ASIA
- Future Investment Initiative Conference Website, Defaced, Now Restored
- Cathay Pacific Suffers World’s Largest Airline Data Breach
- Serious Vulnerability Discovered In X.Org Server Affects Major Linux and BSD Variants
- 'Narwhal Spider' group's spam campaign targets Japanese recipients with URLZone malware
- Same Old yet Brand-new: New File Types Emerge in Malware Spam Attachments
- Revolutionary Blockchain 3.0 Under CSE Platform
- Leaked: iOS 12.1 will be released on October 30th
WORLD
- Phishing spikes as private health continues to be most breached sector in Australia
- Future Investment Initiative Conference Website, Defaced, Now Restored
- Here's how to defend your enterprise from Magecart
- Breaking News: Securonix Threat Research: British Airways Breach
- Cathay Pacific Suffers World’s Largest Airline Data Breach
- sLoad and Ramnit Campaign Against UK and Italy
- Magecart Exploits Zero Day Vulnerabilities
- Understanding mass data fragmentation
- Secret Service Confirms Focus on Email Compromise Cybercrimes Worth $12 Billion
- Man Ordered to Pay $8.6 Million for Launching DDoS Attacks against Rutgers University
- Security Vulnerability in Internet-Connected Construction Cranes
- Girl Scouts Alerted to Possible Data Breach
- What can we do to tackle today’s phishing epidemic?
- Privacy concerns cooling #InternetOfThings adoption in US & Europe, with consumers concerned about #DataLeaks, malware and product security (via @FSecure)
- Das Geschäft mit gestohlenen Login-Daten von Privatnutzern und Unternehmensanwendern boomt. US-Journalist Brian Krebs beziffert die "Ausbeute" bei mehreren 100.000 US-Dollar
- The Worst Data Breach till Now 2018, and What It Means
- Same Old yet Brand-new: New File Types Emerge in Malware Spam Attachments
- Cisco patched a command injection vulnerability in Webex Meetings
- Leaked: iOS 12.1 will be released on October 30th
ATTACKS
- Phishing spikes as private health continues to be most breached sector in Australia
- Girl Scouts Issues Data Breach Warning to 2,800 Members
- Nation-State Phishing: A Country-Sized Catch
- A new phishing report reveals Microsoft, Paypal, and Netflix are among the top brands impersonated by phishing attacks.
Attackers tend to
- This is getting worse and worse. And is going to normalize and lead to much more successful phishing through SMS
- Cathay Pacific Suffers World’s Largest Airline Data Breach
- League of Legends Gamers Targeted by Phishing Scam | Avast
- sLoad and Ramnit Campaign Against UK and Italy
- Secret Service Confirms Focus on Email Compromise Cybercrimes Worth $12 Billion
- Girl Scouts Alerted to Possible Data Breach
- 'Narwhal Spider' group's spam campaign targets Japanese recipients with URLZone malware
- DDoS and ransomware tools for starter and experienced cybercriminals exposed
- Biggest Manufacturing Data Breaches of the 21st Century
- What can we do to tackle today’s phishing epidemic?
