Region brief for 2018-11-29

ASIA

1. Banking Trojan Made in Brazil? A Brief Look
2. Looking Ahead: RiskIQ’s 2019 Cybersecurity Predictions
3. Indian Police Break Up International Computer Virus Scam
4. Iranian duo charged with SamSam ransomware-slinging campaign
5. U.S. DoJ charges Iranian duo over SamSam Ransomware activity
6. US charges Iranian hackers for SamSam ransomware attacks
7. US charges Iranian hackers for SamSam ransomware attacks
8. The Fractured Block Campaign: CARROTBAT Used to Deliver Malware Targeting Southeast Asia
9. US Indicts Two Iranians for SamSam Campaign Blitz
10. Analysis Report of the XorDDoS Malware Family
11. Lazarus Targeting Latin America
12. Pervasive Brazilian financial malware targets bank customers in Latin America and Europe

OCEANIA

Nil

NORTH AMERICA

13. Banking Trojan Made in Brazil? A Brief Look
14. First Annual Cyberwarcon
15. Brazilian Financial Malware Spreads Beyond National Boundaries
16. USPS API Security Vulnerabilities Caused by Functional Errors
17. Accenture: Russian hackers using Brexit talks to disguise phishing lures
18. SamSam ransomware actors charged, sanctioned by US government
19. U.S. DoJ charges Iranian duo over SamSam Ransomware activity
20. US charges Iranian hackers for SamSam ransomware attacks
21. US charges Iranian hackers for SamSam ransomware attacks
22. The Fractured Block Campaign: CARROTBAT Used to Deliver Malware Targeting Southeast Asia
23. US indicts two over SamSam ransomware attacks
24. US Charges Hackers in Multimillion Dollar Ransomware Campaign
25. XSS Shell- Cross Site Scripting
26. Smashing Security #106: Google Maps, Fed phishing, and Grinch bots
27. US Indicts Two Iranians for SamSam Campaign Blitz
28. Symantec comes out in swinging in bitter legal battle over security bug audit conspiracy claims
29. READ: The threat actor SNAKEMACKEREL (#FancyBear) leveraged current geopolitical events and #Brexit themed lure documents to deliver first-stage malware
30. Records of 114 Million US Citizen and Companies Exposed Online
31. McAfee Labs 2019 Threats Predictions Report
32. Lazarus Targeting Latin America
33. AccuDoc Data Breach impacted 2.6 Million Atrium Health patients
34. Pervasive Brazilian financial malware targets bank customers in Latin America and Europe
35. UK and Dutch Regulators Fined Uber for $1.1 Million over 2016 Data Breach
36. Dell Hacked – Data Breach Exposed Names, Email addresses & Hashed Passwords

SOUTH AMERICA

37. Banking Trojan Made in Brazil? A Brief Look
38. Brazilian Financial Malware Spreads Beyond National Boundaries
39. Brazilian-made bank trojan
40. Pervasive Brazilian financial malware targets bank customers in Latin America and Europe

EUROPE

41. GCHQ: this is how we decide to report a security bug or keep it a secret
42. Atrium Health’s Databreach: 2.65 Million Patient Records Publicly Revealed
43. Rotexy malware morphs into dangerous banking Trojan
44. Banking Trojan Made in Brazil? A Brief Look
45. First Annual Cyberwarcon
46. Brazilian Financial Malware Spreads Beyond National Boundaries
47. Accenture: Russian hackers using Brexit talks to disguise phishing lures
48. Looking Ahead: RiskIQ’s 2019 Cybersecurity Predictions
49. U.S. DoJ charges Iranian duo over SamSam Ransomware activity
50. Pterodo Found On State Authorities' Computers In Ukraine
51. The Fractured Block Campaign: CARROTBAT Used to Deliver Malware Targeting Southeast Asia
52. XSS Shell- Cross Site Scripting
53. GCHQ: We don't tell tech companies about every software flaw
54. Uber fined $1.1 million by UK and Dutch regulators over 2016 data breach
55. London-based Urban Massage app leaks data on 300K customers, including sexual misconduct claims
56. NEW: Russian hackers using Brexit talks to disguise its phishing lures
57. McAfee Labs 2019 Threats Predictions Report
58. AccuDoc Data Breach impacted 2.6 Million Atrium Health patients
59. Pervasive Brazilian financial malware targets bank customers in Latin America and Europe
60. UK and Dutch Regulators Fined Uber for $1.1 Million over 2016 Data Breach

AFRICA

Nil

Region brief for 2018-11-26

ASIA

1. Half of all Phishing Sites Now Have the Padlock
2. Cyberthreats to financial institutions 2019: overview and predictions
3. Ukrainian Police Nab Suspected RAT-Slinger
4. Crypto Mining Malware Infects Make-A-Wish-Foundation Website

