Sep 20, 2018

Threat report for 2018-09-19

DATA BREACH

  1. Survey: Nearly one-third of breached companies reported job losses after data breach
  2. Access to over 3,000 compromised sites sold on Russian black marketplace MagBo
  3. NSA Leak Fuels Rise in Hacking for Crypto Mining: Report
  4. Magecart claims another victim in Newegg merchant data theft
  5. Here we Mongo again! Millions of records exposed by insecure database
  6. How Facebook wants to protect political campaigners from hacking
  7. Yahoo settles for $47 million in litigation following data breach of 3 billion accounts
  8. State Department reveals data breach, employee information exposed
  9. Vulnerabilities Discovered in NUUO Network Video Recorder
  10. Veeam gets hacked: Data management enterprise exposes database with more than 400 million emails
  11. New ransomware campaign encrypts files even if the ransom is paid

DENIAL-OF-SERVICE

  1. A Hybrid Solution to Taming SOC Alert Overload
  2. The makers of the Mirai IoT-hijacking botnet are sentenced
  3. Mirai botnet authors avoid prison after "substantial assistance" to the FBI
  4. New Malware Combines Ransomware, Coin Mining and Botnet Features in One
  5. Mirai Botnet Creators Helping FBI Fight Cybercrime to Stay Out of Jail

MALVERTISING

  1. Nothing to report

DATA LEAK

  1. Nothing to report

PHISHING

  1. Phishing finance apps make way back into Google Play
  2. Hackers Constantly Carrying out Password Stealing Attacks Targeting Financial Services Industry
  3. FBI: Phishing Attacks Aim to Swap Payroll Information
  4. Credential Stuffing Attacks Generate Billions of Login Attempts
  5. This Windows file may be secretly hoarding your passwords and emails
  6. Your business should be more afraid of phishing than malware

WEB DEFACEMENT

  1. Nothing to report

MALWARE

  1. VAI MALANDRA: A LOOK INTO THE LIFECYCLE OF BRAZILIAN FINANCIAL MALWARE
  2. WANNAMINE CRYPTOMINER THAT USES ETERNALBLUE STILL ACTIVE
  3. Colorado firm claims ransomware attack behind closure
  4. Access to over 3,000 backdoored sites sold on Russian hacking forum
  5. NSA Leak Fuels Rise in Hacking for Crypto Mining: Report
  6. Researchers find new financial malware targeting banking customers in Brazil
  7. XBash Malware Packs Double Punch: Destroys Data and Mines for Crypto Coins
  8. The Past, the Present, and the Future of Illicit Cryptomining: Cyber Threat Alliance Publishes Landmark White Paper
  9. New Malware Combines Ransomware, Coin Mining and Botnet Features in One
  10. Your business should be more afraid of phishing than malware
  11. Cyber Threat Alliance Releases Cryptomining Whitepaper
  12. Hackers using Android & iOS Spyware “Pegasus” to Conducting Massive Surveillance Operations in 45 Countries
  13. New ransomware campaign encrypts files even if the ransom is paid

EXPLOIT

  1. Nothing to report

VULNERABILITY

  1. Adobe Patches Code Execution, Other Flaws in Acrobat and Reader
  2. Bug in Bitcoin code also opens smaller cryptocurrencies to attacks
  3. Rapid7 Threat Intelligence Book Club: ‘Countdown to Zero Day’ Recap
  4. ‘Peekaboo’ zero-day lets hackers view and alter surveillance camera footage
  5. WTB: Windows Systems Vulnerable To FragmentSmack, 90s-Like DoS Bug
  6. Flaw in Western Digital My Cloud exposes the content to hackers
  7. Vulnerabilities Discovered in NUUO Network Video Recorder
  8. Zero Day vulnerability allows access to CCTV cameras
  9. Windows 10 Build 18242 (19H1) Released With Bug Fixes
at
Labels:

Region brief for 2018-09-19

ASIA

  1. APT10 targets Japanese media company with upgraded UPPERCUT
  2. New Malware Combines Ransomware, Coin Mining and Botnet Features in One
  3. Zero Day vulnerability allows access to CCTV cameras
  4. Hackers using Android & iOS Spyware “Pegasus” to Conducting Massive Surveillance Operations in 45 Countries

OCEANIA

  1. Nothing to report

NORTH AMERICA

  1. NSA Leak Fuels Rise in Hacking for Crypto Mining: Report
  2. Magecart strikes again, this time at electronics retailer Newegg
  3. Yahoo settles for $47 million in litigation following data breach of 3 billion accounts
  4. Mirai Botnet Creators Helping FBI Fight Cybercrime to Stay Out of Jail

SOUTH AMERICA

  1. Researchers find new financial malware targeting banking customers in Brazil

EUROPE

  1. Access to over 3,000 compromised sites sold on Russian black marketplace MagBo
  2. Access to over 3,000 backdoored sites sold on Russian hacking forum
  3. Newegg Credit Card Info Stolen For a Month by Injected MageCart Script
  4. Another Victim of the Magecart Assault Emerges: Newegg
  5. Hackers Steal Customers' Credit Cards From Newegg Electronics Retailer

AFRICA

  1. Nothing to report
at
Labels:

Sector brief for 2018-09-19

HEALTHCARE

  1. Nothing to report

TRANSPORT

  1. Nothing to report

BANKING & FINANCE

  1. Phishing finance apps make way back into Google Play
  2. VAI MALANDRA: A LOOK INTO THE LIFECYCLE OF BRAZILIAN FINANCIAL MALWARE
  3. Magecart strikes again, this time at electronics retailer Newegg
  4. Researchers find new financial malware targeting banking customers in Brazil
  5. Hackers Constantly Carrying out Password Stealing Attacks Targeting Financial Services Industry
  6. Newegg Credit Card Info Stolen For a Month by Injected MageCart Script
  7. Another Victim of the Magecart Assault Emerges: Newegg
  8. Hackers Steal Customers' Credit Cards From Newegg Electronics Retailer
  9. FBI: Phishing Attacks Aim to Swap Payroll Information
  10. Credential Stuffing Attacks Generate Billions of Login Attempts

INFORMATION & TELECOMMUNICATION

  1. Nothing to report

FOOD

  1. Nothing to report

WATER

  1. Nothing to report

ENERGY

  1. Nothing to report

PUBLIC SERVICE

  1. Nothing to report
at
Labels:

Daily brief for 2018-09-19

ASIA

  1. APT10 targets Japanese media company with upgraded UPPERCUT
  2. New Malware Combines Ransomware, Coin Mining and Botnet Features in One
  3. Zero Day vulnerability allows access to CCTV cameras
  4. Hackers using Android & iOS Spyware “Pegasus” to Conducting Massive Surveillance Operations in 45 Countries

WORLD

  1. Access to over 3,000 compromised sites sold on Russian black marketplace MagBo
  2. Access to over 3,000 backdoored sites sold on Russian hacking forum
  3. NSA Leak Fuels Rise in Hacking for Crypto Mining: Report
  4. Magecart strikes again, this time at electronics retailer Newegg
  5. Researchers find new financial malware targeting banking customers in Brazil
  6. Newegg Credit Card Info Stolen For a Month by Injected MageCart Script
  7. Another Victim of the Magecart Assault Emerges: Newegg
  8. Hackers Steal Customers' Credit Cards From Newegg Electronics Retailer
  9. Yahoo settles for $47 million in litigation following data breach of 3 billion accounts
  10. Mirai Botnet Creators Helping FBI Fight Cybercrime to Stay Out of Jail