- Das Geschäft mit gestohlenen Login-Daten von Privatnutzern und Unternehmensanwendern boomt. US-Journalist Brian Krebs beziffert die "Ausbeute" bei mehreren 100.000 US-Dollar
- The Worst Data Breach till Now 2018, and What It Means
- Crooks continue to abuse exposed Docker APIs for Cryptojacking
- IoT users uncertain if personal data is shared across multiple devices
- 19% still save their password on a piece of paper
- Hackers Breach System of Healthcare.Gov Exposing Personal Data of 75,000 Users
- Hackers steal personal data of up to 9.4 million Cathay Pacific passengers
- Leaked: iOS 12.1 will be released on October 30th
- Vulnerability In Microsoft Word Online Video Feature Allows for Phishing
- 33,000 Accounting Inbox Credentials Exposed Online: BEC Made Easy | Read the details here:
THREATS
- Videos and MS Office documents - ingredients for a malware attack
- SandboxEscaper expert is back and disclosed a new Windows Zero-Day
- IoT Flaw Allows Hijacking of Connected Construction Cranes
- Mac CryptoCurrency Price Tracker Caught Installing Backdoors
- Mac cryptocurrency ticker app installs backdoors
- Word documents seemingly carrying videos can deliver malicious code instead
- Remote Denial of Service Vulnerability Patched in Squid Proxy Cache Server
- X.Org Flaw Allows Privilege Escalation in Linux Systems
- Downloading Google Chrome via Microsoft Edge Endangered by Malware
- The Ransomware Attack on a North Carolina Water Utility May Not Have Been What it Seemed
- X.Org Flaw Exposes Unix-Like OSes to Attacks
- Windows 10 UWP Bug Could Give Malicious Devs Access To All Your Files
- X.org Bug Bites OpenBSD And Other Big Operating Systems
- If your company uses Windows 10, watch out: there are new vulnerabilities about
- Advanced Malware Protection Affected by Bug That Can Inhibit Intrusion Detection
- Logical Bug in Microsoft Word's 'Online Video' Allows Code Execution
- Call of Duty players caught up in cryptocurrency theft racket
- Ransomware and the enterprise: A new white paper
- Windows 10 UWP bug could give malicious devs access to all your files
- Windows 10 Bug Allowed UWP Apps Full Access to File System
- Magecart Exploits Zero Day Vulnerabilities
- Serious Vulnerability Discovered In X.Org Server Affects Major Linux and BSD Variants
- Malware That Accompanies Google Chrome Download Detected
- Security Vulnerability in Internet-Connected Construction Cranes
- 'Narwhal Spider' group's spam campaign targets Japanese recipients with URLZone malware
- Cyber-criminals exploit misconfigured container to deliver cryptominer
- DDoS and ransomware tools for starter and experienced cybercriminals exposed
- Systemd flaw could cause the crash or hijack of vulnerable Linux machines
- Pentagon’s big audit will inspect for cybersecurity flaws, comptroller says
- Vulnerability found in Sophos anti-malware product
- Flaws in brain stimulation tech could let hackers erase or hold memories for ransom
- Privacy concerns cooling #InternetOfThings adoption in US & Europe, with consumers concerned about #DataLeaks, malware and product security (via @FSecure)
- Same Old yet Brand-new: New File Types Emerge in Malware Spam Attachments
- Crooks continue to abuse exposed Docker APIs for Cryptojacking
- Revolutionary Blockchain 3.0 Under CSE Platform
- #Antivirus SW alone can't stop new #malware or #ransomware. by @MariaKorolov -
- Beware! Downloader Malware Disguised as Game Apps Found On Google Play with More Than 51,100 Installations
- Cisco patched a command injection vulnerability in Webex Meetings
- Have you ever wondered why #ransomware attacks happen on the Friday before a long weekend? We've teamed up with @SentinelOne
- Microsoft Bing Delivered Dangerous Malware When You Try to Download Google Chrome
- Vulnerability In Microsoft Word Online Video Feature Allows for Phishing
CRIME
- Future Investment Initiative Conference Website, Defaced, Now Restored
- Here's how to defend your enterprise from Magecart
- Breaking News: Securonix Threat Research: British Airways Breach
- Mirai Botnet Operator Ordered to Pay $8.6 Million
- Cathay Pacific Suffers World’s Largest Airline Data Breach
- Call of Duty players caught up in cryptocurrency theft racket
- League of Legends Gamers Targeted by Phishing Scam | Avast
- Malware That Accompanies Google Chrome Download Detected
- Secret Service Confirms Focus on Email Compromise Cybercrimes Worth $12 Billion
- Man Ordered to Pay $8.6 Million for Launching DDoS Attacks against Rutgers University
- Girl Scouts Alerted to Possible Data Breach
- Mirai Author Gets House Arrest for DDoS Attacks on University
- DDoS and ransomware tools for starter and experienced cybercriminals exposed
- What can we do to tackle today’s phishing epidemic?
- Revolutionary Blockchain 3.0 Under CSE Platform
- 33,000 Accounting Inbox Credentials Exposed Online: BEC Made Easy | Read the details here:
POLITICS
- Future Investment Initiative Conference Website, Defaced, Now Restored
- Secret Service Confirms Focus on Email Compromise Cybercrimes Worth $12 Billion
- What can we do to tackle today’s phishing epidemic?
