Over 80 Cisco Products Affected by FragmentSmack DoS Bug
  6. MacOS Mojave zero-day privacy vulnerability uncovered
  7. Snyk gets $22 million for platform that tracks security flaws in open source projects
  8. Cisco patches critical default password vulnerability
  9. Twitter fixes API bug that shared data with wrong developers
  10. Mac Mojave Zero-Day Allows Malicious Apps to Access Sensitive Info
  11. Bitcoin Core Team fixes a critical DDoS flaw in wallet software
  12. No Takers for Zero-Day Vulnerabilities on the Dark Web
  13. macOS Mojave Patches Vulnerabilities, But New Flaws Already Emerge
  14. New CVE-2018-8373 Exploit Spotted in the Wild
  15. More Details on an ActiveX Vulnerability Recently Used to Target Users in South Korea
  16. Vulnerability Spotlight: Epee Levin Packet Deserialization Code Execution Vulnerability
  17. Twitter fixes API bug that shared data with wrong developers
  18. Cisco patches critical default password vulnerability
  19. White hat hacker found a macOS Mojave privacy bypass 0-day flaw on release day
  20. macOS zero-day vulnerability leads to user data leaks
  21. Bitcoin Core Software Patches a Critical DDoS Attack Vulnerability
  22. Vulnerability in macOS Mojave allows access to protected files
  23. Firefox bugs can cause browsers and even the entire operating system to crash directly
  24. Why the market for zero-day vulnerabilities on the dark web is vanishing
at
Labels:

Region brief for 2018-09-25

ASIA

  1. Snyk gets $22 million for platform that tracks security flaws in open source projects
  2. Security Engineer Hacks Hotel WiFi, Fined for Exposing Admin Password
  3. Off-the-shelf RATs Targeting Pakistan
  4. Malicious Documents from Lazarus Group Targeting South Korea
  5. GZipDe: An Encrypted Downloader Serving Metasploit
  6. More Details on an ActiveX Vulnerability Recently Used to Target Users in South Korea
  7. USB threats from malware to miners

OCEANIA

Nothing to report

NORTH AMERICA

  1. Ex-NSA Hacker Sentenced to Jail Over Kaspersky Leak
  2. Astaroth Trojan Resurges in South America
  3. Man gets two years in prison for sabotaging US Army servers with 'logic bomb'
  4. Malware Analysis using Osquery Part 1
  5. MassMiner Malware Targeting Web Servers
  6. 14 years prison for man who helped hackers evade detection by anti-virus software
  7. SHEIN-Fashion Shopping Site Suffers Data Breach Affecting 6.5 Million Users
  8. 14 years prison for man who helped hackers evade detection by anti-virus software

SOUTH AMERICA

Nothing to report

EUROPE

  1. Operator of Scan4You Malware-Scanning sentenced to 14 Years in prison
  2. Snyk gets $22 million for platform that tracks security flaws in open source projects
  3. Security In The Crypto World: Exchanges, Wallets, Personal Data. Kiev To Host The Largest Cybersecurity Forum In Eastern Europe
  4. #SecurityNews: Scottish #Brewery recovers from #ransomware attack. #Arran Brewery in Scotland, received what they thought was a cover letter as part of a job application, but the email attachment contained malware. Read more here: https://bit.ly/2PYAR7k
  5. Baddies just need one email account with clout to unleash phishing hell
  6. 14 years prison for man who helped hackers evade detection by anti-virus software
  7. New malware-as-a-service, Black Rose Lucy targets Android devices

AFRICA

  1. BrandPost: Malicious Tactics Have Evolved: Your DNS Needs to, Too
at
Labels:

Sector brief for 2018-09-25

HEALTHCARE

  1. macOS zero-day vulnerability leads to user data leaks

TRANSPORT

Nothing to report

BANKING & FINANCE

  1. Porous portals, Newegg is a broken egg, and Mirai’s creators have new hats
  2. Symantec accountancy audit uncovers customer transaction recorded as revenue
  3. Malware Analysis using Osquery Part 2
  4. Malware Analysis using Osquery Part 1
  5. Malicious Documents from Lazarus Group Targeting South Korea
  6. MassMiner Malware Targeting Web Servers
  7. DanaBot trojan sets sights on Europe, new features

