TRANSNATIONAL / UNKNOWN
Nil
CHINA
Nil
INDIA
Nil
NORTH KOREA
Nil
PAKISTAN
Nil
VIETNAM
Nil
IRAN
Nil
IRAQ
Nil
LEBANON
Nil
PALESTINE
Nil
SAUDI ARABIA
Nil
SYRIA
Nil
TURKEY
Nil
UNITED ARAB EMIRATES
Nil
YEMEN
Nil
RUSSIA
SERBIA
Nil
UKRAINE
Nil
Oct 14, 2018
Threat report for 2018-10-13
DATA BREACH & DATA LOSS
- Pentagon Defense Department travel records data breach
- A combination of #SecurityFlaws and inadequate back-end development of the @Google Firebase database led to #DataLeaks and #SecurityVulnerabilities including HospitalGown.
- 'Only' 30 million accounts were compromised in Facebook hack
- Researchers @proofpoint have been tracking a downloader dubbed #AdvisorsBot as a first-stage payload in campaigns since May 2018.
- Facebook Clarifies Extent of Data Breach
- An Assessment of Google's Data Leak
- ArangoDB v3.3.18 releases: native multi-model database
- Facebook Now Revealed Hackers Stolen 29 Million Facebook Users Personal Data
- Microsoft Fix for Windows JET Database Bug Not Perfect, Micropatch Available
- Breach of Pentagon travel records exposes defense personnel PII
DENIAL-OF-SERVICE
Nil
MALVERTISING
Nil
PHISHING
- Hackers launched @netflix #phishing attacks by obtaining TLS certificates. Learn how hackers mimic popular websites to spoof users and steal
- This skyscraper reminds me of those really long ANSI art BBS login screens. Cc: @sixteencolors @blocktronics @velikani
WEB DEFACEMENT
Nil
BOTNET
Nil
RANSOMWARE
- [SingCERT] Updated Advisory on Ransomware
- APT group called #TeleBots linked to #Industroyer #malware and #NotPetya #ransomware, according to @ESET researchers. By @MaddieBacon11
CRYPTOMINING & CRYPTOCURRENCIES
- Criminals' Cryptocurrency Addiction Continues
- .@alienvault researchers recently discovered #MassMiner, a #cryptocurrency mining #malware that has the ability to infect systems across the web. Discover
- Cryptocurrency Miners trick the user through Fake Flash Updates
- Blockchain and Healthcare in Today’s World
MALWARE
- GPlayed – New Malware Posed as Google Play App to Spy & Steal Data From Your Entire Android Phone
- Researchers @proofpoint have been tracking a downloader dubbed #AdvisorsBot as a first-stage payload in campaigns since May 2018.
- .@alienvault researchers recently discovered #MassMiner, a #cryptocurrency mining #malware that has the ability to infect systems across the web. Discover
- Hackers use Googlebot in mining malware attacks
- Researchers at @TrendMicro found a new strain of #malware -- dubbed #FacexWorm -- that targets users through a malicious #ChromeExtension.
- APT group called #TeleBots linked to #Industroyer #malware and #NotPetya #ransomware, according to @ESET researchers. By @MaddieBacon11
EXPLOIT
Nil
VULNERABILITY
- Now this might be going out on a limb, but here's how a branch.io bug left '685 million' netizens open to website hacks
- Review Shows Glaring Flaws In Xiongmai IoT Devices
- Microsoft JET vulnerability still open to attacks, despite recent patch
- DOM-based XSS Vulnerability Affected 685 Million Users of Tinder, Shopify, Western Union, and Imgur
- A patched #MikroTik router vulnerability amps up severity rating as @TenableSecurity researchers find new potential exploits with more critical consequences.
- Microsoft Fix for Windows JET Database Bug Not Perfect, Micropatch Available
- Vulnerabilities affect Shopify, Tinder and many other sites
Sector brief for 2018-10-13
HEALTHCARE
TRANSPORT
Nil
BANKING & FINANCE
- Pentagon Defense Department travel records data breach
- Cryptocurrency Miners trick the user through Fake Flash Updates
- Hackers use Googlebot in mining malware attacks
INFORMATION & TELECOMMUNICATION
- This skyscraper reminds me of those really long ANSI art BBS login screens. Cc: @sixteencolors @blocktronics @velikani
- 'Only' 30 million accounts were compromised in Facebook hack
- Facebook Clarifies Extent of Data Breach
- Facebook Now Revealed Hackers Stolen 29 Million Facebook Users Personal Data
FOOD
Nil
WATER
Nil
ENERGY
Nil
GOVERNMENT & PUBLIC SERVICE
Nil
Daily brief for 2018-10-13
ASIA
WORLD
- Pentagon Defense Department travel records data breach
- Security researchers found that Industroyer and NotPetya belong to the Russian hacker group
ATTACKS
- Pentagon Defense Department travel records data breach
- Hackers launched @netflix #phishing attacks by obtaining TLS certificates. Learn how hackers mimic popular websites to spoof users and steal
- This skyscraper reminds me of those really long ANSI art BBS login screens. Cc: @sixteencolors @blocktronics @velikani
- A combination of #SecurityFlaws and inadequate back-end development of the @Google Firebase database led to #DataLeaks and #SecurityVulnerabilities including HospitalGown.
- 'Only' 30 million accounts were compromised in Facebook hack
- Researchers @proofpoint have been tracking a downloader dubbed #AdvisorsBot as a first-stage payload in campaigns since May 2018.
- Facebook Clarifies Extent of Data Breach
- An Assessment of Google's Data Leak
- ArangoDB v3.3.18 releases: native multi-model database
- Facebook Now Revealed Hackers Stolen 29 Million Facebook Users Personal Data
- Microsoft Fix for Windows JET Database Bug Not Perfect, Micropatch Available
- Breach of Pentagon travel records exposes defense personnel PII
THREATS
- GPlayed – New Malware Posed as Google Play App to Spy & Steal Data From Your Entire Android Phone
- [SingCERT] Updated Advisory on Ransomware
- Researchers @proofpoint have been tracking a downloader dubbed #AdvisorsBot as a first-stage payload in campaigns since May 2018.
- Now this might be going out on a limb, but here's how a branch.io bug left '685 million' netizens open to website hacks
- Review Shows Glaring Flaws In Xiongmai IoT Devices
- Criminals' Cryptocurrency Addiction Continues
- .@alienvault researchers recently discovered #MassMiner, a #cryptocurrency mining #malware that has the ability to infect systems across the web. Discover
- Cryptocurrency Miners trick the user through Fake Flash Updates
- Microsoft JET vulnerability still open to attacks, despite recent patch
- DOM-based XSS Vulnerability Affected 685 Million Users of Tinder, Shopify, Western Union, and Imgur
- A patched #MikroTik router vulnerability amps up severity rating as @TenableSecurity researchers find new potential exploits with more critical consequences.
- Blockchain and Healthcare in Today’s World
- Microsoft Fix for Windows JET Database Bug Not Perfect, Micropatch Available
- Hackers use Googlebot in mining malware attacks
- Vulnerabilities affect Shopify, Tinder and many other sites
- Researchers at @TrendMicro found a new strain of #malware -- dubbed #FacexWorm -- that targets users through a malicious #ChromeExtension.
- APT group called #TeleBots linked to #Industroyer #malware and #NotPetya #ransomware, according to @ESET researchers. By @MaddieBacon11
CRIME
- ArangoDB v3.3.18 releases: native multi-model database
- Facebook Now Revealed Hackers Stolen 29 Million Facebook Users Personal Data
POLITICS
Subscribe to:
Posts (Atom)