TRANSNATIONAL / UNKNOWN
- Security Affairs newsletter Round 186 – News of the week
CHINA
Nil
INDIA
Nil
NORTH KOREA
Nil
PAKISTAN
Nil
VIETNAM
Nil
IRAN
Nil
IRAQ
Nil
LEBANON
Nil
PALESTINE
Nil
SAUDI ARABIA
Nil
SYRIA
Nil
TURKEY
Nil
UNITED ARAB EMIRATES
Nil
YEMEN
Nil
RUSSIA
- Russian Research Lab Involved in the Development of TRITON Malware, Says FireEye
SERBIA
Nil
UKRAINE
Nil
DATA BREACH & DATA LOSS
- Consulting Firm Leaked Data Of Democratic Party Fundraisers In Unsecured NAS Device
- Yahoo To Pay $50M, Other Costs For Massive Data Breach
- A recent @HealthCareGov #breach exposed unknown types of data on 75,000 people, but a lack of information in the disclosure
- "If an organization created #DMARC records for the first time, it would encounter syntax and content issues -- one of
- The #NetSpectre vulnerability could enable a slow leak of data remotely via side channels. Expert Michael Cobb of @thehairyITdog explains
DENIAL-OF-SERVICE
Nil
MALVERTISING
Nil
PHISHING
- Apple Made Apology Due to Apple ID Phishing Attacks
- On Phishing Attacks and the Companies That are Targeted the Most
WEB DEFACEMENT
Nil
BOTNET
- Satori botnet author in jail again after breaking pretrial release conditions
- After an attempted comeback by the Russian built #VPNFilter #botnet, home #networkdevices are at risk. Learn how this #malware targets
RANSOMWARE
- New ShadowTalk is out! @TheHVanRiper and Rafael Amado join @mazzazone to discuss #ransomware surges in October, Cathay Pacific Breach, and
CRYPTOMINING & CRYPTOCURRENCIES
- Is blockchain a solution to IoT security problems?
MALWARE
- 12 Malicious Python Libraries Found And Removed From PyPi
- Russian Research Lab Involved in the Development of TRITON Malware, Says FireEye
- How to deliver malware using weaponized Microsoft Office docs embedding YouTube video
- After an attempted comeback by the Russian built #VPNFilter #botnet, home #networkdevices are at risk. Learn how this #malware targets
- Bingo.
Investigators find the same remote access trojan deployed to several other machines. Now the responders know what to look for.
- "My name is Mikko and I've been working with viruses and malware all my freaking life."
EXPLOIT
Nil
VULNERABILITY
- Cisco Patched Privilege Escalation Vulnerability In Webex Meetings Desktop App
- A flaw in @Cisco Webex -- called WebExec -- can allow #RemoteCodeExecution. And while experts don't agree on how dangerous
- .@Siemens central plant clocks were affected by six SICLOCK flaws, three have been rated "critical." Learn what these SICLOCK flaws
- The #NetSpectre vulnerability could enable a slow leak of data remotely via side channels. Expert Michael Cobb of @thehairyITdog explains
- Critical Code Execution Vulnerability Found in MKVToolNix Tools that Parses MKV Files
ASIA
- Apple Made Apology Due to Apple ID Phishing Attacks
- Security Affairs newsletter Round 186 – News of the week
- Russian Research Lab Involved in the Development of TRITON Malware, Says FireEye
WORLD
- Consulting Firm Leaked Data Of Democratic Party Fundraisers In Unsecured NAS Device
- On Phishing Attacks and the Companies That are Targeted the Most
- Security Affairs newsletter Round 186 – News of the week
- Russian Research Lab Involved in the Development of TRITON Malware, Says FireEye
- New ShadowTalk is out! @TheHVanRiper and Rafael Amado join @mazzazone to discuss #ransomware surges in October, Cathay Pacific Breach, and
- After an attempted comeback by the Russian built #VPNFilter #botnet, home #networkdevices are at risk. Learn how this #malware targets
ATTACKS
- Consulting Firm Leaked Data Of Democratic Party Fundraisers In Unsecured NAS Device
- Apple Made Apology Due to Apple ID Phishing Attacks
- On Phishing Attacks and the Companies That are Targeted the Most
- Yahoo To Pay $50M, Other Costs For Massive Data Breach
- A recent @HealthCareGov #breach exposed unknown types of data on 75,000 people, but a lack of information in the disclosure
- "If an organization created #DMARC records for the first time, it would encounter syntax and content issues -- one of
- The #NetSpectre vulnerability could enable a slow leak of data remotely via side channels. Expert Michael Cobb of @thehairyITdog explains
THREATS
- Is blockchain a solution to IoT security problems?
