DATA BREACH & DATA LOSS
- ThreatList: 1 Out of 5 Would Ditch a Business After a Data Breach
- Facebook removes Iranian influence campaign as midterms near
- Bushido-Powered DDoS Service Whipped Up from Leaked Code
- British Airways: 185K Affected in Second Data Breach
- British Airways Data Breach Takes Off Again with 185K More Victims
- Settlement in Yahoo data breach leaves company to pay $50M
- Pocket iNET ISP Exposed 73GB of Sensitive Data On Misconfigured S3 Bucket
- Campaign 2018: New malware attacks target voters in key battleground states
- Cathay Pacific Hacked, Personal Data For 9.4 Million Passengers Compromised
- Tracking Tick Through Recent Campaigns Targeting East Asia
- Details of 9mil compromised in Cathay Pacific data leak
- Cathay Pacific Suffered Data Breach Affecting 9.4 Million Customers
- BA website and data breach by Magecart deeper than first thought
- Malicious actors attacked a back-end insurance system and the resulting @HealthCareGov #breach exposed an unknown amount of data on 75,000
- Cathay Pacific hack: Personal data of up to 9.4 million airline passengers laid bare
- Cathay Pacific Says 9.4 Million Affected by Data Breach
- A #ZeroDay in the popular #jQuery File Upload plugin could affect thousands of projects and the jQuery #plugin vulnerability may
- Airline Discovers Trove of Frequent Flyer Accounts Compromised and Posted for Sale Online:
- British Airways data breach worse than thought
- Spammers Behind Historic Data Breach Affecting Millions of Facebook Users
- Cathay Pacific Airways Confirm Data Breach of its Customers
- “Advanced attacks, spear-phishing and data breaches are the norm, instead of the exception. We need to address these issues with
- New Malware Abusing Two Legitimate Windows Files to Steal Victims Personal Data
DENIAL-OF-SERVICE
- University DDoS attack leads to $8.6 million fine, house arrest for New Jersey man
- Bushido-Powered DDoS Service Whipped Up from Leaked Code
- 16K Strong DDoS-for-Hire Botnet Provides 420+ GB/s Club to Knock Out Websites
- DemonBot Fans DDoS Flames with Hadoop Enslavement
- New DemonBot Attack Hadoop Clusters to Performing DDoS Attacks using Powerful Cloud infrastructure servers
MALVERTISING
Nil
PHISHING
- Microsoft bug makes phishing easy, says cybersecurity firm
- PhishX –Spear Phishing Tool for Capturing Credentials
- “Advanced attacks, spear-phishing and data breaches are the norm, instead of the exception. We need to address these issues with
WEB DEFACEMENT
Nil
BOTNET
- Exploits Block List Grows 50% Because of Spambot, Avalanche/Gamarue botnet
- 16K Strong DDoS-for-Hire Botnet Provides 420+ GB/s Club to Knock Out Websites
- Chalubo Botnet
- Experts presented BOTCHAIN, the first fully functional Botnet built upon the Bitcoin Protocol
- New DemonBot Botnet Pulls the YARN in Hadoop Servers
RANSOMWARE
- The Week in Ransomware - October 26th 2018 - Decryptors, RaaS, and More
- 3 Keys to Reducing the Threat of Ransomware
CRYPTOMINING & CRYPTOCURRENCIES
- 23-year-old woman charged with stealing $320,000 worth of cryptocurrency
- 23-year-old woman charged with stealing $320,000 worth of cryptocurrency
- North Korea regime using and exploiting cryptocurrencies
- North Korea Backed Two Cryptocurrency Scams This Year, Says Report
- No Place for Security as Cryptocurrency Skills Demand Soars
- What Is Gridcoin and How Can It Advance Science?
