ASIA
- AISA 2018: Japan's journey from a cryptocurrency hack to better regulation
- New research highlights Vietnamese group's custom hacking tools
- Meet GreyEnergy, the newest hacking group hitting Ukraine’s power grid
- WhiteSource raises $35 million for open source flaw detection platform
- Top 5 Publicly Accessible Hacking Tools You Can Download Today
- WTB: MuddyWater Expands Operations
- Git RCE Vulnerability (CVE-2018-17456)Security Advisory
WORLD
- LuminosityLink RAT Author Sentenced to 30 Months in Prison
- MartyMcFly Malware: new Cyber-Espionage Campaign targeting Italian Naval Industry
- 'GreyEnergy' Cyberspies Target Ukraine, Poland
- 3 Years After Attacks on Ukraine Power Grid, BlackEnergy Successor Poses Growing Threat
- Information of 396K Users Exposed in Facepunch Data Breach
- 35 Million US Voter Registration Records Found for Sale on Dark Web
- Podcast: A Utility Ransomware Attack, Post-Hurricane
- How Office 365 learned to reel in phish
- Meet GreyEnergy, the newest hacking group hitting Ukraine’s power grid
- 35 million US voter records up for sale on the dark web
- Who is to blame for the majority of data breaches?
- Attackers identified in the pre-espionage stage of CNI attack
- SEO Poisoning Campaign Targeting U.S. Midterm Election Keywords
- 35 million voter records from 19 US states for sale
- Insult to injury: Malware menace soaks water-logged utility ravaged by Hurricane Florence
- WTB: MuddyWater Expands Operations
- US Voter Records for Sale on Hacker Forum
- GreyEnergy group targeting critical infrastructure with espionage
- Brazil expert discovers Oracle flaw that allows massive DDoS attacks
- Millions of US Voter Records for Sale
- 35 Million U.S Voter Records Selling in Popular Dark web Hacking Forum from $150 USD to $12,500 USD
- Russian Hackers Attack Specialist in Customer Review Tied to Innumerable Websites
- A crippling ransomware attack hit a water utility in the aftermath of Hurricane Florence
- Sony has solved the crash of PS4 receiving malicious message
- Vulnerability in voting machines has not been corrected after 11 years
ATTACKS
- Tumblr Patches Security Issue that Would Leak Emails, Hashed-Salted Passwords
- MartyMcFly Malware: new Cyber-Espionage Campaign targeting Italian Naval Industry
- Redis 5.0 release, High-performance key-value database
- Information of 396K Users Exposed in Facepunch Data Breach
- 35 Million US Voter Registration Records Found for Sale on Dark Web
- FBI Releases Document with Measures for Defending Against Payroll Phishing Scams
- How Office 365 learned to reel in phish
- Another Phishing Scam is Appearing in Small Business Inboxes
- Phishers target book publishers in new campaign
- Pentagon Disclosed Data Breach At Department Of Defense Affecting 30,000 Workers
- Is this the simple solution to password re-use?
- 35 million US voter records up for sale on the dark web
- Who is to blame for the majority of data breaches?