- Cisco Patched Privilege Escalation Vulnerability In Webex Meetings Desktop App
- A flaw in @Cisco Webex -- called WebExec -- can allow #RemoteCodeExecution. And while experts don't agree on how dangerous
- 12 Malicious Python Libraries Found And Removed From PyPi
- Russian Research Lab Involved in the Development of TRITON Malware, Says FireEye
- .@Siemens central plant clocks were affected by six SICLOCK flaws, three have been rated "critical." Learn what these SICLOCK flaws
- How to deliver malware using weaponized Microsoft Office docs embedding YouTube video
- New ShadowTalk is out! @TheHVanRiper and Rafael Amado join @mazzazone to discuss #ransomware surges in October, Cathay Pacific Breach, and
- The #NetSpectre vulnerability could enable a slow leak of data remotely via side channels. Expert Michael Cobb of @thehairyITdog explains
- Critical Code Execution Vulnerability Found in MKVToolNix Tools that Parses MKV Files
- After an attempted comeback by the Russian built #VPNFilter #botnet, home #networkdevices are at risk. Learn how this #malware targets
- Bingo.
Investigators find the same remote access trojan deployed to several other machines. Now the responders know what to look for.
- "My name is Mikko and I've been working with viruses and malware all my freaking life."
CRIME
- Apple Made Apology Due to Apple ID Phishing Attacks
- On Phishing Attacks and the Companies That are Targeted the Most
- Security Affairs newsletter Round 186 – News of the week
POLITICS
- Security Affairs newsletter Round 186 – News of the week
TRANSNATIONAL / UNKNOWN
Nil
CHINA
Nil
INDIA
Nil
NORTH KOREA
Nil
PAKISTAN
Nil
VIETNAM
Nil
IRAN
Nil
IRAQ
Nil
LEBANON
Nil
PALESTINE
Nil
SAUDI ARABIA
Nil
SYRIA
Nil
TURKEY
Nil
UNITED ARAB EMIRATES
Nil
YEMEN
Nil
RUSSIA
Nil
SERBIA
Nil
UKRAINE
- News of the Week: October 27, 2018
DATA BREACH & DATA LOSS
- ThreatList: 1 Out of 5 Would Ditch a Business After a Data Breach
- Facebook removes Iranian influence campaign as midterms near
- Bushido-Powered DDoS Service Whipped Up from Leaked Code
- British Airways: 185K Affected in Second Data Breach
- British Airways Data Breach Takes Off Again with 185K More Victims
- Settlement in Yahoo data breach leaves company to pay $50M
- Pocket iNET ISP Exposed 73GB of Sensitive Data On Misconfigured S3 Bucket
- Campaign 2018: New malware attacks target voters in key battleground states
- Cathay Pacific Hacked, Personal Data For 9.4 Million Passengers Compromised
- Tracking Tick Through Recent Campaigns Targeting East Asia
- Details of 9mil compromised in Cathay Pacific data leak
- Cathay Pacific Suffered Data Breach Affecting 9.4 Million Customers
- BA website and data breach by Magecart deeper than first thought
- Malicious actors attacked a back-end insurance system and the resulting @HealthCareGov #breach exposed an unknown amount of data on 75,000
- Cathay Pacific hack: Personal data of up to 9.4 million airline passengers laid bare
- Cathay Pacific Says 9.4 Million Affected by Data Breach
- A #ZeroDay in the popular #jQuery File Upload plugin could affect thousands of projects and the jQuery #plugin vulnerability may
- Airline Discovers Trove of Frequent Flyer Accounts Compromised and Posted for Sale Online:
- British Airways data breach worse than thought
- Spammers Behind Historic Data Breach Affecting Millions of Facebook Users
- Cathay Pacific Airways Confirm Data Breach of its Customers
- “Advanced attacks, spear-phishing and data breaches are the norm, instead of the exception. We need to address these issues with
- New Malware Abusing Two Legitimate Windows Files to Steal Victims Personal Data
DENIAL-OF-SERVICE
- University DDoS attack leads to $8.6 million fine, house arrest for New Jersey man