- Experts presented BOTCHAIN, the first fully functional Botnet built upon the Bitcoin Protocol
- China’s Alibaba Cloud Expands Enterprise Blockchain Offering to Global Markets
- How to become a Monero million(th)aire in just 20 minutes [PODCAST]
MALWARE
- Due to Misconfigured Component: DemonBot Malware Infects Multiple Apache Hadoop Servers
- PoC Attack Leverages Microsoft Office and YouTube to Deliver Malware
- ICMP Shell- Secret Command and Control Channel to Control Victims Machine Using Ping
- Scammers use old browser trick to create fake virus download
- Campaign 2018: New malware attacks target voters in key battleground states
- DeepPhish: Simulating Malicious AI to Act Like an Adversary
- .@FireEye #security researchers claimed the Russian government was 'most likely' behind the #Triton #malware attack on an industrial control system
- Malicious actors attacked a back-end insurance system and the resulting @HealthCareGov #breach exposed an unknown amount of data on 75,000
- An innovative partnership could help Cyber Command fight malware
- New Malware Abusing Two Legitimate Windows Files to Steal Victims Personal Data
EXPLOIT
- This two-year-old X.org give-me-root hole is so trivial to exploit, you can fit it in a single tweet
VULNERABILITY
- CVE-2018-14665 privilege escalation flaw affects popular Linux distros
- Cloudflare WAF Bypass Vulnerability Discovered
- Code Execution Vulnerability Patched in Cross-Platform MKVToolNix Toolset
- Vulnerability Spotlight: Talos-2018-0694 – MKVToolNix mkvinfo read_one_element Code Execution Vulnerability
- Microsoft bug makes phishing easy, says cybersecurity firm
- A flaw in @Cisco Webex -- called WebExec -- can allow #RemoteCodeExecution. And while experts don't agree on how dangerous
- Pentagon Expands Bug Bounty To Include Physical Systems
- WebExec vulnerability leaves Webex open to insider attacks
- Trivial Bug in X.Org Gives Root Permission on Linux and BSD Systems
- Researchers discovered a vulnerability in Cisco #Webex, called #WebExec, which allows local attackers to issue commands as privileged users. @iagox86
- Cisco patches command injection bug in Webex Meetings Desktop App for Windows
- CVE-2018-9206 was maliciously exploited that multiple websites were linked to the search page to jump to the betting site
- CVE-2018-14665: Xorg X Server privilege escalation vulnerabilities
- What a crane in the ass: Bug leaves construction machinery vulnerable to evil command injection
- Researchers report vulnerability in Microsoft Word's online video feature
- A #ZeroDay in the popular #jQuery File Upload plugin could affect thousands of projects and the jQuery #plugin vulnerability may
- Vulnerability Spotlight: Talos-2018-0694 - MKVToolNix mkvinfo read_one_element Code Execution Vulnerability
- LIVE NETWORKS LIVE555 Streaming Media RTSP Server Remote Code Execution Vulnerability(CVE-2018-4013) Threat Alert
- New Privilege Escalation Flaw Affects Most Linux Distributions
- Top 5 Application Vulnerabilities: How to Prevent Risks
- 7 places to find threat intel beyond vulnerability databases
- Zero-day vulnerability in Windows allows privileges escalation
ASIA
- GreyEnergy cyberespionage group targets Poland and Ukraine
- Facebook removes Iranian influence campaign as midterms near
- Exploits Block List Grows 50% Because of Spambot, Avalanche/Gamarue botnet
- CVE-2018-14665 privilege escalation flaw affects popular Linux distros
- 23-year-old woman charged with stealing $320,000 worth of cryptocurrency
- Tracking Tick Through Recent Campaigns Targeting East Asia
- .@FireEye #security researchers claimed the Russian government was 'most likely' behind the #Triton #malware attack on an industrial control system
- North Korea regime using and exploiting cryptocurrencies
- North Korea Backed Two Cryptocurrency Scams This Year, Says Report