- Public Cloud Phishing
- Learn how hackers used TLS certificates to launch @netflix #phishing attacks from expert Michael Cobb of @thehairyITdog
- GreyEnergy: New malware campaign targets critical infrastructure companies
- Tumblr Patches A Flaw That Could Have Exposed Users’ Account Info
- Anthem pays out record $16m over data breach
- SEO Poisoning Campaign Targeting U.S. Midterm Election Keywords
- "Attackers have expanded [phishing attacks] significantly into SMS and social media, and are displaying a preference for targeting personal email
- .@Google Firebase #DatabaseSecurity proved insufficient when bypassed by hackers to leak data. Learn more about this #SecurityFlaw from expert Michael
- 35 million voter records from 19 US states for sale
- Alphabet in the soup for keeping quiet about Google+ data leak bug
- Anthem Mega-Breach: Record $16 Million HIPAA Settlement
- US Voter Records for Sale on Hacker Forum
- Millions of US Voter Records for Sale
- 35 Million U.S Voter Records Selling in Popular Dark web Hacking Forum from $150 USD to $12,500 USD
- Faculties and Staff of Chapman got Affected by the ‘Critical’ Phishing Attack
- LibSSH Flaw Allows Hackers to Take Over Servers Without Password
- Travel data for about 30,000 individuals was exposed in a Pentagon #DataBreach and experts expect that the information could be
THREATS
- AISA 2018: Japan's journey from a cryptocurrency hack to better regulation
- Cisco Patches Remotely Exploitable High Risk Security Bugs in Multiple Products
- Libssh Vulnerability Exposes Servers to Attacks
- Chrome 70 Updates Sign-In Options, Patches 23 Flaws
- VoiceOver iOS 12 Bug Creates Lock Screen Bypass Exposing User Photos
- LuminosityLink RAT Author Sentenced to 30 Months in Prison
- MartyMcFly Malware: new Cyber-Espionage Campaign targeting Italian Naval Industry
- Tumblr discloses vulnerability but says 'no evidence that this bug was abused'
- Oracle Fixes 301 Flaws in October Critical Patch Update
- Podcast: A Utility Ransomware Attack, Post-Hurricane
- Serious SSH bug lets crooks log in just by asking nicely
- Oracle Patched Over 300 Vulnerabilities in Its Q3 2018 Critical Patch Update
- LibSSH Flaw Leaves Thousands Of Servers At Risk Of Hijacking
- .@alienvault researchers recently discovered #MassMiner, a #cryptocurrency mining #malware that has the ability to infect systems across the web. Discover
- CVE-2018-10933: Libssh Server Side Authentication Bypass Vulnerability Alert
- Thousands of servers easy to hack due to a LibSSH Flaw
- Take a Bite out of the Vulnerability Remediation Backlog with InsightVM
- How Blockchain Is Making it Easier for Fintech Companies to Scale Up
- WhiteSource raises $35 million for open source flaw detection platform
- CVE-2018-3211: Java Usage Tracker Local Elevation of Privilege on Windows
- Oracle CPU October 2018: 301 vulnerabilities patched
- A hacker who used fake advertisements placed on local newspaper websites to spread malware has been sentenced to 33 months
- Thousands Of Servers Vulnerable To Hacking Due To libssh Flaw
- Im Interview erläutert Georgeta Toth, Regional Director bei dem Security-Spezialisten #Proofpoint, den Einfluss der Crypto-Mining-#Malware auf Endgeräte in Unternehmen.
- GreyEnergy: New malware campaign targets critical infrastructure companies
- Critical Vulnerabilities Allow Takeover of D-Link Routers
- Tumblr Patches A Flaw That Could Have Exposed Users’ Account Info
- Remote Code Implantation Flaw Found in Medtronic Cardiac Programmers
- Insult to injury: Malware menace soaks water-logged utility ravaged by Hurricane Florence
- Alphabet in the soup for keeping quiet about Google+ data leak bug
- Hacker: I'm logged in. New LibSSH Vulnerability: OK! I believe you.
- Brazil expert discovers Oracle flaw that allows massive DDoS attacks
- Endpoint security solutions challenged by zero-day and fileless attacks
- VMware addressed Code Execution Flaw in its ESXi, Workstation, and Fusion products
- Flaws in Branch.io Affected Over 685 Million Users
- How does #FacexWorm #malware use @Facebook Messenger to spread? Learn more about this new malware with expert @lewisnic.
- Ransomware attack hits North Carolina water utility following hurricane
- Android Apps claim to mine unminable cryptocurrency, just show ads
- #GroupIB has estimated that cryptocurrency exchanges suffered a total loss of $882 mln due to targeted attacks in 2017 and
- New GreyEnergy Malware Targets ICS, Tied with BlackEnergy and TeleBots
- Security flaw in libssh leaves thousands of servers at risk of hijacking
- How does #MassMiner #malware infect systems across the web?