- Bushido-Powered DDoS Service Whipped Up from Leaked Code
- 16K Strong DDoS-for-Hire Botnet Provides 420+ GB/s Club to Knock Out Websites
- DemonBot Fans DDoS Flames with Hadoop Enslavement
- New DemonBot Attack Hadoop Clusters to Performing DDoS Attacks using Powerful Cloud infrastructure servers
MALVERTISING
Nil
PHISHING
- Microsoft bug makes phishing easy, says cybersecurity firm
- PhishX –Spear Phishing Tool for Capturing Credentials
- “Advanced attacks, spear-phishing and data breaches are the norm, instead of the exception. We need to address these issues with
WEB DEFACEMENT
Nil
BOTNET
- Exploits Block List Grows 50% Because of Spambot, Avalanche/Gamarue botnet
- 16K Strong DDoS-for-Hire Botnet Provides 420+ GB/s Club to Knock Out Websites
- Chalubo Botnet
- Experts presented BOTCHAIN, the first fully functional Botnet built upon the Bitcoin Protocol
- New DemonBot Botnet Pulls the YARN in Hadoop Servers
RANSOMWARE
- The Week in Ransomware - October 26th 2018 - Decryptors, RaaS, and More
- 3 Keys to Reducing the Threat of Ransomware
CRYPTOMINING & CRYPTOCURRENCIES
- 23-year-old woman charged with stealing $320,000 worth of cryptocurrency
- 23-year-old woman charged with stealing $320,000 worth of cryptocurrency
- North Korea regime using and exploiting cryptocurrencies
- North Korea Backed Two Cryptocurrency Scams This Year, Says Report
- No Place for Security as Cryptocurrency Skills Demand Soars
- What Is Gridcoin and How Can It Advance Science?
- Experts presented BOTCHAIN, the first fully functional Botnet built upon the Bitcoin Protocol
- China’s Alibaba Cloud Expands Enterprise Blockchain Offering to Global Markets
- How to become a Monero million(th)aire in just 20 minutes [PODCAST]
MALWARE
- Due to Misconfigured Component: DemonBot Malware Infects Multiple Apache Hadoop Servers
- PoC Attack Leverages Microsoft Office and YouTube to Deliver Malware
- ICMP Shell- Secret Command and Control Channel to Control Victims Machine Using Ping
- Scammers use old browser trick to create fake virus download
- Campaign 2018: New malware attacks target voters in key battleground states
- DeepPhish: Simulating Malicious AI to Act Like an Adversary
- .@FireEye #security researchers claimed the Russian government was 'most likely' behind the #Triton #malware attack on an industrial control system
- Malicious actors attacked a back-end insurance system and the resulting @HealthCareGov #breach exposed an unknown amount of data on 75,000
- An innovative partnership could help Cyber Command fight malware
- New Malware Abusing Two Legitimate Windows Files to Steal Victims Personal Data
EXPLOIT
- This two-year-old X.org give-me-root hole is so trivial to exploit, you can fit it in a single tweet
VULNERABILITY
- CVE-2018-14665 privilege escalation flaw affects popular Linux distros
- Cloudflare WAF Bypass Vulnerability Discovered
- Code Execution Vulnerability Patched in Cross-Platform MKVToolNix Toolset
- Vulnerability Spotlight: Talos-2018-0694 – MKVToolNix mkvinfo read_one_element Code Execution Vulnerability
- Microsoft bug makes phishing easy, says cybersecurity firm
- A flaw in @Cisco Webex -- called WebExec -- can allow #RemoteCodeExecution. And while experts don't agree on how dangerous
- Pentagon Expands Bug Bounty To Include Physical Systems
- WebExec vulnerability leaves Webex open to insider attacks
- Trivial Bug in X.Org Gives Root Permission on Linux and BSD Systems
- Researchers discovered a vulnerability in Cisco #Webex, called #WebExec, which allows local attackers to issue commands as privileged users. @iagox86
- Cisco patches command injection bug in Webex Meetings Desktop App for Windows
- CVE-2018-9206 was maliciously exploited that multiple websites were linked to the search page to jump to the betting site