- LIVE NETWORKS LIVE555 Streaming Media RTSP Server Remote Code Execution Vulnerability(CVE-2018-4013) Threat Alert
- New Privilege Escalation Flaw Affects Most Linux Distributions
- Operation Oceansalt
- Hackers attack Cathay Pacific
- China’s Alibaba Cloud Expands Enterprise Blockchain Offering to Global Markets
- Russian sabotage in Saudi petrochemicals
OCEANIA
- 23-year-old woman charged with stealing $320,000 worth of cryptocurrency
- 23-year-old woman charged with stealing $320,000 worth of cryptocurrency
NORTH AMERICA
- University DDoS attack leads to $8.6 million fine, house arrest for New Jersey man
- 23-year-old woman charged with stealing $320,000 worth of cryptocurrency
- US Counters Russian Influence & Magecart Hacks Magento | Avast
- North Korea Backed Two Cryptocurrency Scams This Year, Says Report
- What a crane in the ass: Bug leaves construction machinery vulnerable to evil command injection
- China’s Alibaba Cloud Expands Enterprise Blockchain Offering to Global Markets
SOUTH AMERICA
Nil
EUROPE
- British Airways: additional 185,000 passengers may have been affected
- GreyEnergy cyberespionage group targets Poland and Ukraine
- British Airways: 185K Affected in Second Data Breach
- BA Website Hijacked by Magecart. Again. | Avast
- British Airways Data Breach Takes Off Again with 185K More Victims
- 23-year-old woman charged with stealing $320,000 worth of cryptocurrency
- US Counters Russian Influence & Magecart Hacks Magento | Avast
- .@FireEye #security researchers claimed the Russian government was 'most likely' behind the #Triton #malware attack on an industrial control system
- BA website and data breach by Magecart deeper than first thought
- No Place for Security as Cryptocurrency Skills Demand Soars
- BA Breach: An Extra 185K Customers Notified
- British Airways data breach worse than thought
- Experts presented BOTCHAIN, the first fully functional Botnet built upon the Bitcoin Protocol
- Hackers attack Cathay Pacific
- China’s Alibaba Cloud Expands Enterprise Blockchain Offering to Global Markets
- Second attack against British Airways is disclosed
- Russian sabotage in Saudi petrochemicals
AFRICA
Nil
ASIA
- GreyEnergy cyberespionage group targets Poland and Ukraine
- Facebook removes Iranian influence campaign as midterms near
- Exploits Block List Grows 50% Because of Spambot, Avalanche/Gamarue botnet
- CVE-2018-14665 privilege escalation flaw affects popular Linux distros
- 23-year-old woman charged with stealing $320,000 worth of cryptocurrency
- Tracking Tick Through Recent Campaigns Targeting East Asia
- .@FireEye #security researchers claimed the Russian government was 'most likely' behind the #Triton #malware attack on an industrial control system
- North Korea regime using and exploiting cryptocurrencies
- North Korea Backed Two Cryptocurrency Scams This Year, Says Report
- LIVE NETWORKS LIVE555 Streaming Media RTSP Server Remote Code Execution Vulnerability(CVE-2018-4013) Threat Alert
- New Privilege Escalation Flaw Affects Most Linux Distributions
- Operation Oceansalt
- Hackers attack Cathay Pacific
- China’s Alibaba Cloud Expands Enterprise Blockchain Offering to Global Markets
- Russian sabotage in Saudi petrochemicals
WORLD
- British Airways: additional 185,000 passengers may have been affected
- University DDoS attack leads to $8.6 million fine, house arrest for New Jersey man
- GreyEnergy cyberespionage group targets Poland and Ukraine
- British Airways: 185K Affected in Second Data Breach
- BA Website Hijacked by Magecart. Again. | Avast
- British Airways Data Breach Takes Off Again with 185K More Victims
- 23-year-old woman charged with stealing $320,000 worth of cryptocurrency
- 23-year-old woman charged with stealing $320,000 worth of cryptocurrency
- US Counters Russian Influence & Magecart Hacks Magento | Avast
