Nov 27, 2018

APT report for 2018-11-26

TRANSNATIONAL / UNKNOWN

  1. Cyberthreats to financial institutions 2019: overview and predictions

CHINA

Nil

INDIA

Nil

NORTH KOREA

  1. Cyberthreats to financial institutions 2019: overview and predictions

PAKISTAN

Nil

VIETNAM

Nil

IRAN

Nil

IRAQ

Nil

LEBANON

Nil

PALESTINE

Nil

SAUDI ARABIA

Nil

SYRIA

Nil

TURKEY

Nil

UNITED ARAB EMIRATES

Nil

YEMEN

Nil

RUSSIA

  1. APT28 Is Using New Variant of Lojax
  2. Recent Attacks on US Entities Attributed to APT29

SERBIA

Nil

UKRAINE

  1. Cyberthreats to financial institutions 2019: overview and predictions
at
Labels:

Platform report for 2018-11-26

WINDOWS

  1. Half of all Phishing Sites Now Have the Padlock
  2. Phishing Campaign targeting French Industry

LINUX

  1. Linux Kernel is affected by two DoS vulnerabilities still unpatched
  2. DoS Vulnerabilities Impact Linux Kernel
  3. Experts found a new powerful modular Linux cryptominer

UNIX

Nil

ANDROID

  1. 13 Newly Discovered Malicious Apps, Deleted By Google From the Play Store
  2. Bypassing and Disabling SSL Pinning on Android to Perform Man-in-the-Middle Attack
  3. Play Store Malware Infects Half a Billion

IOS

  1. 13 Newly Discovered Malicious Apps, Deleted By Google From the Play Store

MACOS

  1. OSX.Dummy #malware has been discovered to use chat platforms in order to target #cryptocurrency investors. Learn more with expert @lewisnic
at
Labels:

Threat report for 2018-11-26

DATA BREACH & DATA LOSS

  1. Knuddels Flirt App Slapped with Hefty Fine After Data Breach
  2. When Do You Need to Report a Data Breach?
  3. USPS, Amazon Data Leaks Showcase API Weaknesses
  4. How Pirated Versions of ‘Super Smash Bros. Ultimate’ Leaked Weeks Before Release
  5. Despite growing concerns about cybersecurity and the number of data breach incidents in the news, many employees still have bad
  6. Trivial Spotify Phishing Campaign Targets Users To Steal Login Credentials
  7. Phishing Campaign targeting French Industry
  8. Russia Plans To tighten Data Protection Owing To Intelligence Leaks
  9. German Social Media Provider Fined €20K for Data Breach
  10. No need to compromise freedom for security - Europol audience told
  11. HR Software Firm PageUp Finds No Evidence of Data Theft
  12. Internal negligence to blame for most data breaches involving personal health information
  13. Sextortion 2.0: We have continued to monitor the campaigns and have seen a recent change in tactics, with some unusual
  14. An ongoing phishing campaign is targeting French industry, @FSLabs finds.
  15. Phishing Campaign targeting French Industry
  16. My Health Record opt-out officially extended to January 31

DENIAL-OF-SERVICE

Nil

MALVERTISING

Nil

PHISHING

  1. Holiday Season: Cybercriminals are Phishing All The Way
  2. Half of all Phishing Sites Now Have the Padlock
  3. Easy as APT: Spear phishing highlighted as ongoing threat for 2019
  4. Trivial Spotify Phishing Campaign Targets Users To Steal Login Credentials
  5. Phishing Campaign targeting French Industry
  6. 50% use password managers to store login details
  7. An ongoing phishing campaign is targeting French industry, @FSLabs finds.
  8. Phishing Campaign targeting French Industry
  9. Beware!! Cyber Criminals Launching Serious Phishing Attack that Target Spotify Customers

WEB DEFACEMENT

Nil

BOTNET

  1. Democrats Introduce Bill for Stopping Automated Grinch Bots from Ruining Xmas

RANSOMWARE

  1. Ransomware attack disrupted emergency rooms at Ohio Hospital System
  2. Mobile Rotexy Malware Touts Ransomware, Banking Trojan Functions
  3. Ransomware Attack Forced Ohio Hospital System to Divert ER Patients
  4. A new ransomware -- dubbed #Thanatos #ransomware -- was found encrypting data but not decrypting it despite victims paying the

CRYPTOMINING & CRYPTOCURRENCIES

  1. Hacker backdoors popular JavaScript library to steal Bitcoin funds
  2. Harberger Taxes on Ethereum
  3. OSX.Dummy #malware has been discovered to use chat platforms in order to target #cryptocurrency investors. Learn more with expert @lewisnic
  4. Cryptocurrency threat predictions for 2019
  5. Crypto Mining Malware Infects Make-A-Wish-Foundation Website
  6. Experts found a new powerful modular Linux cryptominer