ATTACKS

  1. Phishing finance apps make way back into Google Play
  2. Survey: Nearly one-third of breached companies reported job losses after data breach
  3. Access to over 3,000 compromised sites sold on Russian black marketplace MagBo
  4. NSA Leak Fuels Rise in Hacking for Crypto Mining: Report
  5. Hackers Constantly Carrying out Password Stealing Attacks Targeting Financial Services Industry
  6. A Hybrid Solution to Taming SOC Alert Overload
  7. Magecart claims another victim in Newegg merchant data theft
  8. The makers of the Mirai IoT-hijacking botnet are sentenced
  9. Here we Mongo again! Millions of records exposed by insecure database
  10. How Facebook wants to protect political campaigners from hacking
  11. FBI: Phishing Attacks Aim to Swap Payroll Information
  12. Yahoo settles for $47 million in litigation following data breach of 3 billion accounts
  13. Mirai botnet authors avoid prison after "substantial assistance" to the FBI
  14. New Malware Combines Ransomware, Coin Mining and Botnet Features in One
  15. State Department reveals data breach, employee information exposed
  16. Credential Stuffing Attacks Generate Billions of Login Attempts
  17. This Windows file may be secretly hoarding your passwords and emails
  18. Your business should be more afraid of phishing than malware
  19. Mirai Botnet Creators Helping FBI Fight Cybercrime to Stay Out of Jail
  20. Vulnerabilities Discovered in NUUO Network Video Recorder
  21. Veeam gets hacked: Data management enterprise exposes database with more than 400 million emails
  22. New ransomware campaign encrypts files even if the ransom is paid

THREATS

  1. VAI MALANDRA: A LOOK INTO THE LIFECYCLE OF BRAZILIAN FINANCIAL MALWARE
  2. WANNAMINE CRYPTOMINER THAT USES ETERNALBLUE STILL ACTIVE
  3. Colorado firm claims ransomware attack behind closure
  4. Access to over 3,000 backdoored sites sold on Russian hacking forum
  5. Adobe Patches Code Execution, Other Flaws in Acrobat and Reader
  6. Bug in Bitcoin code also opens smaller cryptocurrencies to attacks
  7. NSA Leak Fuels Rise in Hacking for Crypto Mining: Report
  8. Researchers find new financial malware targeting banking customers in Brazil
  9. XBash Malware Packs Double Punch: Destroys Data and Mines for Crypto Coins
  10. Rapid7 Threat Intelligence Book Club: ‘Countdown to Zero Day’ Recap
  11. The Past, the Present, and the Future of Illicit Cryptomining: Cyber Threat Alliance Publishes Landmark White Paper
  12. ‘Peekaboo’ zero-day lets hackers view and alter surveillance camera footage
  13. WTB: Windows Systems Vulnerable To FragmentSmack, 90s-Like DoS Bug
  14. New Malware Combines Ransomware, Coin Mining and Botnet Features in One
  15. Your business should be more afraid of phishing than malware
  16. Flaw in Western Digital My Cloud exposes the content to hackers
  17. Vulnerabilities Discovered in NUUO Network Video Recorder
  18. Cyber Threat Alliance Releases Cryptomining Whitepaper
  19. Zero Day vulnerability allows access to CCTV cameras
  20. Hackers using Android & iOS Spyware “Pegasus” to Conducting Massive Surveillance Operations in 45 Countries
  21. New ransomware campaign encrypts files even if the ransom is paid
  22. Windows 10 Build 18242 (19H1) Released With Bug Fixes