- .@FireEye #security researchers claimed the Russian government was 'most likely' behind the #Triton #malware attack on an industrial control system
- BA website and data breach by Magecart deeper than first thought
- North Korea Backed Two Cryptocurrency Scams This Year, Says Report
- What a crane in the ass: Bug leaves construction machinery vulnerable to evil command injection
- No Place for Security as Cryptocurrency Skills Demand Soars
- BA Breach: An Extra 185K Customers Notified
- British Airways data breach worse than thought
- Experts presented BOTCHAIN, the first fully functional Botnet built upon the Bitcoin Protocol
- Hackers attack Cathay Pacific
- China’s Alibaba Cloud Expands Enterprise Blockchain Offering to Global Markets
- Second attack against British Airways is disclosed
- Russian sabotage in Saudi petrochemicals
ATTACKS
- ThreatList: 1 Out of 5 Would Ditch a Business After a Data Breach
- Facebook removes Iranian influence campaign as midterms near
- Bushido-Powered DDoS Service Whipped Up from Leaked Code
- British Airways: 185K Affected in Second Data Breach
- British Airways Data Breach Takes Off Again with 185K More Victims
- Microsoft bug makes phishing easy, says cybersecurity firm
- Settlement in Yahoo data breach leaves company to pay $50M
- Pocket iNET ISP Exposed 73GB of Sensitive Data On Misconfigured S3 Bucket
- Campaign 2018: New malware attacks target voters in key battleground states
- Cathay Pacific Hacked, Personal Data For 9.4 Million Passengers Compromised
- PhishX –Spear Phishing Tool for Capturing Credentials
- Tracking Tick Through Recent Campaigns Targeting East Asia
- Details of 9mil compromised in Cathay Pacific data leak
- Cathay Pacific Suffered Data Breach Affecting 9.4 Million Customers
- BA website and data breach by Magecart deeper than first thought
- Malicious actors attacked a back-end insurance system and the resulting @HealthCareGov #breach exposed an unknown amount of data on 75,000
- Cathay Pacific hack: Personal data of up to 9.4 million airline passengers laid bare
- Cathay Pacific Says 9.4 Million Affected by Data Breach
- A #ZeroDay in the popular #jQuery File Upload plugin could affect thousands of projects and the jQuery #plugin vulnerability may
- Airline Discovers Trove of Frequent Flyer Accounts Compromised and Posted for Sale Online:
- British Airways data breach worse than thought
- Spammers Behind Historic Data Breach Affecting Millions of Facebook Users
- Cathay Pacific Airways Confirm Data Breach of its Customers
- “Advanced attacks, spear-phishing and data breaches are the norm, instead of the exception. We need to address these issues with
- New Malware Abusing Two Legitimate Windows Files to Steal Victims Personal Data
THREATS
- Due to Misconfigured Component: DemonBot Malware Infects Multiple Apache Hadoop Servers
- PoC Attack Leverages Microsoft Office and YouTube to Deliver Malware
- CVE-2018-14665 privilege escalation flaw affects popular Linux distros
- Cloudflare WAF Bypass Vulnerability Discovered
- Code Execution Vulnerability Patched in Cross-Platform MKVToolNix Toolset
- The Week in Ransomware - October 26th 2018 - Decryptors, RaaS, and More
- Vulnerability Spotlight: Talos-2018-0694 – MKVToolNix mkvinfo read_one_element Code Execution Vulnerability
- ICMP Shell- Secret Command and Control Channel to Control Victims Machine Using Ping
- Microsoft bug makes phishing easy, says cybersecurity firm
- Scammers use old browser trick to create fake virus download
- A flaw in @Cisco Webex -- called WebExec -- can allow #RemoteCodeExecution. And while experts don't agree on how dangerous
- Campaign 2018: New malware attacks target voters in key battleground states
- 23-year-old woman charged with stealing $320,000 worth of cryptocurrency
- 23-year-old woman charged with stealing $320,000 worth of cryptocurrency