- A crippling ransomware attack hit a water utility in the aftermath of Hurricane Florence
- Oracle patches 301 vulnerabilities, including 46 with a 9.8+ severity rating
- VMware Patches Code Execution Flaw in Virtual Graphics Card
- Avast scores high in malware protection | Avast
- CVE-2018-3245: Weblogic Remote Code Execution Vulnerability Alert
- Oracle releases Critical Patch Update Advisory – October 2018: fix 301 security bugs
- Git RCE Vulnerability (CVE-2018-17456)Security Advisory
- Sony has solved the crash of PS4 receiving malicious message
- LibSSH Flaw Allows Hackers to Take Over Servers Without Password
- Abandoned Tweet Counter Hijacked With Malicious Script
- 21-year-old Hacker Sentenced to 30 Months Prison for Creating Popular Hacking Tool LumunosityLink RAT
- Vulnerability in voting machines has not been corrected after 11 years
- Vulnerability in Apple VoiceOver allows hackers access to user photos
- Google Chrome 70.0.3538.67 releases: fix multiple high-risk vulnerabilities
- The attackers learn that due to the complexity and fluctuations of the pulping process, any changes could take up to
- The Qihoo @360CoreSec team found a @Microsoft vulnerability -- named Double Kill -- that affects applications through #MicrosoftOffice documents. Learn
CRIME
- LuminosityLink RAT Author Sentenced to 30 Months in Prison
- Information of 396K Users Exposed in Facepunch Data Breach
- FBI Releases Document with Measures for Defending Against Payroll Phishing Scams
- Another Phishing Scam is Appearing in Small Business Inboxes
- Meet GreyEnergy, the newest hacking group hitting Ukraine’s power grid
- Who is to blame for the majority of data breaches?
- How Blockchain Is Making it Easier for Fintech Companies to Scale Up
- A hacker who used fake advertisements placed on local newspaper websites to spread malware has been sentenced to 33 months
- SEO Poisoning Campaign Targeting U.S. Midterm Election Keywords
- WTB: MuddyWater Expands Operations
- Millions of US Voter Records for Sale
- Abandoned Tweet Counter Hijacked With Malicious Script
- 21-year-old Hacker Sentenced to 30 Months Prison for Creating Popular Hacking Tool LumunosityLink RAT
- Vulnerability in Apple VoiceOver allows hackers access to user photos
POLITICS
- Cisco Patches Remotely Exploitable High Risk Security Bugs in Multiple Products
- MartyMcFly Malware: new Cyber-Espionage Campaign targeting Italian Naval Industry
- 'GreyEnergy' Cyberspies Target Ukraine, Poland
- New research highlights Vietnamese group's custom hacking tools
- Meet GreyEnergy, the newest hacking group hitting Ukraine’s power grid
- GreyEnergy: New malware campaign targets critical infrastructure companies
- Attackers identified in the pre-espionage stage of CNI attack
- SEO Poisoning Campaign Targeting U.S. Midterm Election Keywords
- GreyEnergy group targeting critical infrastructure with espionage
- A crippling ransomware attack hit a water utility in the aftermath of Hurricane Florence
- Vulnerability in voting machines has not been corrected after 11 years
DATA BREACH & DATA LOSS
- Insurer Anthem Will Pay Record $16M for Massive Data Breach
- Pentagon data breach exposed travel data for 30,000 individuals
- A Russian cyber vigilante is patching outdated MikroTik routers exposed online
- A Pentagon #DataBreach exposed data on at least 30,000 individuals, but other details about the incident are still scarce. By
- Personal Records Of 30,000 US Department Of Defense Workers Swiped By Miscreants
- Anthem Agrees To Pay $16 Million In Data Breach Privacy Settlement
- The Donald Daters Trump Dating App Exposed Its Users Data
- 2018 US voter records offered for sale on hacking forum
- #TLBleed exploits abuse Intel's HTT chip feature to leak data. Find out how hackers could launch side-channel attacks to obtain
- 35 million US voter records available for sale in a hacking forum
- Anthem agrees to pay $16 million in data breach privacy settlement
- Dating App for Trump Supporters Exposed Members’ Information
- After originally disclosing its latest data breach last month, Facebook revealed that hackers obtained data from some 30 million users.