- CVE-2018-14665: Xorg X Server privilege escalation vulnerabilities
- What a crane in the ass: Bug leaves construction machinery vulnerable to evil command injection
- Researchers report vulnerability in Microsoft Word's online video feature
- A #ZeroDay in the popular #jQuery File Upload plugin could affect thousands of projects and the jQuery #plugin vulnerability may
- Vulnerability Spotlight: Talos-2018-0694 - MKVToolNix mkvinfo read_one_element Code Execution Vulnerability
- LIVE NETWORKS LIVE555 Streaming Media RTSP Server Remote Code Execution Vulnerability(CVE-2018-4013) Threat Alert
- New Privilege Escalation Flaw Affects Most Linux Distributions
- Top 5 Application Vulnerabilities: How to Prevent Risks
- 7 places to find threat intel beyond vulnerability databases
- Zero-day vulnerability in Windows allows privileges escalation
ASIA
- GreyEnergy cyberespionage group targets Poland and Ukraine
- Facebook removes Iranian influence campaign as midterms near
- Exploits Block List Grows 50% Because of Spambot, Avalanche/Gamarue botnet
- CVE-2018-14665 privilege escalation flaw affects popular Linux distros
- 23-year-old woman charged with stealing $320,000 worth of cryptocurrency
- Tracking Tick Through Recent Campaigns Targeting East Asia
- .@FireEye #security researchers claimed the Russian government was 'most likely' behind the #Triton #malware attack on an industrial control system
- North Korea regime using and exploiting cryptocurrencies
- North Korea Backed Two Cryptocurrency Scams This Year, Says Report
- LIVE NETWORKS LIVE555 Streaming Media RTSP Server Remote Code Execution Vulnerability(CVE-2018-4013) Threat Alert
- New Privilege Escalation Flaw Affects Most Linux Distributions
- Operation Oceansalt
- Hackers attack Cathay Pacific
- China’s Alibaba Cloud Expands Enterprise Blockchain Offering to Global Markets
- Russian sabotage in Saudi petrochemicals
OCEANIA
- 23-year-old woman charged with stealing $320,000 worth of cryptocurrency
- 23-year-old woman charged with stealing $320,000 worth of cryptocurrency
NORTH AMERICA
- University DDoS attack leads to $8.6 million fine, house arrest for New Jersey man
- 23-year-old woman charged with stealing $320,000 worth of cryptocurrency
- US Counters Russian Influence & Magecart Hacks Magento | Avast
- North Korea Backed Two Cryptocurrency Scams This Year, Says Report
- What a crane in the ass: Bug leaves construction machinery vulnerable to evil command injection
- China’s Alibaba Cloud Expands Enterprise Blockchain Offering to Global Markets
SOUTH AMERICA
Nil
EUROPE
- British Airways: additional 185,000 passengers may have been affected
- GreyEnergy cyberespionage group targets Poland and Ukraine
- British Airways: 185K Affected in Second Data Breach
- BA Website Hijacked by Magecart. Again. | Avast
- British Airways Data Breach Takes Off Again with 185K More Victims
- 23-year-old woman charged with stealing $320,000 worth of cryptocurrency
- US Counters Russian Influence & Magecart Hacks Magento | Avast
- .@FireEye #security researchers claimed the Russian government was 'most likely' behind the #Triton #malware attack on an industrial control system
- BA website and data breach by Magecart deeper than first thought
- No Place for Security as Cryptocurrency Skills Demand Soars
- BA Breach: An Extra 185K Customers Notified
- British Airways data breach worse than thought
- Experts presented BOTCHAIN, the first fully functional Botnet built upon the Bitcoin Protocol
- Hackers attack Cathay Pacific
- China’s Alibaba Cloud Expands Enterprise Blockchain Offering to Global Markets
- Second attack against British Airways is disclosed
- Russian sabotage in Saudi petrochemicals
AFRICA
Nil