INFORMATION & TELECOMMUNICATION

Nothing to report

FOOD

Nothing to report

WATER

Nothing to report

ENERGY

  1. Off-the-shelf RATs Targeting Pakistan
  2. USB threats from malware to miners
  3. Stealthy cryptomining apps still on Google Play

GOVERNMENT & PUBLIC SERVICE

Nothing to report
at
Labels:

Daily brief for 2018-09-25

ASIA

  1. Snyk gets $22 million for platform that tracks security flaws in open source projects
  2. Security Engineer Hacks Hotel WiFi, Fined for Exposing Admin Password
  3. Off-the-shelf RATs Targeting Pakistan
  4. Malicious Documents from Lazarus Group Targeting South Korea
  5. GZipDe: An Encrypted Downloader Serving Metasploit
  6. More Details on an ActiveX Vulnerability Recently Used to Target Users in South Korea
  7. USB threats from malware to miners

WORLD

  1. Ex-NSA Hacker Sentenced to Jail Over Kaspersky Leak
  2. Operator of Scan4You Malware-Scanning sentenced to 14 Years in prison
  3. Snyk gets $22 million for platform that tracks security flaws in open source projects
  4. Astaroth Trojan Resurges in South America
  5. BrandPost: Malicious Tactics Have Evolved: Your DNS Needs to, Too
  6. Security In The Crypto World: Exchanges, Wallets, Personal Data. Kiev To Host The Largest Cybersecurity Forum In Eastern Europe
  7. #SecurityNews: Scottish #Brewery recovers from #ransomware attack. #Arran Brewery in Scotland, received what they thought was a cover letter as part of a job application, but the email attachment contained malware. Read more here: https://bit.ly/2PYAR7k
  8. Man gets two years in prison for sabotaging US Army servers with 'logic bomb'
  9. Baddies just need one email account with clout to unleash phishing hell
  10. Malware Analysis using Osquery Part 1
  11. MassMiner Malware Targeting Web Servers
  12. 14 years prison for man who helped hackers evade detection by anti-virus software
  13. SHEIN-Fashion Shopping Site Suffers Data Breach Affecting 6.5 Million Users
  14. 14 years prison for man who helped hackers evade detection by anti-virus software
  15. New malware-as-a-service, Black Rose Lucy targets Android devices