OCEANIA

5. When Do You Need to Report a Data Breach?
6. HR Software Firm PageUp Finds No Evidence of Data Theft

NORTH AMERICA

7. Microsoft launches review after a trio of Azure bugs locked users out of Office 365
8. When Do You Need to Report a Data Breach?
9. Democrats Introduce Bill for Stopping Automated Grinch Bots from Ruining Xmas
10. How Pirated Versions of ‘Super Smash Bros. Ultimate’ Leaked Weeks Before Release
11. Microsoft PowerPoint as Malware Dropper
12. Recent Attacks on US Entities Attributed to APT29
13. U.S. Postal Service API Flaw Exposes Data of 60 Million Customers
14. Russia Plans To tighten Data Protection Owing To Intelligence Leaks
15. Cyberthreats to financial institutions 2019: overview and predictions

SOUTH AMERICA

16. Crypto Mining Malware Infects Make-A-Wish-Foundation Website

EUROPE

17. Did UK city council over-react to a vulnerability report in its recycling app or not?
18. Knuddels Flirt App Slapped with Hefty Fine After Data Breach
19. Siemens patches major firewall flaw, other vulnerabilities
20. Recent Attacks on US Entities Attributed to APT29
21. Phishing Campaign targeting French Industry
22. Russia Plans To tighten Data Protection Owing To Intelligence Leaks
23. German Social Media Provider Fined €20K for Data Breach
24. Cyberthreats to financial institutions 2019: overview and predictions
25. Ukrainian Police Nab Suspected RAT-Slinger
26. Crypto Mining Malware Infects Make-A-Wish-Foundation Website
27. Experts found a new powerful modular Linux cryptominer
28. An ongoing phishing campaign is targeting French industry, @FSLabs finds.
29. Phishing Campaign targeting French Industry

AFRICA

Nil

Region brief for 2018-11-24

ASIA

1. North Korea-linked group Lazarus targets Latin American banks

OCEANIA

Nil

NORTH AMERICA

2. Quebec Dubbed As An Embarrassment After Paying $30,000 To Ransomware Authors
3. Adobe Patched A Critical Flash Player Vulnerability Disclosed Publicly
4. News of the Week: November 24, 2018
5. North Korea-linked group Lazarus targets Latin American banks

SOUTH AMERICA

Nil

EUROPE

6. 42-year-old man Arrested For Hacking More than 2,000 Computers From 50 countries With DarkComet RAT
7. New Trojan mining on the Linux will steal user passwords & removes anti-viruses

AFRICA

Nil

Region brief for 2018-11-23

ASIA

1. US Says China Increased Hacking over Trade Dispute
2. North Korean Hackers Hit Latin American Banks
3. VMware fixed Workstation flaw disclosed at the Tianfu Cup PWN competition
4. Adobe Flash Player Remote Code Execution Vulnerability Threat Alert
5. VMware Patches Workstation Flaw Disclosed at Hacking Contest

OCEANIA

Nil

NORTH AMERICA

6. Data breach in OSIsoft
7. US Postal Service Plugs API Flaw - One Year Later
8. US Says China Increased Hacking over Trade Dispute
9. North Korean Hackers Hit Latin American Banks
10. VMware fixed Workstation flaw disclosed at the Tianfu Cup PWN competition
11. New Emotet Thanksgiving campaign differs from previous ones
12. US Postal Service Website Left Data Exposed for Over a Year
13. Hacker says USPS ignored serious security flaw for over a year
14. Synthetic identity fraud to drive $48 billion in annual losses by 2023 – Juniper Research
15. Exclusive Cybaze ZLab – Yoroi – Hunting Cozy Bear, new campaign, old habits
16. Southwest Washington Regional Surgery Center suffered a Phishing attack
17. 60 million users’ data were exposed by the US Postal Service
18. The team discuss continuing activity by the Magecart group, as well as the ways in which #cybercriminals are gearing up

SOUTH AMERICA

19. Brazil's largest professional association suffers massive data leak

EUROPE

20. NUI Galway’s Problem: Misplaced USB Flash Drive Containing Unencrypted Student Records
21. New Crypto-Miner Attacks Linux Machines, Kills Other Miners and Anti-Malware
22. German e-government SDK patched against ID spoofing vulnerability
23. Phishing Used to Launch GreyEnergy's ICS Attacks
24. Ukrainian police arrest hacker who infected over 2,000 users with DarkComet RAT
25. Ukrainian police arrest hacker who infected over 2,000 users with DarkComet RAT
26. German eID vulnerability allows hackers to change identities
27. Exclusive Cybaze ZLab – Yoroi – Hunting Cozy Bear, new campaign, old habits

AFRICA

Nil

Region brief for 2018-11-22

ASIA

1. China Boosted Technology and Intellectual Property Theft Operations Says USTR
2. The Rotexy mobile Trojan – banker and ransomware
3. North Korea To Host Cryptocurrency and Blockchain Conference