CRIME

  1. Bug in Bitcoin code also opens smaller cryptocurrencies to attacks
  2. Magecart strikes again, this time at electronics retailer Newegg
  3. Researchers find new financial malware targeting banking customers in Brazil
  4. Newegg Credit Card Info Stolen For a Month by Injected MageCart Script
  5. Magecart claims another victim in Newegg merchant data theft
  6. XBash Malware Packs Double Punch: Destroys Data and Mines for Crypto Coins
  7. The Past, the Present, and the Future of Illicit Cryptomining: Cyber Threat Alliance Publishes Landmark White Paper
  8. Another Victim of the Magecart Assault Emerges: Newegg
  9. Hackers Steal Customers' Credit Cards From Newegg Electronics Retailer
  10. The makers of the Mirai IoT-hijacking botnet are sentenced
  11. FBI: Phishing Attacks Aim to Swap Payroll Information
  12. WTB: Windows Systems Vulnerable To FragmentSmack, 90s-Like DoS Bug
  13. Mirai botnet authors avoid prison after "substantial assistance" to the FBI
  14. Mirai Botnet Creators Helping FBI Fight Cybercrime to Stay Out of Jail
  15. Cyber Threat Alliance Releases Cryptomining Whitepaper
  16. New ransomware campaign encrypts files even if the ransom is paid

POLITICS

  1. ‘Peekaboo’ zero-day lets hackers view and alter surveillance camera footage
  2. Veeam gets hacked: Data management enterprise exposes database with more than 400 million emails
  3. Zero Day vulnerability allows access to CCTV cameras
at
Labels:

Sep 19, 2018

Threat report for 2018-09-18

Data Breach

  1. US Dept of State says attack on email system exposed employees’ personal data
  2. State Department email breach leaks employee PII
  3. 14 million customer records exposed in GovPayNow leak
  4. Xbash Malware Deletes Databases on Linux, Mines for Coins on Windows
  5. Survey: Nearly one-third of breached companies reported job losses after data breach
  6. Insiders Continue to be Data Theft’s Best Friend
  7. Symantec offers political campaigns service to guard against website spoofing
  8. Huge E-marketing Database that Contains 11 Million Sensitive Personal Records Exposed Online
  9. GovPayNow Leak of 14M+ Records Dates Back to 2012
  10. MongoDB server leaks 11 million user records from e-marketing service
  11. GovPayNow payment portal may have exposed over 14 million customer records
  12. Database with 11 Million Email Records Exposed
  13. UK watchdog has not issued any GDPR data breach-related fines yet
  14. Political Figures Differ Online: Names of Trump, Obama, Merkel Attached to Ransomware Campaigns
  15. 900,000 Australians opt out of My Health Record

Denial-of-Service

  1. Bizarre botnet infects your PC to scrub away cryptocurrency mining malware
  2. New Xbash Malware Attack on Linux & Windows with Botnet, Ransomware & Coinminer Capabilities
  3. New XBash malware combines features from ransomware, cryptocurrency miners, botnets, and worms

Malvertising

  1. Nothing to report

Data Leak

  1. Nothing to report

Phishing

  1. Here’s a Free Turnkey Phishing Awareness Program for National Cybersecurity Awareness Month
  2. Hackers selling research phished from universities on WhatsApp

Web Defacement

  1. Nothing to report

Malware

  1. NSO mobile Pegasus Spyware used in operations in 45 countries
  2. ThreatList: Malware Samples Targeting IoT More Than Double in 2018
  3. Xbash Malware Deletes Databases on Linux, Mines for Coins on Windows
  4. Chinese-speaking cybercrime group launches destructive malware family
  5. Pegasus spyware active in 45 countries, Citizen Lab says
  6. Destructive Xbash Linux Malware Targets Enterprise Intranets
  7. Dangerous Pegasus Spyware Has Spread to 45 Countries
  8. "Lawful intercept" Pegasus spyware found deployed in 45 countries
  9. Cybercrime: Ransomware remains a 'key' malware threat says Europol
  10. HIDE AND SEEK: Tracking NSO Group’s Pegasus Spyware to Operations in 45 Countries
  11. Bizarre botnet infects your PC to scrub away cryptocurrency mining malware
  12. Powerful Android and iOS Spyware Found Deployed in 45 Countries
  13. New Xbash Malware Attack on Linux & Windows with Botnet, Ransomware & Coinminer Capabilities
  14. New XBash malware combines features from ransomware, cryptocurrency miners, botnets, and worms
  15. Political Figures Differ Online: Names of Trump, Obama, Merkel Attached to Ransomware Campaigns
  16. Ransomware attack causes blackout on screens of Bristol Airport

