APT report for 2018-11-24

TRANSNATIONAL / UNKNOWN

Nil

CHINA

Nil

INDIA

Nil

NORTH KOREA

1. North Korea-linked group Lazarus targets Latin American banks

PAKISTAN

Nil

VIETNAM

Nil

IRAN

Nil

IRAQ

Nil

LEBANON

Nil

PALESTINE

Nil

SAUDI ARABIA

Nil

SYRIA

Nil

TURKEY

Nil

UNITED ARAB EMIRATES

Nil

YEMEN

Nil

RUSSIA

2. News of the Week: November 24, 2018

SERBIA

Nil

UKRAINE

Nil

Platform report for 2018-11-24

WINDOWS

1. TA505 Cybercrime Group Experimenting with a New RAT In The Wild

LINUX

2. CVE-2018-19406, CVE-2018-19407: Two DoS vulnerabilities on Linux Kernel
3. New Trojan mining on the Linux will steal user passwords & removes anti-viruses

UNIX

Nil

ANDROID

Nil

IOS

Nil

MACOS

4. MacOS Penetration Test Reveals Three Zero-Day Vulnerabilities

Threat report for 2018-11-24

DATA BREACH & DATA LOSS

Nil

DENIAL-OF-SERVICE

Nil

MALVERTISING

Nil

PHISHING

1. This week's #RiskAndRepeatPodcast digs into the debate over #WeakPasswords and password reuse, and asks: how much are users responsible for

WEB DEFACEMENT

Nil

BOTNET

Nil

RANSOMWARE

2. Quebec Dubbed As An Embarrassment After Paying $30,000 To Ransomware Authors
3. Powerful Mobile Malware Rotexy Launched over 70,000 Attacks with Banking Trojan & Ransomware Modules
4. .@TalosSecurity recently created a #decryptor that helps files affected by the #ransomware #Thanatos -- typically known to not decrypt files
5. SMBs suffered the brunt of ransomware attacks in 2018
6. The Week in Ransomware - November 23rd 2018 - STOP, Dharma, and More

CRYPTOMINING & CRYPTOCURRENCIES

Nil

MALWARE

7. Powerful Mobile Malware Rotexy Launched over 70,000 Attacks with Banking Trojan & Ransomware Modules
8. TA505 Cybercrime Group Experimenting with a New RAT In The Wild
9. Researchers at @okta found a bypass that allows #ThreatActors to pose files as legitimate @Apple files despite being #malware and
10. 42-year-old man Arrested For Hacking More than 2,000 Computers From 50 countries With DarkComet RAT
11. New Trojan mining on the Linux will steal user passwords & removes anti-viruses

EXPLOIT

Nil

VULNERABILITY

12. Adobe Patched A Critical Flash Player Vulnerability Disclosed Publicly
13. MacOS Penetration Test Reveals Three Zero-Day Vulnerabilities
14. CVE-2018-19406, CVE-2018-19407: Two DoS vulnerabilities on Linux Kernel
15. How has the @DLink #router vulnerability affected your enterprise?

Region brief for 2018-11-24

ASIA

1. North Korea-linked group Lazarus targets Latin American banks

OCEANIA

Nil

NORTH AMERICA

2. Quebec Dubbed As An Embarrassment After Paying $30,000 To Ransomware Authors
3. Adobe Patched A Critical Flash Player Vulnerability Disclosed Publicly
4. News of the Week: November 24, 2018
5. North Korea-linked group Lazarus targets Latin American banks

SOUTH AMERICA

Nil

EUROPE

6. 42-year-old man Arrested For Hacking More than 2,000 Computers From 50 countries With DarkComet RAT
7. New Trojan mining on the Linux will steal user passwords & removes anti-viruses

AFRICA

Nil

Sector brief for 2018-11-24

HEALTHCARE

Nil

TRANSPORT

Nil

BANKING & FINANCE

1. Quebec Dubbed As An Embarrassment After Paying $30,000 To Ransomware Authors
2. Powerful Mobile Malware Rotexy Launched over 70,000 Attacks with Banking Trojan & Ransomware Modules
3. North Korea-linked group Lazarus targets Latin American banks
4. .@TalosSecurity recently created a #decryptor that helps files affected by the #ransomware #Thanatos -- typically known to not decrypt files
5. TA505 Cybercrime Group Experimenting with a New RAT In The Wild

INFORMATION & TELECOMMUNICATION

6. Quebec Dubbed As An Embarrassment After Paying $30,000 To Ransomware Authors

FOOD

Nil

WATER

7. TA505 Cybercrime Group Experimenting with a New RAT In The Wild

ENERGY

Nil

GOVERNMENT & PUBLIC SERVICE

8. Quebec Dubbed As An Embarrassment After Paying $30,000 To Ransomware Authors
9. 42-year-old man Arrested For Hacking More than 2,000 Computers From 50 countries With DarkComet RAT

Daily brief for 2018-11-24

ASIA

1. North Korea-linked group Lazarus targets Latin American banks

WORLD

2. Quebec Dubbed As An Embarrassment After Paying $30,000 To Ransomware Authors
3. Adobe Patched A Critical Flash Player Vulnerability Disclosed Publicly
4. News of the Week: November 24, 2018
5. North Korea-linked group Lazarus targets Latin American banks
6. 42-year-old man Arrested For Hacking More than 2,000 Computers From 50 countries With DarkComet RAT
7. New Trojan mining on the Linux will steal user passwords & removes anti-viruses

ATTACKS

8. This week's #RiskAndRepeatPodcast digs into the debate over #WeakPasswords and password reuse, and asks: how much are users responsible for

THREATS

9. Quebec Dubbed As An Embarrassment After Paying $30,000 To Ransomware Authors
10. Adobe Patched A Critical Flash Player Vulnerability Disclosed Publicly
11. MacOS Penetration Test Reveals Three Zero-Day Vulnerabilities
12. Powerful Mobile Malware Rotexy Launched over 70,000 Attacks with Banking Trojan & Ransomware Modules
13. .@TalosSecurity recently created a #decryptor that helps files affected by the #ransomware #Thanatos -- typically known to not decrypt files
14. TA505 Cybercrime Group Experimenting with a New RAT In The Wild
15. Researchers at @okta found a bypass that allows #ThreatActors to pose files as legitimate @Apple files despite being #malware and
16. 42-year-old man Arrested For Hacking More than 2,000 Computers From 50 countries With DarkComet RAT
17. SMBs suffered the brunt of ransomware attacks in 2018
18. CVE-2018-19406, CVE-2018-19407: Two DoS vulnerabilities on Linux Kernel
19. New Trojan mining on the Linux will steal user passwords & removes anti-viruses
20. How has the @DLink #router vulnerability affected your enterprise?
21. The Week in Ransomware - November 23rd 2018 - STOP, Dharma, and More

CRIME

22. TA505 Cybercrime Group Experimenting with a New RAT In The Wild
23. New Trojan mining on the Linux will steal user passwords & removes anti-viruses

POLITICS

24. Quebec Dubbed As An Embarrassment After Paying $30,000 To Ransomware Authors
25. North Korea-linked group Lazarus targets Latin American banks