ATTACKS

  1. Firefox Monitor provides password breach alerts, Would it convince you to set up a Firefox Account
  2. Ex-NSA Hacker Sentenced to Jail Over Kaspersky Leak
  3. Malware on SHEIN Servers Compromises Data of 6.4M Customers
  4. GrrCon Augusta 2018, Rachel Giacobozzi’s ‘The Hybrid Analyst: How Phishing Created A New Type Of Intel Analyst’
  5. Mozilla Launches Firefox Monitor Data Breach Notification Service
  6. Tomorrow: Go beyond the usual defenses and *really* protect your email from #spearphishing attacks. Find out how with @AlexanderGTster and @illena_a from @SCmagazine. http://www.workcast.com/register?cpak=2026696370909275&referrer=valimailA …
  7. Third-Party Patch Available for Microsoft JET Database Zero-Day
  8. 130 Million Hotel Customers Breached Due to Exposed Database
  9. State Department data breach exposes employee info (w/ commentary from @TripwireInc’s @craigtweets http://bit.ly/2MTcplE
  10. DDoS Attack on Infinite Campus Limits Parent Access http://dlvr.it/QlL12Z
  11. DDoS Attack on Infinite Campus Limits Parent Access https://www.infosecurity-magazine.com/news/ddos-attacks-infinite-campus?utm_source=twitterfeed&utm_medium=twitter …
  12. New Adwind RAT Campaign Targets Windows, Linux and Mac Users
  13. Cisco patches critical default password vulnerability
  14. DDoS attack on education vendor hinders access to districts’ online portals
  15. Bitcoin Core Team fixes a critical DDoS flaw in wallet software
  16. Shein Data Breach Exposes Personal Data and Email Address of 6.42 Million Customers
  17. Security researcher fined for hacking hotel Wi-Fi and putting passwords on the internet
  18. SHEIN Data breach affected 6.42 million users
  19. Security In The Crypto World: Exchanges, Wallets, Personal Data. Kiev To Host The Largest Cybersecurity Forum In Eastern Europe
  20. Users fret over Chrome auto-login change
  21. Security Engineer Hacks Hotel WiFi, Fined for Exposing Admin Password
  22. AdGuard adblocker resets passwords after credential-stuffing attack
  23. Symantec accountancy audit uncovers customer transaction recorded as revenue
  24. 5 Notable Security Incidents that Recently Affected Federal Entities https://tripwire.me/2xGwKoH
  25. Anti-Phishing Requires A Three-Pronged Strategy https://www.infosecurity-magazine.com/white-papers/antiphishing-requires-threepronged?utm_source=twitterfeed&utm_medium=twitter …
  26. Microsoft: Here's why we're declaring end of password era
  27. Microsoft 'kills' passwords, throws up threat manager, APIs Graph Security
  28. Baddies just need one email account with clout to unleash phishing hell
  29. Some credential-stuffing botnets don't care about being noticed any more
  30. Advanced DDoS Detection and Defense
  31. Why Was Equifax So Stupid About Passwords?
  32. ZombieBoy
  33. NewsNow suffers security breach - passwords should be considered compromised
  34. Cisco patches critical default password vulnerability
  35. First known malicious cryptomining campaign targeting Kodi discovered
  36. SHEIN-Fashion Shopping Site Suffers Data Breach Affecting 6.5 Million Users
  37. macOS zero-day vulnerability leads to user data leaks
  38. How Long Does it Take to Find Compromised Data
  39. Bitcoin Core Software Patches a Critical DDoS Attack Vulnerability
  40. 5 Notable Security Incidents that Recently Affected Federal Entities https://tripwire.me/2xGwKoH
  41. DBeaver Community Edition 5.2.1 Releases: Free universal database tool and SQL client