Here’s
- Dating app for Trump loners commits YUGE blunder: It leaks more than the West Wing
- Penta-gone! Personal records of 30,000 US Dept of Defense workers swiped by miscreants
- Estimated 35 Million Voter Records For Sale on Popular Hacking Forum
- Pentagon Travel Provider Data Breach Counts 30,000 Victims
- UK’s MoD Exposed in 37 Security Breaches: Report
- 35 million voter records from 19 states for sale on hacking forum
- Pentagon data breach puts personal details of 30,000 staff at risk
- Facebook says fewer users affected by data breach
- Pentagon data breach puts personal details of 30,000 staff at risk
- Data breach in Pentagon’s service provider affected 30k people
DENIAL-OF-SERVICE
- Importance of DNS in Protecting Your Business from DDoS Attacks
MALVERTISING
Nil
PHISHING
- Chrome 70 arrives with fingerprint login for websites, extension controls, and 23 security fixes
- Chrome 70 released with revamped Google account login system
- Phishing Site Impersonates Financial Services Institution: https://www.digitalshadows.com/blog-and-research/phishing-site-impersonates-financial-services-institution/ … (via @mazzazone)
- Recent @Proofpoint research shows that #German-speaking regions are facing targeted #phishing, #malware, and #BEC attacks.
- Phishing and Facebook – a test of reputation
WEB DEFACEMENT
Nil
BOTNET
Nil
RANSOMWARE
- In County Crippled by Hurricane, Water Utility Targeted in Ransomware Attack
- Madison County computer system infected with ransomware
- NC Water Utility Fights Post-Hurricane Ransomware
- A “critical water utility” in a county crippled by Hurricane #Florence was hit by a #ransomware attack.
The #cyberattack has
- APT group called #TeleBots linked to #Industroyer #malware and #NotPetya #ransomware, according to @ESET researchers. By @MaddieBacon11
CRYPTOMINING & CRYPTOCURRENCIES
- SAP Boosts Blockchain Integration and Customer Flexibility
- How to Create Blockchain Applications
- Report: near-400% increase in crypto-mining malware attacks against iPhones
- Line lists cryptocurrency on Bitbox exchange
- You are who you say you are: Establishing digital trust with the blockchain
- Cryptomining attacks against Apple devices increase sharply
- Cryptojacking attacks against iPhone devices increase
MALWARE
- Author of LuminosityLink Remote Access Trojan Gets 30 Months Sentence
- .@Trustlook Labs discovered an #Android #Trojan stealing data from messaging apps. Learn what #mobilesecurity programs should look for to detect
- Malicious RTF Documents Deliver Information Stealers
- Recent @Proofpoint research shows that #German-speaking regions are facing targeted #phishing, #malware, and #BEC attacks.
- #Stegware: it's #Malware that uses #steganography techniques to avoid detection
- Report: near-400% increase in crypto-mining malware attacks against iPhones
- Octopus malware wraps tentacles around former Telegram users in Central Asia
- Mikko didn't put Brain -- the first PC virus -- on his list but he did track down its authors
- Now Surfing about your Favourite Celebrities can make you Vulnerable to Virus Attack
- Malware Attack Popular Amongst the Hackers, Even though it Dips in Q2 in 2018
- APT group called #TeleBots linked to #Industroyer #malware and #NotPetya #ransomware, according to @ESET researchers. By @MaddieBacon11
- Cybercriminals Advertising Godzilla Loader Malware On Dark Web Forums
- Most Important Considerations with Malware Analysis Cheats And Tools list
- Leveraging Falcon Sandbox to Detect and Analyze Malicious PDFs Containing Zero-Day Exploits
EXPLOIT
- Sony Fixed PlayStation 4 Message Exploit Leasing to a DoS Condition
- Hackers tamper with exploit chain to drop Agent Tesla, circumvent antivirus solutions
- Numerous PlayStation 4 users reported that a PlayStation Network message exploit is crashing their consoles, requiring a factory reset in
VULNERABILITY
- [SingCERT] Alert on Multiple Vulnerabilities in PHP
- Multiple Vulnerabilities Allow Attackers to Take Full Control of Linksys Routers
- 7 Useful Android Vulnerability Scanners
- Vulnerability Spotlight: Linksys ESeries Multiple OS Command Injection Vulnerabilities
- Bug in New iOS Lets Attacker Access iPhone Pics
- Info of 685 Million Users at Risk Because of Multiple Branch.io XSS Flaws
- CVE-2018-8453 Zero-Day Flaw Exploited by FruityArmor APT
- Learn about the #NetSpectre vulnerability and the benefits of #ThreatModeling for cloud deployments from expert Ed Moyle of @securitycurve.