OCEANIA

Nil

NORTH AMERICA

4. China Boosted Technology and Intellectual Property Theft Operations Says USTR
5. USPS finally fixes website flaw that exposed 60 million users' data
6. Research reveals that 44% of industrial facilities have USB malware risks
7. North Korea To Host Cryptocurrency and Blockchain Conference
8. US Postal Service website vulnerability leaked 60 million user data
9. Amazon technical failure caused to leaks users’ email addresses
10. US Postal Service Left 60 Million Users Data Exposed For Over a Year

SOUTH AMERICA

Nil

EUROPE

11. Flaw allowing identity spoofing affects authentication based on German eID cards
12. The Rotexy mobile Trojan – banker and ransomware
13. North Korea To Host Cryptocurrency and Blockchain Conference
14. 500K Italian Public Administration Email Accounts Compromised By Targeted Attack

AFRICA

Nil

Region brief for 2018-11-21

ASIA

1. City of Valdez, Alaska admits to paying off ransomware infection
2. Lazarus APT Uses Modular Backdoor to Target Financial Institutions
3. Adobe issues fix for Flash bug allowing remote code execution
4. Despite early speculation, experts concluded the BGP route leak that sent Google traffic through China and Russia was due to
5. Amazon UK is notifying a data breach to its customers days before Black Friday
6. New Pterodo Backdoor Malware Detected By Ukraine
7. Is Magecart Checking Out Your Secure Online Transactions?
8. Weekly Threat Briefing: Russian APT Comes Back to Life with New US Spear-phishing Campaign
9. Phishing Scams Serious Problem for Canada’s Global Affairs
10. Millions Stolen by North Korea-Linked Hacking Group from Atms in Africa and Asia
11. Malaysia’s largest media company becomes victim of a ransomware attack

OCEANIA

12. Weekly Threat Briefing: Russian APT Comes Back to Life with New US Spear-phishing Campaign

NORTH AMERICA

13. Email Addresses and Phone Numbers of More than 60 Million Users Exposed by USPS
14. A flaw in US Postal Service website exposed data on 60 Million Users
15. Emotet Banking Trojan Uses Stolen Templates to Boost Phishing Campaign Numbers
16. Lazarus APT Uses Modular Backdoor to Target Financial Institutions
17. Facebook increases rewards for its bug bounty program and facilitate bug submission
18. Inspiring the Next Generation of Tech Talent
19. What Is Windows PowerShell (And Could It Be Malicious)?
20. Spoofed addresses and anonymous sending: new Gmail bugs make for easy pickings
21. Amazon tech error leaks customers’ email addresses
22. USPS Site Exposed Data on 60 Million Users
23. Amazon suffers data breach days before Black Friday
24. Major Flaws Found in IT Pentagon Processes After First Ever Financial Audit
25. Black Friday Phishing Dos and Don’ts
26. Amazon warns customers it leaked their names and email addresses
27. Amazon UK is notifying a data breach to its customers days before Black Friday
28. New Pterodo Backdoor Malware Detected By Ukraine
29. Black Friday & Cyber Monday Deals: Phishing and Site Skimmers
30. New Campaign by APT Group Sofacy Discovered using new Malware Named Cannon
31. White House admits Ivanka Trump used private email for government business
32. Weekly Threat Briefing: Russian APT Comes Back to Life with New US Spear-phishing Campaign
33. Sofacy APT group used a new tool in latest attacks, the Cannon
34. Phishing Scams Serious Problem for Canada’s Global Affairs
35. Malaysia’s largest media company becomes victim of a ransomware attack
36. Russian hackers are conducting more covert attacks on US and European computers
37. US Department of Justice is investigating Tether for manipulation of market prices
38. Major Flaws Found in IT Pentagon Processes After First Ever Financial Audit
39. Russia Linked Group Resurfaces With Large-Scale Phishing Campaign

SOUTH AMERICA

40. Magecart Black Hats Battle it Out On Infected Site
41. Weekly Threat Briefing: Russian APT Comes Back to Life with New US Spear-phishing Campaign

EUROPE

42. Google Taking Over Health Records Raises Patient Privacy Fears
43. Vision Direct Deals With Customer Data Leak
44. Amazon suffers data breach days before Black Friday
45. Russian Cozy Bear cyberspies awake from hibernation to sling spyware
46. German eID Authentication Flaw Lets You Change Identity
47. Despite early speculation, experts concluded the BGP route leak that sent Google traffic through China and Russia was due to
48. Amazon UK is notifying a data breach to its customers days before Black Friday
49. Italian Naval Industry Attacked By MartyMcFly Malware
50. Sofacy APT unleashes new 'Cannon' trojan
51. New Pterodo Backdoor Malware Detected By Ukraine
52. New Campaign by APT Group Sofacy Discovered using new Malware Named Cannon
53. Fancy Bear hacker crew Putin dirty RATs in Word documents emailed to govt orgs – report
54. Is Magecart Checking Out Your Secure Online Transactions?
55. Weekly Threat Briefing: Russian APT Comes Back to Life with New US Spear-phishing Campaign
56. Infowars Online Store Got Infected with Card Skimming Malware
57. Sofacy APT group used a new tool in latest attacks, the Cannon
58. Phishing Scams Serious Problem for Canada’s Global Affairs
59. Russian hackers are conducting more covert attacks on US and European computers
60. Sofacy APT Takes Aim with Novel ‘Cannon’ Trojan
61. Russia Linked Group Resurfaces With Large-Scale Phishing Campaign