- Pentagon Expands Bug Bounty To Include Physical Systems
- WebExec vulnerability leaves Webex open to insider attacks
- DeepPhish: Simulating Malicious AI to Act Like an Adversary
- Trivial Bug in X.Org Gives Root Permission on Linux and BSD Systems
- .@FireEye #security researchers claimed the Russian government was 'most likely' behind the #Triton #malware attack on an industrial control system
- North Korea regime using and exploiting cryptocurrencies
- Researchers discovered a vulnerability in Cisco #Webex, called #WebExec, which allows local attackers to issue commands as privileged users. @iagox86
- Malicious actors attacked a back-end insurance system and the resulting @HealthCareGov #breach exposed an unknown amount of data on 75,000
- 3 Keys to Reducing the Threat of Ransomware
- Cisco patches command injection bug in Webex Meetings Desktop App for Windows
- North Korea Backed Two Cryptocurrency Scams This Year, Says Report
- CVE-2018-9206 was maliciously exploited that multiple websites were linked to the search page to jump to the betting site
- CVE-2018-14665: Xorg X Server privilege escalation vulnerabilities
- What a crane in the ass: Bug leaves construction machinery vulnerable to evil command injection
- An innovative partnership could help Cyber Command fight malware
- Researchers report vulnerability in Microsoft Word's online video feature
- A #ZeroDay in the popular #jQuery File Upload plugin could affect thousands of projects and the jQuery #plugin vulnerability may
- No Place for Security as Cryptocurrency Skills Demand Soars
- Vulnerability Spotlight: Talos-2018-0694 - MKVToolNix mkvinfo read_one_element Code Execution Vulnerability
- What Is Gridcoin and How Can It Advance Science?
- LIVE NETWORKS LIVE555 Streaming Media RTSP Server Remote Code Execution Vulnerability(CVE-2018-4013) Threat Alert
- Experts presented BOTCHAIN, the first fully functional Botnet built upon the Bitcoin Protocol
- New Privilege Escalation Flaw Affects Most Linux Distributions
- Top 5 Application Vulnerabilities: How to Prevent Risks
- 7 places to find threat intel beyond vulnerability databases
- New Malware Abusing Two Legitimate Windows Files to Steal Victims Personal Data
- China’s Alibaba Cloud Expands Enterprise Blockchain Offering to Global Markets
- Zero-day vulnerability in Windows allows privileges escalation
- How to become a Monero million(th)aire in just 20 minutes [PODCAST]
CRIME
- British Airways: additional 185,000 passengers may have been affected
- University DDoS attack leads to $8.6 million fine, house arrest for New Jersey man
- GreyEnergy cyberespionage group targets Poland and Ukraine
- BA Website Hijacked by Magecart. Again. | Avast
- Scammers use old browser trick to create fake virus download
- 23-year-old woman charged with stealing $320,000 worth of cryptocurrency
- 23-year-old woman charged with stealing $320,000 worth of cryptocurrency
- North Korea Backed Two Cryptocurrency Scams This Year, Says Report
- No Place for Security as Cryptocurrency Skills Demand Soars
- BA Breach: An Extra 185K Customers Notified
- Experts presented BOTCHAIN, the first fully functional Botnet built upon the Bitcoin Protocol
- Hackers attack Cathay Pacific
- Second attack against British Airways is disclosed
- Russian sabotage in Saudi petrochemicals
POLITICS
- GreyEnergy cyberespionage group targets Poland and Ukraine
- ICMP Shell- Secret Command and Control Channel to Control Victims Machine Using Ping
- Campaign 2018: New malware attacks target voters in key battleground states
- Tracking Tick Through Recent Campaigns Targeting East Asia
- US Counters Russian Influence & Magecart Hacks Magento | Avast
- Experts presented BOTCHAIN, the first fully functional Botnet built upon the Bitcoin Protocol
- Russian sabotage in Saudi petrochemicals