- Tinder profiles were 'at risk' due to XSS vulnerability
- 685 million users may be affected by the Branch.io service XSS vulnerability
- Vulnerability Spotlight: Linksys ESeries Multiple OS Command Injection Vulnerabilities
- Hackers can use known security vulnerabilities with new technology to bypass Antivirus Software
- RiskSense cloud service protects against cyber threats and vulnerabilities ahead of midterm elections
- #Shodan, a device search engine, can help identify #ICS security vulnerabilities. Learn more about how Shodan works and how it
- "It is no secret that the #RemoteDesktop Protocol has long been a source of exploitable vulnerabilities, and it is well
- 685 million users may be affected by the Branch.io service XSS vulnerability
- Juniper Networks launches multiple solutions for Junos OS vulnerabilities
- New iPhone Bug Gives Anyone Access to Your Private Photos
- Leveraging Falcon Sandbox to Detect and Analyze Malicious PDFs Containing Zero-Day Exploits
ASIA
- Russia-linked APT group DustSquad targets diplomatic entities in Central Asia
- New ShadowTalk Episode 45
This week, CISO @rickhholland, @drshellface, & Simon Hall join Rafael Amado to cover the
- Hackers can use known security vulnerabilities with new technology to bypass Antivirus Software
- Line lists cryptocurrency on Bitbox exchange
OCEANIA
Nil
NORTH AMERICA
- Author of LuminosityLink Remote Access Trojan Gets 30 Months Sentence
- Insurer Anthem Will Pay Record $16M for Massive Data Breach
- New ShadowTalk Episode 45
This week, CISO @rickhholland, @drshellface, & Simon Hall join Rafael Amado to cover the
- Madison County computer system infected with ransomware
- Personal Records Of 30,000 US Department Of Defense Workers Swiped By Miscreants
- 2018 US voter records offered for sale on hacking forum
- 35 million US voter records available for sale in a hacking forum
- Anthem agrees to pay $16 million in data breach privacy settlement
- Dating App for Trump Supporters Exposed Members’ Information
- Dating app for Trump loners commits YUGE blunder: It leaks more than the West Wing
- Penta-gone! Personal records of 30,000 US Dept of Defense workers swiped by miscreants
- Estimated 35 Million Voter Records For Sale on Popular Hacking Forum
- Pentagon Travel Provider Data Breach Counts 30,000 Victims
- UK’s MoD Exposed in 37 Security Breaches: Report
- Report: near-400% increase in crypto-mining malware attacks against iPhones
- 35 million voter records from 19 states for sale on hacking forum
- Pentagon data breach puts personal details of 30,000 staff at risk
- Data breach in Pentagon’s service provider affected 30k people
SOUTH AMERICA
- A Russian cyber vigilante is patching outdated MikroTik routers exposed online
EUROPE
- Russia-linked APT group DustSquad targets diplomatic entities in Central Asia
- A Russian cyber vigilante is patching outdated MikroTik routers exposed online
- Bug in New iOS Lets Attacker Access iPhone Pics
- Sony Fixed PlayStation 4 Message Exploit Leasing to a DoS Condition
- 2018 US voter records offered for sale on hacking forum
- Recent @Proofpoint research shows that #German-speaking regions are facing targeted #phishing, #malware, and #BEC attacks.