AFRICA

62. Weekly Threat Briefing: Russian APT Comes Back to Life with New US Spear-phishing Campaign

Region brief for 2018-11-20

ASIA

1. ESET: Vietnamese hacking group hijacks Southeast Asian sites in watering hole campaign
2. 200K Outlaw Botnet Uses SSH Brute Forcing to Propagate, Monero Mining for Profit
3. Malvertising in Apple Pay Targets iPhone Users
4. Kaspersky Security Bulletin: Threat Predictions for 2019
5. Experts analyzed how Iranian OilRIG hackers tested their weaponized documents

OCEANIA

6. Zscaler ThreatLabZ Phishing Roundup

NORTH AMERICA

7. APT29 Re-Emerges After 2 Years with Widespread Espionage Campaign
8. Russia’s Elite Hackers May Have New Phishing Tricks
9. Web skimmers compete in Umbro Brasil hack
10. Inspiring Gender Diversity at Women of the Channel Leadership Summit
11. Hackers Linked to Russia Impersonate US Officials
12. Russian hackers are trying out this new malware against US and European targets
13. Russian hackers are trying out this new malware against US and European targets
14. Russian APT activity is resurgent, researchers say
15. Report: Emotet makes phishing lures more convincing by scraping victims' emails
16. Sofacy Continues Global Attacks and Wheels Out New ‘Cannon’ Trojan
17. Lazarus Continues Heists, Mounts Attacks on Financial Organizations in Latin America
18. Zscaler ThreatLabZ Phishing Roundup
19. Kaspersky Security Bulletin: Threat Predictions for 2019
20. Experts analyzed how Iranian OilRIG hackers tested their weaponized documents
21. Confiant spots major malvertising attack
22. Google, Target Hit by Twitter Bitcoin Scam Account Hacks

SOUTH AMERICA

Nil

EUROPE

23. 200K Outlaw Botnet Uses SSH Brute Forcing to Propagate, Monero Mining for Profit
24. Infamous Russian Hacking Group Used New Trojan in Recent Attacks
25. APT29 Re-Emerges After 2 Years with Widespread Espionage Campaign
26. Voxox leak: Millions of SMS messages exposed
27. Russia’s Elite Hackers May Have New Phishing Tricks
28. Government Agencies and Think Tanks attacked, APT29 suspected
29. An Introduction to Magecart
30. Hackers Linked to Russia Impersonate US Officials
31. Two Young Men Jailed for Involvement in TalkTalk Data Breach
32. Russian hackers are trying out this new malware against US and European targets
33. TEMP.Periscope Spearphishing
34. Russian hackers are trying out this new malware against US and European targets
35. Russian APT activity is resurgent, researchers say
36. Sofacy Continues Global Attacks and Wheels Out New ‘Cannon’ Trojan
37. Dutch audit finds Microsoft Office leaks confidential data
38. Kaspersky Security Bulletin: Threat Predictions for 2019
39. Cozy Bear tracks: Phishing campaign looks like work of Russian APT group
40. Two TalkTalk hackers jailed for 2015 data breach that cost it £77 million

AFRICA

Nil

Region brief for 2018-11-19

ASIA

1. U.S. warns countries not to 'manipulate the extradition process' for cybercriminals
2. Tianfu Cup PWN hacking contest – White hat hackers earn $1 Million for Zero-Day exploits
3. Business email compromise scam costs Pathé $21.5 million
4. The Most Damaging Election Disinformation Campaign Came From Donald Trump, Not Russia
5. Iran-Linked Hackers Use Just-in-Time Creation of Weaponized Attack Docs
6. New ShadowTalk update looks at: New nation-state threat actor uses advanced TTPs to target Pakistan Lazarus Group’s FASTCash malware
7. Hackers Earn $1 Million for Zero-Day Exploits at Chinese Competition
8. Turkish Police Arrested Cryptocurrency Hackers
9. After early speculation of #malicious intent, experts said an accidental misconfiguration caused the BGP route leak that sent traffic destined