MALWARE

  1. Lenovo to Pay $7.3 Million in Settlement for Installing Adware on 800K Notebooks
  2. 13 Newly Discovered Malicious Apps, Deleted By Google From the Play Store
  3. What is Data Classification? Guidelines and Process
  4. Mobile Rotexy Malware Touts Ransomware, Banking Trojan Functions
  5. Subscribe to the relaunched Virus Bulletin eNews newsletter
  6. Play Store Malware Infects Half a Billion
  7. Microsoft PowerPoint as Malware Dropper
  8. OSX.Dummy #malware has been discovered to use chat platforms in order to target #cryptocurrency investors. Learn more with expert @lewisnic
  9. Ukrainian Police Nab Suspected RAT-Slinger
  10. Crypto Mining Malware Infects Make-A-Wish-Foundation Website

EXPLOIT

Nil

VULNERABILITY

  1. Microsoft launches review after a trio of Azure bugs locked users out of Office 365
  2. Did UK city council over-react to a vulnerability report in its recycling app or not?
  3. Linux Kernel is affected by two DoS vulnerabilities still unpatched
  4. DoS Vulnerabilities Impact Linux Kernel
  5. Apache Hadoop Spins Cracking Code Injection Vulnerability YARN
  6. Siemens patches major firewall flaw, other vulnerabilities
  7. #Bluetooth devices might be at risk after a new Bluetooth vulnerability was found targeting #firmware and #OperatingSystem software drivers. Learn
  8. U.S. Postal Service API Flaw Exposes Data of 60 Million Customers
  9. Positive Technologies researchers recently found two serious vulnerabilities that target NCR's #ATMs. Learn how a "black box attack" was involved
  10. Discover how a @DLink #router vulnerability targeted a banking site to steal #UserCredentials with expert Judith Myerson.
  11. For recent big data software vulnerabilities, botnets and coin mining are just the beginning
  12. Frost & Sullivan Commends Rapid7 for Capturing Nearly a Quarter Share of the Global Vulnerability Management Market
at
Labels:

Region brief for 2018-11-26

ASIA

  1. Half of all Phishing Sites Now Have the Padlock
  2. Cyberthreats to financial institutions 2019: overview and predictions
  3. Ukrainian Police Nab Suspected RAT-Slinger
  4. Crypto Mining Malware Infects Make-A-Wish-Foundation Website

OCEANIA

  1. When Do You Need to Report a Data Breach?
  2. HR Software Firm PageUp Finds No Evidence of Data Theft

NORTH AMERICA

  1. Microsoft launches review after a trio of Azure bugs locked users out of Office 365
  2. When Do You Need to Report a Data Breach?
  3. Democrats Introduce Bill for Stopping Automated Grinch Bots from Ruining Xmas
  4. How Pirated Versions of ‘Super Smash Bros. Ultimate’ Leaked Weeks Before Release
  5. Microsoft PowerPoint as Malware Dropper
  6. Recent Attacks on US Entities Attributed to APT29
  7. U.S. Postal Service API Flaw Exposes Data of 60 Million Customers
  8. Russia Plans To tighten Data Protection Owing To Intelligence Leaks
  9. Cyberthreats to financial institutions 2019: overview and predictions

SOUTH AMERICA

  1. Crypto Mining Malware Infects Make-A-Wish-Foundation Website

EUROPE

  1. Did UK city council over-react to a vulnerability report in its recycling app or not?
  2. Knuddels Flirt App Slapped with Hefty Fine After Data Breach
  3. Siemens patches major firewall flaw, other vulnerabilities
  4. Recent Attacks on US Entities Attributed to APT29
  5. Phishing Campaign targeting French Industry
  6. Russia Plans To tighten Data Protection Owing To Intelligence Leaks
  7. German Social Media Provider Fined €20K for Data Breach
  8. Cyberthreats to financial institutions 2019: overview and predictions
  9. Ukrainian Police Nab Suspected RAT-Slinger
  10. Crypto Mining Malware Infects Make-A-Wish-Foundation Website
  11. Experts found a new powerful modular Linux cryptominer
  12. An ongoing phishing campaign is targeting French industry, @FSLabs finds.
  13. Phishing Campaign targeting French Industry

AFRICA

Nil
at
Labels:

Sector brief for 2018-11-26

HEALTHCARE

  1. Ransomware attack disrupted emergency rooms at Ohio Hospital System
  2. Ransomware Attack Forced Ohio Hospital System to Divert ER Patients
  3. Internal negligence to blame for most data breaches involving personal health information

TRANSPORT

  1. Holiday Season: Cybercriminals are Phishing All The Way
  2. Phishing Campaign targeting French Industry

BANKING & FINANCE

  1. What is Data Classification? Guidelines and Process
  2. When Do You Need to Report a Data Breach?
  3. Mobile Rotexy Malware Touts Ransomware, Banking Trojan Functions
  4. Holiday Season: Cybercriminals are Phishing All The Way
  5. Phishing Campaign targeting French Industry
  6. Cryptocurrency threat predictions for 2019
  7. Cyberthreats to financial institutions 2019: overview and predictions
  8. Discover how a @DLink #router vulnerability targeted a banking site to steal #UserCredentials with expert Judith Myerson.

INFORMATION & TELECOMMUNICATION

  1. Microsoft launches review after a trio of Azure bugs locked users out of Office 365
  2. 13 Newly Discovered Malicious Apps, Deleted By Google From the Play Store
  3. How Pirated Versions of ‘Super Smash Bros. Ultimate’ Leaked Weeks Before Release
  4. Half of all Phishing Sites Now Have the Padlock
  5. Despite growing concerns about cybersecurity and the number of data breach incidents in the news, many employees still have bad
  6. Phishing Campaign targeting French Industry
  7. Cyberthreats to financial institutions 2019: overview and predictions
  8. Sextortion 2.0: We have continued to monitor the campaigns and have seen a recent change in tactics, with some unusual
  9. An ongoing phishing campaign is targeting French industry, @FSLabs finds.

FOOD

Nil

WATER

Nil

ENERGY

  1. Siemens patches major firewall flaw, other vulnerabilities

GOVERNMENT & PUBLIC SERVICE

  1. Did UK city council over-react to a vulnerability report in its recycling app or not?
  2. When Do You Need to Report a Data Breach?
  3. Recent Attacks on US Entities Attributed to APT29
  4. Russia Plans To tighten Data Protection Owing To Intelligence Leaks
  5. Cyberthreats to financial institutions 2019: overview and predictions
  6. Ukrainian Police Nab Suspected RAT-Slinger
  7. Crypto Mining Malware Infects Make-A-Wish-Foundation Website
at
Labels:

Daily brief for 2018-11-26

ASIA

  1. Half of all Phishing Sites Now Have the Padlock
  2. Cyberthreats to financial institutions 2019: overview and predictions
  3. Ukrainian Police Nab Suspected RAT-Slinger
  4. Crypto Mining Malware Infects Make-A-Wish-Foundation Website

WORLD

  1. Microsoft launches review after a trio of Azure bugs locked users out of Office 365
  2. Did UK city council over-react to a vulnerability report in its recycling app or not?
  3. Knuddels Flirt App Slapped with Hefty Fine After Data Breach
  4. When Do You Need to Report a Data Breach?
  5. Democrats Introduce Bill for Stopping Automated Grinch Bots from Ruining Xmas
  6. Siemens patches major firewall flaw, other vulnerabilities
  7. How Pirated Versions of ‘Super Smash Bros. Ultimate’ Leaked Weeks Before Release
  8. Microsoft PowerPoint as Malware Dropper
  9. Recent Attacks on US Entities Attributed to APT29
  10. U.S. Postal Service API Flaw Exposes Data of 60 Million Customers
  11. Phishing Campaign targeting French Industry
  12. Russia Plans To tighten Data Protection Owing To Intelligence Leaks
  13. German Social Media Provider Fined €20K for Data Breach
  14. Cyberthreats to financial institutions 2019: overview and predictions
  15. Ukrainian Police Nab Suspected RAT-Slinger
  16. Crypto Mining Malware Infects Make-A-Wish-Foundation Website
  17. Experts found a new powerful modular Linux cryptominer
  18. HR Software Firm PageUp Finds No Evidence of Data Theft
  19. An ongoing phishing campaign is targeting French industry, @FSLabs finds.
  20. Phishing Campaign targeting French Industry