THREATS

  1. Open-source reuse has left Android’s most-popular apps laced with critical vulnerabilities
  2. The MITRE ATT&CK Framework: Exfiltration https://tripwire.me/2NDbSJV
  3. Monero bug could have allowed hackers to steal massive amounts of cryptocurrency
  4. New Linux 'Mutagen Astronomy' security flaw impacts Red Hat and CentOS distros
  5. Once Popular Online Ad Format Opens Top Tier Sites to XSS Attacks
  6. Malware on SHEIN Servers Compromises Data of 6.4M Customers
  7. Third-Party Patch Available for Microsoft JET Database Zero-Day
  8. Over 80 Cisco Products Affected by FragmentSmack DoS Bug
  9. Operator of Scan4You Malware-Scanning sentenced to 14 Years in prison
  10. MacOS Mojave zero-day privacy vulnerability uncovered
  11. New Adwind RAT Campaign Targets Windows, Linux and Mac Users
  12. Cryptomining Malware Continues Rapid Growth: Report
  13. Freelancers baited with job offers to download malicious macros
  14. Snyk gets $22 million for platform that tracks security flaws in open source projects
  15. Cisco patches critical default password vulnerability
  16. Twitter fixes API bug that shared data with wrong developers
  17. DanaBot trojan sets sights on Europe, new features
  18. Crooks turn to Delphi packers to evade malware detection
  19. Mac Mojave Zero-Day Allows Malicious Apps to Access Sensitive Info
  20. Bitcoin Core Team fixes a critical DDoS flaw in wallet software
  21. Astaroth Trojan Resurges in South America
  22. BrandPost: Malicious Tactics Have Evolved: Your DNS Needs to, Too
  23. Bloodhound – A Tool For Exploring Active Directory Domain Security
  24. No Takers for Zero-Day Vulnerabilities on the Dark Web
  25. macOS Mojave Patches Vulnerabilities, But New Flaws Already Emerge
  26. #SecurityNews: #Cryptocurrency mining soars 459% from 2017 to 2018 with no indication of slowing down. Read more about this story here: https://bit.ly/2PXYSew
  27. New CVE-2018-8373 Exploit Spotted in the Wild
  28. #SecurityNews: Scottish #Brewery recovers from #ransomware attack. #Arran Brewery in Scotland, received what they thought was a cover letter as part of a job application, but the email attachment contained malware. Read more here: https://bit.ly/2PYAR7k
  29. Man gets two years in prison for sabotaging US Army servers with 'logic bomb'
  30. Malware Analysis using Osquery Part 2
  31. Off-the-shelf RATs Targeting Pakistan
  32. Malware Analysis using Osquery Part 1
  33. Malicious Documents from Lazarus Group Targeting South Korea
  34. GZipDe: An Encrypted Downloader Serving Metasploit
  35. More Details on an ActiveX Vulnerability Recently Used to Target Users in South Korea
  36. Satan Ransomware Spawns New Methods to Spread
  37. MassMiner Malware Targeting Web Servers
  38. Vulnerability Spotlight: Epee Levin Packet Deserialization Code Execution Vulnerability
  39. 14 years prison for man who helped hackers evade detection by anti-virus software
  40. USB threats from malware to miners
  41. DanaBot trojan sets sights on Europe, new features
  42. Twitter fixes API bug that shared data with wrong developers
  43. Stealthy cryptomining apps still on Google Play
  44. New Version of GandCrab Ransomware Appends 5 Character Extension To Encrypted Files
  45. Cisco patches critical default password vulnerability
  46. White hat hacker found a macOS Mojave privacy bypass 0-day flaw on release day
  47. First known malicious cryptomining campaign targeting Kodi discovered
  48. 14 years prison for man who helped hackers evade detection by anti-virus software
  49. macOS zero-day vulnerability leads to user data leaks
  50. New malware-as-a-service, Black Rose Lucy targets Android devices
  51. Bitcoin Core Software Patches a Critical DDoS Attack Vulnerability
  52. Vulnerability in macOS Mojave allows access to protected files
  53. Firefox bugs can cause browsers and even the entire operating system to crash directly
  54. Domain registrar oversteps taking down Zoho domain, impacts over 30Mil users
  55. Why the market for zero-day vulnerabilities on the dark web is vanishing

CRIME

  1. Ex-NSA Hacker Sentenced to Jail Over Kaspersky Leak
  2. Porous portals, Newegg is a broken egg, and Mirai’s creators have new hats
  3. Operator of Scan4You Malware-Scanning sentenced to 14 Years in prison
  4. Cryptomining Malware Continues Rapid Growth: Report
  5. Bitcoin Core Team fixes a critical DDoS flaw in wallet software
  6. SHEIN Data breach affected 6.42 million users
  7. #SecurityNews: #Cryptocurrency mining soars 459% from 2017 to 2018 with no indication of slowing down. Read more about this story here: https://bit.ly/2PXYSew
  8. Man gets two years in prison for sabotaging US Army servers with 'logic bomb'
  9. Microsoft: Here's why we're declaring end of password era
  10. Malware Analysis using Osquery Part 2
  11. Malware Analysis using Osquery Part 1
  12. ZombieBoy
  13. Malicious Documents from Lazarus Group Targeting South Korea
  14. MassMiner Malware Targeting Web Servers
  15. 14 years prison for man who helped hackers evade detection by anti-virus software
  16. DanaBot trojan sets sights on Europe, new features
  17. Stealthy cryptomining apps still on Google Play
  18. First known malicious cryptomining campaign targeting Kodi discovered
  19. 14 years prison for man who helped hackers evade detection by anti-virus software
  20. Bitcoin Core Software Patches a Critical DDoS Attack Vulnerability

POLITICS

  1. Ex-NSA Hacker Sentenced to Jail Over Kaspersky Leak
  2. Man gets two years in prison for sabotaging US Army servers with 'logic bomb'
  3. Vulnerability in macOS Mojave allows access to protected files
at
Labels:
Subscribe to: Posts (Atom)