OCEANIA

10. 2FA Login Failure in Office 365 and Azure

NORTH AMERICA

11. Not So Cozy: An Uncomfortable Examination of a Suspected APT29 Phishing Campaign
12. Finds vulnerabilities in wordpress websites using WPSCAN
13. Traps: Fighting Threats With Cloud-Based Malware Analysis
14. U.S. warns countries not to 'manipulate the extradition process' for cybercriminals
15. A week in security (November 12 – 18)
16. Business email compromise scam costs Pathé $21.5 million
17. The Most Damaging Election Disinformation Campaign Came From Donald Trump, Not Russia
18. 2FA Login Failure in Office 365 and Azure
19. Subject: Invoice. The cause of 6 out of 10 of the most effective phishing campaigns in 2018
20. New ShadowTalk update looks at: New nation-state threat actor uses advanced TTPs to target Pakistan Lazarus Group’s FASTCash malware
21. Cybaze ZLab – Yoroi team analyzed malware used in recent attacks on US entities attributed to APT29
22. Outlaw Group Distributes Botnet for Cryptocurrency-Mining, Scanning, and Brute-Force
23. Russian Cozy Bear APT 29 hackers may be impersonating State Department

SOUTH AMERICA

Nil

EUROPE

24. Not So Cozy: An Uncomfortable Examination of a Suspected APT29 Phishing Campaign
25. U.S. warns countries not to 'manipulate the extradition process' for cybercriminals
26. Business email compromise scam costs Pathé $21.5 million
27. The Most Damaging Election Disinformation Campaign Came From Donald Trump, Not Russia
28. 2FA Login Failure in Office 365 and Azure
29. DarkGate Malware Avoids Endpoint AV Detection
30. WebCobra Installs Cryptominer On Victim's System
31. Cybaze ZLab – Yoroi team analyzed malware used in recent attacks on US entities attributed to APT29
32. Proofpoint #ThreatInsight research: #sLoad and #Ramnit pairing in sustained personalized campaigns against UK and Italy:
33. Russian Cozy Bear APT 29 hackers may be impersonating State Department
34. Email campaign spreading new tRAT malware
35. After early speculation of #malicious intent, experts said an accidental misconfiguration caused the BGP route leak that sent traffic destined
36. Fun fact: The Morris Worm of 1988 did never spread to Finland, as the outbreak happened two weeks before we

AFRICA

37. The Most Damaging Election Disinformation Campaign Came From Donald Trump, Not Russia

Region brief for 2018-11-18

ASIA

1. Security Affairs newsletter Round 189 – News of the week
2. WatchGuard Technologies 2019 Security Predictions

OCEANIA

Nil

NORTH AMERICA

3. Twitter Bitcoin Scam Account Hacks Were Caused By Third-Party Apps
4. Processor Woes Continue: 7 New Meltdown and Spectre Bugs Arrive Weeks Before The Holidays
5. Suspected APT29 hackers behind attacks on US gov agencies, think tanks, and businesses
6. The machine learning technology used by Google to detect malware on APK files
7. WatchGuard Technologies 2019 Security Predictions

SOUTH AMERICA

Nil

EUROPE

8. A Look Inside MageCart, A Notorious Hacker Group
9. Suspected APT29 hackers behind attacks on US gov agencies, think tanks, and businesses
10. Security Affairs newsletter Round 189 – News of the week
11. WatchGuard Technologies 2019 Security Predictions

AFRICA

12. Security Affairs newsletter Round 189 – News of the week
13. Hacking Gmail’s UX with from fields for phishing attacks

Region brief for 2018-11-17

ASIA

1. 8 Cybersecurity Prediction for 2019
2. Emotet Banking Trojan Family Re-emerges, Taps Malicious PDF/Doc Files to Spread
3. Despite early speculation, experts concluded the BGP route leak that sent Google traffic through China and Russia was due to

OCEANIA

4. News of the Week: November 17, 2018

NORTH AMERICA

5. Million password resets and 2FA codes exposed in unsecured Vovox DB
6. 8 Cybersecurity Prediction for 2019
7. News of the Week: November 17, 2018
8. Emotet Banking Trojan Family Re-emerges, Taps Malicious PDF/Doc Files to Spread

SOUTH AMERICA

Nil

EUROPE

9. News of the Week: November 17, 2018
10. 'Unjustifiably excessive': Not even London cops can follow law with their rubbish gang database
11. Emotet Banking Trojan Family Re-emerges, Taps Malicious PDF/Doc Files to Spread
12. Despite early speculation, experts concluded the BGP route leak that sent Google traffic through China and Russia was due to