- 35 million US voter records available for sale in a hacking forum
- Estimated 35 Million Voter Records For Sale on Popular Hacking Forum
- UK’s MoD Exposed in 37 Security Breaches: Report
- Hackers can use known security vulnerabilities with new technology to bypass Antivirus Software
- Octopus malware wraps tentacles around former Telegram users in Central Asia
- Phishing and Facebook – a test of reputation
- NotPetya linked to the Industroyer attack against energy infrastructure in Ukraine
- New iPhone Bug Gives Anyone Access to Your Private Photos
AFRICA
Nil
HEALTHCARE
Nil
TRANSPORT
Nil
BANKING & FINANCE
- New ShadowTalk Episode 45
This week, CISO @rickhholland, @drshellface, & Simon Hall join Rafael Amado to cover the
- Phishing Site Impersonates Financial Services Institution: https://www.digitalshadows.com/blog-and-research/phishing-site-impersonates-financial-services-institution/ … (via @mazzazone)
- 35 million US voter records available for sale in a hacking forum
- Estimated 35 Million Voter Records For Sale on Popular Hacking Forum
- UK’s MoD Exposed in 37 Security Breaches: Report
- Hackers can use known security vulnerabilities with new technology to bypass Antivirus Software
- Pentagon data breach puts personal details of 30,000 staff at risk
- Pentagon data breach puts personal details of 30,000 staff at risk
- Data breach in Pentagon’s service provider affected 30k people
- NotPetya linked to the Industroyer attack against energy infrastructure in Ukraine
INFORMATION & TELECOMMUNICATION
- Multiple Vulnerabilities Allow Attackers to Take Full Control of Linksys Routers
- 7 Useful Android Vulnerability Scanners
- Bug in New iOS Lets Attacker Access iPhone Pics
- Sony Fixed PlayStation 4 Message Exploit Leasing to a DoS Condition
- Phishing Site Impersonates Financial Services Institution: https://www.digitalshadows.com/blog-and-research/phishing-site-impersonates-financial-services-institution/ … (via @mazzazone)
- Recent @Proofpoint research shows that #German-speaking regions are facing targeted #phishing, #malware, and #BEC attacks.
- After originally disclosing its latest data breach last month, Facebook revealed that hackers obtained data from some 30 million users.
Here’s
- Vulnerability Spotlight: Linksys ESeries Multiple OS Command Injection Vulnerabilities
- Numerous PlayStation 4 users reported that a PlayStation Network message exploit is crashing their consoles, requiring a factory reset in
- Facebook says fewer users affected by data breach
- Phishing and Facebook – a test of reputation
- Mikko didn't put Brain -- the first PC virus -- on his list but he did track down its authors
- Line lists cryptocurrency on Bitbox exchange
FOOD
Nil
WATER
Nil
ENERGY
- NotPetya linked to the Industroyer attack against energy infrastructure in Ukraine
GOVERNMENT & PUBLIC SERVICE
- Russia-linked APT group DustSquad targets diplomatic entities in Central Asia
- Insurer Anthem Will Pay Record $16M for Massive Data Breach
- 2018 US voter records offered for sale on hacking forum
- 35 million US voter records available for sale in a hacking forum
- Anthem agrees to pay $16 million in data breach privacy settlement
- Estimated 35 Million Voter Records For Sale on Popular Hacking Forum
- UK’s MoD Exposed in 37 Security Breaches: Report
- RiskSense cloud service protects against cyber threats and vulnerabilities ahead of midterm elections
- 35 million voter records from 19 states for sale on hacking forum
- Pentagon data breach puts personal details of 30,000 staff at risk
- Pentagon data breach puts personal details of 30,000 staff at risk
- Data breach in Pentagon’s service provider affected 30k people
- NotPetya linked to the Industroyer attack against energy infrastructure in Ukraine
ASIA
- Russia-linked APT group DustSquad targets diplomatic entities in Central Asia
- New ShadowTalk Episode 45
This week, CISO @rickhholland, @drshellface, & Simon Hall join Rafael Amado to cover the
- Hackers can use known security vulnerabilities with new technology to bypass Antivirus Software
- Line lists cryptocurrency on Bitbox exchange
WORLD
- Russia-linked APT group DustSquad targets diplomatic entities in Central Asia
- Author of LuminosityLink Remote Access Trojan Gets 30 Months Sentence
- Insurer Anthem Will Pay Record $16M for Massive Data Breach
- A Russian cyber vigilante is patching outdated MikroTik routers exposed online
- Bug in New iOS Lets Attacker Access iPhone Pics
- Sony Fixed PlayStation 4 Message Exploit Leasing to a DoS Condition
- New ShadowTalk Episode 45
This week, CISO @rickhholland, @drshellface, & Simon Hall join Rafael Amado to cover the
- Madison County computer system infected with ransomware
- Personal Records Of 30,000 US Department Of Defense Workers Swiped By Miscreants
- 2018 US voter records offered for sale on hacking forum
- Recent @Proofpoint research shows that #German-speaking regions are facing targeted #phishing, #malware, and #BEC attacks.