ATTACKS

  1. Knuddels Flirt App Slapped with Hefty Fine After Data Breach
  2. When Do You Need to Report a Data Breach?
  3. USPS, Amazon Data Leaks Showcase API Weaknesses
  4. Holiday Season: Cybercriminals are Phishing All The Way
  5. How Pirated Versions of ‘Super Smash Bros. Ultimate’ Leaked Weeks Before Release
  6. Half of all Phishing Sites Now Have the Padlock
  7. Easy as APT: Spear phishing highlighted as ongoing threat for 2019
  8. Despite growing concerns about cybersecurity and the number of data breach incidents in the news, many employees still have bad
  9. Trivial Spotify Phishing Campaign Targets Users To Steal Login Credentials
  10. Phishing Campaign targeting French Industry
  11. Russia Plans To tighten Data Protection Owing To Intelligence Leaks
  12. German Social Media Provider Fined €20K for Data Breach
  13. No need to compromise freedom for security - Europol audience told
  14. 50% use password managers to store login details
  15. HR Software Firm PageUp Finds No Evidence of Data Theft
  16. Internal negligence to blame for most data breaches involving personal health information
  17. Sextortion 2.0: We have continued to monitor the campaigns and have seen a recent change in tactics, with some unusual
  18. An ongoing phishing campaign is targeting French industry, @FSLabs finds.
  19. Phishing Campaign targeting French Industry
  20. Beware!! Cyber Criminals Launching Serious Phishing Attack that Target Spotify Customers
  21. My Health Record opt-out officially extended to January 31

THREATS

  1. Microsoft launches review after a trio of Azure bugs locked users out of Office 365
  2. Did UK city council over-react to a vulnerability report in its recycling app or not?
  3. Ransomware attack disrupted emergency rooms at Ohio Hospital System
  4. Lenovo to Pay $7.3 Million in Settlement for Installing Adware on 800K Notebooks
  5. 13 Newly Discovered Malicious Apps, Deleted By Google From the Play Store
  6. Hacker backdoors popular JavaScript library to steal Bitcoin funds
  7. What is Data Classification? Guidelines and Process
  8. Linux Kernel is affected by two DoS vulnerabilities still unpatched
  9. Mobile Rotexy Malware Touts Ransomware, Banking Trojan Functions
  10. Harberger Taxes on Ethereum
  11. DoS Vulnerabilities Impact Linux Kernel
  12. Subscribe to the relaunched Virus Bulletin eNews newsletter
  13. Apache Hadoop Spins Cracking Code Injection Vulnerability YARN
  14. Siemens patches major firewall flaw, other vulnerabilities
  15. Play Store Malware Infects Half a Billion
  16. Microsoft PowerPoint as Malware Dropper
  17. #Bluetooth devices might be at risk after a new Bluetooth vulnerability was found targeting #firmware and #OperatingSystem software drivers. Learn
  18. U.S. Postal Service API Flaw Exposes Data of 60 Million Customers
  19. Ransomware Attack Forced Ohio Hospital System to Divert ER Patients
  20. Positive Technologies researchers recently found two serious vulnerabilities that target NCR's #ATMs. Learn how a "black box attack" was involved
  21. OSX.Dummy #malware has been discovered to use chat platforms in order to target #cryptocurrency investors. Learn more with expert @lewisnic
  22. Cryptocurrency threat predictions for 2019
  23. Ukrainian Police Nab Suspected RAT-Slinger
  24. Crypto Mining Malware Infects Make-A-Wish-Foundation Website
  25. Experts found a new powerful modular Linux cryptominer
  26. A new ransomware -- dubbed #Thanatos #ransomware -- was found encrypting data but not decrypting it despite victims paying the
  27. Discover how a @DLink #router vulnerability targeted a banking site to steal #UserCredentials with expert Judith Myerson.
  28. For recent big data software vulnerabilities, botnets and coin mining are just the beginning
  29. Frost & Sullivan Commends Rapid7 for Capturing Nearly a Quarter Share of the Global Vulnerability Management Market

CRIME

  1. When Do You Need to Report a Data Breach?
  2. Holiday Season: Cybercriminals are Phishing All The Way
  3. Half of all Phishing Sites Now Have the Padlock
  4. Russia Plans To tighten Data Protection Owing To Intelligence Leaks
  5. Cryptocurrency threat predictions for 2019
  6. Cyberthreats to financial institutions 2019: overview and predictions
  7. Ukrainian Police Nab Suspected RAT-Slinger
  8. Experts found a new powerful modular Linux cryptominer
  9. HR Software Firm PageUp Finds No Evidence of Data Theft
  10. Sextortion 2.0: We have continued to monitor the campaigns and have seen a recent change in tactics, with some unusual

POLITICS

  1. Russia Plans To tighten Data Protection Owing To Intelligence Leaks
  2. Cryptocurrency threat predictions for 2019
  3. Ukrainian Police Nab Suspected RAT-Slinger
at
Labels:
Subscribe to: Posts (Atom)