AFRICA

13. Emotet Banking Trojan Family Re-emerges, Taps Malicious PDF/Doc Files to Spread

Region brief for 2018-11-16

ASIA

1. InfoWars: Magecart Infection Points to 'Industrial Sabotage'
2. China's Hack Attacks: An Economic Espionage Campaign
3. Operation Shaheen – Pakistan Air Force members targeted by nation-state attackers
4. Details of 170,000 Pakistani debit cards leaked on dark web
5. Cyber News Rundown: Infowars Hacked by Card Skimmers
6. This Week in Security News: Holiday Cybercriminals & Cryptomining Malware
7. How to Stay One Step Ahead of Phishing Websites — Literally
8. Group-IB presented latest cybercrime and nation-state hacking trends in Asia
9. After early speculation of #malicious intent, experts said an accidental misconfiguration caused the BGP route leak that sent traffic destined
10. Malaysia’s Largest Media Company Allegedly Suffers Ransomware Attack
11. Hackers infect Malaysia’s largest media company with ransomware, then demand $6.45 million
12. #GroupIB #ThreatIntelligence detected large set of compromised payment cards details that was put on sale on underground card shop on
13. Google, US and Israeli politician Twitter accounts hijacked to promote 'Elon Musk' Bitcoin scam
14. Two hacker groups attacked Russian banks posing as the Central Bank of Russia
15. Apache Struts2 Commons FileUpload Deserialization Remote Code Execution Vulnerability (CVE-2016-100031)Threat Alert
16. Mylobot Botnet Now Exfiltrates Data Using Second Stage Khalesi Trojan
17. Looking Back at LogRhythm Labs' 2018 Predictions for Security - How Did We Do?

OCEANIA

Nil

NORTH AMERICA

18. Russian APT comes back to life with new US spear-phishing campaign
19. Cryptocurrency Trader Gets 15 Months of Jail for Stealing Bitcoin, Litecoin
20. Using Microsoft Powerpoint as Malware Dropper
21. Analyzing OilRig’s Ops Tempo from Testing to Weaponization to Delivery
22. This Week in Security News: Holiday Cybercriminals & Cryptomining Malware
23. Scanning Akamai's Edge Servers for Vulnerabilities, Correctly
24. Group-IB presented latest cybercrime and nation-state hacking trends in Asia
25. Hackers infect Malaysia’s largest media company with ransomware, then demand $6.45 million
26. Google, US and Israeli politician Twitter accounts hijacked to promote 'Elon Musk' Bitcoin scam
27. Two hacker groups attacked Russian banks posing as the Central Bank of Russia
28. NTT Security Adds Botnet Infrastructure Detection to Managed Security Services
29. Apache Struts2 Commons FileUpload Deserialization Remote Code Execution Vulnerability (CVE-2016-100031)Threat Alert
30. 5 Top Techniques for Testing Blockchain Apps
31. New variants of Meltdown and Spectre cause information leaks
32. New WebCobra Cryptojacking Malware Uses Platform Specific Miners
33. AMD launches new mid-range graphics card RX 590 based on 12nm process
34. Looking Back at LogRhythm Labs' 2018 Predictions for Security - How Did We Do?

SOUTH AMERICA

35. Group-IB presented latest cybercrime and nation-state hacking trends in Asia
36. New WebCobra Cryptojacking Malware Uses Platform Specific Miners
37. Mylobot Botnet Now Exfiltrates Data Using Second Stage Khalesi Trojan

EUROPE

38. Russian APT comes back to life with new US spear-phishing campaign
39. Stealthy DarkGate Cryptocurrency Mining and Ransomware Evades AV Detection
40. Using Microsoft Powerpoint as Malware Dropper
41. Operation Shaheen – Pakistan Air Force members targeted by nation-state attackers
42. Cyber News Rundown: Infowars Hacked by Card Skimmers
43. Russian Banks Hit By Major Phishing Attacks
44. This Week in Security News: Holiday Cybercriminals & Cryptomining Malware
45. Group-IB presented latest cybercrime and nation-state hacking trends in Asia
46. After early speculation of #malicious intent, experts said an accidental misconfiguration caused the BGP route leak that sent traffic destined
47. Russian banks hit by major phishing attacks from two hacker groups
48. Cybaze ZLab- Yoroi team spotted a new variant of the APT28 Lojax rootkit
49. Two hacker groups attacked Russian banks posing as the Central Bank of Russia
51. French Company Data Breach Causes Sensitive Information Stolen to the Hackers
52. Magecart become close to a household name with hacks of massive sites like http://Ticketmaster.com , http://Newegg.com and British Airways.
53. New WebCobra Cryptojacking Malware Uses Platform Specific Miners
54. Mylobot Botnet Now Exfiltrates Data Using Second Stage Khalesi Trojan
55. Looking Back at LogRhythm Labs' 2018 Predictions for Security - How Did We Do?