- 35 million US voter records available for sale in a hacking forum
- Anthem agrees to pay $16 million in data breach privacy settlement
- Dating App for Trump Supporters Exposed Members’ Information
- Dating app for Trump loners commits YUGE blunder: It leaks more than the West Wing
- Penta-gone! Personal records of 30,000 US Dept of Defense workers swiped by miscreants
- Estimated 35 Million Voter Records For Sale on Popular Hacking Forum
- Pentagon Travel Provider Data Breach Counts 30,000 Victims
- UK’s MoD Exposed in 37 Security Breaches: Report
- Report: near-400% increase in crypto-mining malware attacks against iPhones
- Hackers can use known security vulnerabilities with new technology to bypass Antivirus Software
- 35 million voter records from 19 states for sale on hacking forum
- Octopus malware wraps tentacles around former Telegram users in Central Asia
- Phishing and Facebook – a test of reputation
- Pentagon data breach puts personal details of 30,000 staff at risk
- Data breach in Pentagon’s service provider affected 30k people
- NotPetya linked to the Industroyer attack against energy infrastructure in Ukraine
- New iPhone Bug Gives Anyone Access to Your Private Photos
ATTACKS
- Chrome 70 arrives with fingerprint login for websites, extension controls, and 23 security fixes
- Chrome 70 released with revamped Google account login system
- Insurer Anthem Will Pay Record $16M for Massive Data Breach
- Pentagon data breach exposed travel data for 30,000 individuals
- A Russian cyber vigilante is patching outdated MikroTik routers exposed online
- A Pentagon #DataBreach exposed data on at least 30,000 individuals, but other details about the incident are still scarce. By
- Personal Records Of 30,000 US Department Of Defense Workers Swiped By Miscreants
- Anthem Agrees To Pay $16 Million In Data Breach Privacy Settlement
- The Donald Daters Trump Dating App Exposed Its Users Data
- Phishing Site Impersonates Financial Services Institution: https://www.digitalshadows.com/blog-and-research/phishing-site-impersonates-financial-services-institution/ … (via @mazzazone)
- 2018 US voter records offered for sale on hacking forum
- Recent @Proofpoint research shows that #German-speaking regions are facing targeted #phishing, #malware, and #BEC attacks.
- #TLBleed exploits abuse Intel's HTT chip feature to leak data. Find out how hackers could launch side-channel attacks to obtain
- 35 million US voter records available for sale in a hacking forum
- Anthem agrees to pay $16 million in data breach privacy settlement
- Dating App for Trump Supporters Exposed Members’ Information
- After originally disclosing its latest data breach last month, Facebook revealed that hackers obtained data from some 30 million users.
Here’s
- Dating app for Trump loners commits YUGE blunder: It leaks more than the West Wing
- Penta-gone! Personal records of 30,000 US Dept of Defense workers swiped by miscreants
- Estimated 35 Million Voter Records For Sale on Popular Hacking Forum
- Pentagon Travel Provider Data Breach Counts 30,000 Victims
- UK’s MoD Exposed in 37 Security Breaches: Report
- 35 million voter records from 19 states for sale on hacking forum
- Pentagon data breach puts personal details of 30,000 staff at risk
- Facebook says fewer users affected by data breach
- Phishing and Facebook – a test of reputation
- Pentagon data breach puts personal details of 30,000 staff at risk
- Data breach in Pentagon’s service provider affected 30k people
THREATS
- SAP Boosts Blockchain Integration and Customer Flexibility
- Author of LuminosityLink Remote Access Trojan Gets 30 Months Sentence
- [SingCERT] Alert on Multiple Vulnerabilities in PHP
- Multiple Vulnerabilities Allow Attackers to Take Full Control of Linksys Routers
- In County Crippled by Hurricane, Water Utility Targeted in Ransomware Attack
- 7 Useful Android Vulnerability Scanners
- Vulnerability Spotlight: Linksys ESeries Multiple OS Command Injection Vulnerabilities
- .@Trustlook Labs discovered an #Android #Trojan stealing data from messaging apps. Learn what #mobilesecurity programs should look for to detect
- Bug in New iOS Lets Attacker Access iPhone Pics
- Malicious RTF Documents Deliver Information Stealers
- Info of 685 Million Users at Risk Because of Multiple Branch.io XSS Flaws
- Madison County computer system infected with ransomware
- CVE-2018-8453 Zero-Day Flaw Exploited by FruityArmor APT
- How to Create Blockchain Applications
- NC Water Utility Fights Post-Hurricane Ransomware
- Learn about the #NetSpectre vulnerability and the benefits of #ThreatModeling for cloud deployments from expert Ed Moyle of @securitycurve.