AFRICA

56. New WebCobra Cryptojacking Malware Uses Platform Specific Miners

Region brief for 2018-11-15

ASIA

1. Ransomware Continues to Be Top Threat to Small Companies
2. Cloud, China, Generic Malware Top Security Concerns for 2019
3. Chinese TEMP.Periscope cyberespionage group was using TTPs associated with Russian APTs
4. Two whitehats receive $60,000 in rewards for successfully finding iOS 12.1 vulnerabilities
5. VMware Virtual Machine Escape Vulnerabilities (CVE-2018-6981 and CVE-2018-6982) Threat Alert
6. Cisco Stealthwatch Management Console and Unity Express Critical Vulnerabilities Threat Alert
7. Ransomware Attack Strikes Media Prima
8. WannaCry Still Impacts Thousands of Systems Every Month
9. The ABC of the Hong Kong tech scene: A - AI, B - blockchain, C - cloud

OCEANIA

10. Cryptocurrency fraud is the exception, not the rule
11. WannaCry Still Impacts Thousands of Systems Every Month
12. My Health Record remains opt-out as Senate passes privacy amendments

NORTH AMERICA

13. Compromising vital infrastructure: air traffic control
14. Suspected Russian cybercriminal arrested in Bulgaria at U.S. request, lawyer says
15. Phishing Attack Causes Breach at Southwest Washington Regional Surgery Center
16. Massive Data Leaks Keep Happening Because Big Companies Can Afford to Lose Your Data
17. Chinese TEMP.Periscope cyberespionage group was using TTPs associated with Russian APTs
18. Skimmed BA and Newegg Customer Card Details Up for Sale
19. Two whitehats receive $60,000 in rewards for successfully finding iOS 12.1 vulnerabilities
20. WannaCry Still Impacts Thousands of Systems Every Month
21. Data breach at Nordstrom

SOUTH AMERICA

22. Brazilian Users Under Attack From Metamorfo Banking Trojan

EUROPE

23. Survey Says: Bad PR Due to Data Breach News, Very Bad for Businesses
24. Compromising vital infrastructure: air traffic control
25. Man Sends Bomb to Cryptopay for Denying a Password Change Request
26. Suspected Russian cybercriminal arrested in Bulgaria at U.S. request, lawyer says
27. RiskIQ’s 2018 Black Friday E-commerce Blacklist: Key Intel for This Year’s Mega Shopping Weekend
28. Today #GroupIB detected a massive phishing campaign sent to Russian banks from a fake email address purporting to belong to
29. Report: Microsoft’s enterprise products covertly gather personal data on users
30. Chinese TEMP.Periscope cyberespionage group was using TTPs associated with Russian APTs
31. Skimmed BA and Newegg Customer Card Details Up for Sale
32. InfoWars online store hit by Magecart
33. Alex Jones's InfoWars online store hit by Magecart
34. What is the impact of cyber espionage? @MikaSusiEK from Confederation of Finnish Industries EK discusses, how to tackle the growing
35. WannaCry Still Impacts Thousands of Systems Every Month
36. 63 new vulnerabilities found in Windows

AFRICA

Nil

Region brief for 2018-11-14

ASIA

1. 1,000 Bitcoins Ransom Asked from Media Prima After Successful Ransomware Attack
2. Weekly Threat Briefing: Adobe ColdFusion Servers Under Attack from APT Group
3. Google services collapsed due to BGP leak
4. Google services collapsed due to BGP leak
5. Chinese APT Group Exploit Fixed Critical Adobe ColdFusion Vulnerability On Unpatched Servers
6. CVE-2018-15961: Adobe ColdFusion Flaw exploited in attacks in the wild
7. How Threat Intelligence Prioritizes Risk in Vulnerability Management
8. Cathay Apologizes Over Data Breach but Denies Cover-up
9. Operation FastCash
10. Magecart- The Card-Skimming Group and Its Many Faces
11. AVEVA InduSoft Web Studio and InTouch Edge HMI Critical Vulnerabilities Threat Alert
12. Facebook flaw could have exposed private info of users and their friends
13. BDO Unibank Warned its Customers to Remain Beware from New Phishing Scheme

OCEANIA

14. Weekly Threat Briefing: Adobe ColdFusion Servers Under Attack from APT Group
15. Australian Senate extends My Health Record opt-out period

NORTH AMERICA

16. Did you by chance hack OPM back in 2015? Good news, your password probably still works!
17. Weekly Threat Briefing: Adobe ColdFusion Servers Under Attack from APT Group
18. Google services collapsed due to BGP leak
19. Google services collapsed due to BGP leak
20. Magecart- The Card-Skimming Group and Its Many Faces
21. Beers with Talos Ep. #41: Sex, money and malware
22. AVEVA InduSoft Web Studio and InTouch Edge HMI Critical Vulnerabilities Threat Alert
23. Facebook flaw could have exposed private info of users and their friends
24. A 100k routers around the world are on the botnet to conduct emails spam