- Recent @Proofpoint research shows that #German-speaking regions are facing targeted #phishing, #malware, and #BEC attacks.
- Tinder profiles were 'at risk' due to XSS vulnerability
- 685 million users may be affected by the Branch.io service XSS vulnerability
- A “critical water utility” in a county crippled by Hurricane #Florence was hit by a #ransomware attack.
The #cyberattack has
- #Stegware: it's #Malware that uses #steganography techniques to avoid detection
- Vulnerability Spotlight: Linksys ESeries Multiple OS Command Injection Vulnerabilities
- Report: near-400% increase in crypto-mining malware attacks against iPhones
- Hackers can use known security vulnerabilities with new technology to bypass Antivirus Software
- RiskSense cloud service protects against cyber threats and vulnerabilities ahead of midterm elections
- #Shodan, a device search engine, can help identify #ICS security vulnerabilities. Learn more about how Shodan works and how it
- Octopus malware wraps tentacles around former Telegram users in Central Asia
- Mikko didn't put Brain -- the first PC virus -- on his list but he did track down its authors
- Line lists cryptocurrency on Bitbox exchange
- "It is no secret that the #RemoteDesktop Protocol has long been a source of exploitable vulnerabilities, and it is well
- You are who you say you are: Establishing digital trust with the blockchain
- Now Surfing about your Favourite Celebrities can make you Vulnerable to Virus Attack
- Malware Attack Popular Amongst the Hackers, Even though it Dips in Q2 in 2018
- Cryptomining attacks against Apple devices increase sharply
- APT group called #TeleBots linked to #Industroyer #malware and #NotPetya #ransomware, according to @ESET researchers. By @MaddieBacon11
- Cybercriminals Advertising Godzilla Loader Malware On Dark Web Forums
- 685 million users may be affected by the Branch.io service XSS vulnerability
- Cryptojacking attacks against iPhone devices increase
- Juniper Networks launches multiple solutions for Junos OS vulnerabilities
- Most Important Considerations with Malware Analysis Cheats And Tools list
- New iPhone Bug Gives Anyone Access to Your Private Photos
- Leveraging Falcon Sandbox to Detect and Analyze Malicious PDFs Containing Zero-Day Exploits
CRIME
- Author of LuminosityLink Remote Access Trojan Gets 30 Months Sentence
- A Russian cyber vigilante is patching outdated MikroTik routers exposed online
- How to Create Blockchain Applications
- Recent @Proofpoint research shows that #German-speaking regions are facing targeted #phishing, #malware, and #BEC attacks.
- 35 million US voter records available for sale in a hacking forum
- Dating app for Trump loners commits YUGE blunder: It leaks more than the West Wing
- Estimated 35 Million Voter Records For Sale on Popular Hacking Forum
- UK’s MoD Exposed in 37 Security Breaches: Report
- Report: near-400% increase in crypto-mining malware attacks against iPhones
- Facebook says fewer users affected by data breach
- Pentagon data breach puts personal details of 30,000 staff at risk
POLITICS
- Russia-linked APT group DustSquad targets diplomatic entities in Central Asia
- A Russian cyber vigilante is patching outdated MikroTik routers exposed online
- Estimated 35 Million Voter Records For Sale on Popular Hacking Forum
- UK’s MoD Exposed in 37 Security Breaches: Report
- RiskSense cloud service protects against cyber threats and vulnerabilities ahead of midterm elections
- Octopus malware wraps tentacles around former Telegram users in Central Asia
- "It is no secret that the #RemoteDesktop Protocol has long been a source of exploitable vulnerabilities, and it is well