SOUTH AMERICA

25. Weekly Threat Briefing: Adobe ColdFusion Servers Under Attack from APT Group

EUROPE

26. Weekly Threat Briefing: Adobe ColdFusion Servers Under Attack from APT Group
27. French Data Protection Authority Issues Guidance on Interaction of Blockchain Technology with GDPR
28. Google services collapsed due to BGP leak
29. Google services collapsed due to BGP leak
30. How Threat Intelligence Prioritizes Risk in Vulnerability Management
31. Monitoring file output for malicious code 'could have stopped BA attack more quickly'
32. Magecart- The Card-Skimming Group and Its Many Faces
33. Infowars Store Affected by Magecart Credit Card Stealing Hack
34. Alex Jones’ Infowars store was infected with credit card skimming software
35. Facebook flaw could have exposed private info of users and their friends
36. Big Game Hunting: The Evolution of INDRIK SPIDER From Dridex Wire Fraud to BitPaymer Targeted Ransomware

AFRICA

37. Google services collapsed due to BGP leak
38. Google services collapsed due to BGP leak

Region brief for 2018-11-13

ASIA

1. Premier Media Conglomerate of Malaysia, Falls for Ransomware Infection
2. Scare Force: Pakistan military hit by Operation Shaheen malware
3. Pakistan Military Hit By Operation Shaheen Malware
4. Sophisticated cyber-espionage campaign targeting Pakistani government and air force
5. Chinese Threat Actor TEMP.Periscope Targets UK-Based Engineering Company Using Russian APT Techniques
6. It’s Amateur Hour in the World of Spyware and Victims Will Pay the Price
7. Using Machine Learning to Cluster Malicious Network Flows From Gh0st RAT Variants
8. Google Services down due to BGP leak, traffic hijacked through Russia, China, and Nigeria
9. Sophisticated Campaign Targets Pakistan's Air Force
10. Google Services Inaccessible Due to BGP Leak

OCEANIA

11. Chinese Threat Actor TEMP.Periscope Targets UK-Based Engineering Company Using Russian APT Techniques
12. Attacker hijacks Elon Musk Twitter account to implement fake bitcoin fraud

NORTH AMERICA

13. Cathay Pacific In Hot Water: Data Breach Started March 2018, Not October 2018
14. Premier Media Conglomerate of Malaysia, Falls for Ransomware Infection
15. The Cybersecurity Tech Accord endorses the Paris Call
16. Target and other high profile Twitter accounts exploited for cryptocurrency scams
17. The Ontario Cannabis Store has reported a data breach that took place Nov. 1 through the Canada Post and affected
18. Chinese Threat Actor TEMP.Periscope Targets UK-Based Engineering Company Using Russian APT Techniques
19. What’s on Our Minds for 2019? Key Themes from the RSA Speaker Selection Process
20. It’s Amateur Hour in the World of Spyware and Victims Will Pay the Price
21. U.S. Cyber Command #malware samples will be shared to #VirusTotal by the Cyber National Mission Force and one expert said
22. Google Services down due to BGP leak, traffic hijacked through Russia, China, and Nigeria
23. Check Point Researchers Reported Vulnerabilities in Market-Leading Drone Platform, Enabling Manufacturer to Bolster Security
24. WebCobra Malware Uses Victims’ Computers to Mine Cryptocurrency
25. WebCobra Malware Uses Victims’ Computers to Mine Cryptocurrency
26. Compromised security in millions of cards in the US

SOUTH AMERICA

27. WebCobra Malware Uses Victims’ Computers to Mine Cryptocurrency
28. WebCobra Malware Uses Victims’ Computers to Mine Cryptocurrency

EUROPE

29. The Cybersecurity Tech Accord endorses the Paris Call
30. That Domain You Forgot to Renew? Yeah, it’s Now Stealing Credit Cards
31. Chinese Threat Actor TEMP.Periscope Targets UK-Based Engineering Company Using Russian APT Techniques
32. It’s Amateur Hour in the World of Spyware and Victims Will Pay the Price
33. Inside Magecart: RiskIQ and Flashpoint Release Comprehensive Report on the Assault on E-Commerce
34. The Tactic Cybercriminals Use to Steal Bitcoin
35. Attacker hijacks Elon Musk Twitter account to implement fake bitcoin fraud
36. Google Services down due to BGP leak, traffic hijacked through Russia, China, and Nigeria
37. Google Services Inaccessible Due to BGP Leak
38. WebCobra Malware Uses Victims’ Computers to Mine Cryptocurrency
39. WebCobra Malware Uses Victims’ Computers to Mine Cryptocurrency
40. Zero Day vulnerability in VirtualBox is disclosed

AFRICA

41. It’s Amateur Hour in the World of Spyware and Victims Will Pay the Price
42. Google Services down due to BGP leak, traffic hijacked through Russia, China, and Nigeria
43. Google Services Inaccessible Due to BGP Leak
44. WebCobra Malware Uses Victims’ Computers to Mine Cryptocurrency
45. WebCobra Malware Uses Victims’ Computers to Mine Cryptocurrency