Exploit

  1. 91 “child friendly” Android apps accused of exploitation
  2. Cracked Windows installations are serially infected with EternalBlue exploit code

Vulnerability

  1. Facebook Bug Bounty opens to reward access token exposure
  2. iOS Webkit flaw found that forces iPhone restart
  3. The NUUO Peekaboo vulnerability gives hackers your camera feed | Avast
  4. Intel releases firmware update for ME flaw
  5. Critical Vulnerability Impacts Hundreds of Thousands of IoT Cameras
  6. iOS 12 Brings Patches for 16 Security Vulnerabilities
  7. A flaw in Alpine Linux could allow executing arbitrary code
  8. Windows 10 Build 17763 Released As Microsoft Continues to Squash Bugs
  9. Hackers acknowledge Windows flaws but prefer social engineering tricks
  10. Critical RCE Peekaboo Bug in NVR Surveillance System, PoC Available
  11. Facebook Offers Rewards for Access Token Exposure Flaws
  12. Response Guide of IBM WebSphere Code Execution Vulnerability
at
Labels:

Region brief for 2018-09-18

Asia

  1. NSO mobile Pegasus Spyware used in operations in 45 countries
  2. Chinese-speaking cybercrime group launches destructive malware family
  3. Pegasus spyware active in 45 countries, Citizen Lab says
  4. Political Figures Differ Online: Names of Trump, Obama, Merkel Attached to Ransomware Campaigns

Oceania

  1. 900,000 Australians opt out of My Health Record

North America

  1. US Dept of State says attack on email system exposed employees’ personal data
  2. NSO mobile Pegasus Spyware used in operations in 45 countries
  3. 91 “child friendly” Android apps accused of exploitation
  4. GovPayNow Leak of 14M+ Records Dates Back to 2012
  5. Political Figures Differ Online: Names of Trump, Obama, Merkel Attached to Ransomware Campaigns

South America

  1. Nothing to report

Europe

  1. Broadcaster ABS-CBN customer data stolen, sent to Russian servers
  2. Hackers selling research phished from universities on WhatsApp
  3. UK watchdog has not issued any GDPR data breach-related fines yet
  4. Ransomware attack causes blackout on screens of Bristol Airport

Africa

  1. Nothing to report
at
Labels:

Sector brief for 2018-09-18

Healthcare

  1. Nothing to report

Transport

  1. Ransomware attack causes blackout on screens of Bristol Airport

Banking & Finance

  1. Destructive Xbash Linux Malware Targets Enterprise Intranets
  2. GovPayNow payment portal may have exposed over 14 million customer records

Information & Telecommunication

  1. Broadcaster ABS-CBN customer data stolen, sent to Russian servers

Food

  1. Nothing to report

Water

  1. Nothing to report

Energy

  1. Nothing to report

Public Service

  1. Symantec offers political campaigns service to guard against website spoofing
at
Labels:

Daily brief for 2018-09-18

Asia

  1. NSO mobile Pegasus Spyware used in operations in 45 countries
  2. Chinese-speaking cybercrime group launches destructive malware family
  3. Pegasus spyware active in 45 countries, Citizen Lab says
  4. Political Figures Differ Online: Names of Trump, Obama, Merkel Attached to Ransomware Campaigns

World

  1. US Dept of State says attack on email system exposed employees’ personal data
  2. NSO mobile Pegasus Spyware used in operations in 45 countries
  3. Broadcaster ABS-CBN customer data stolen, sent to Russian servers
  4. Hackers selling research phished from universities on WhatsApp
  5. 91 “child friendly” Android apps accused of exploitation
  6. GovPayNow Leak of 14M+ Records Dates Back to 2012
  7. UK watchdog has not issued any GDPR data breach-related fines yet
  8. Political Figures Differ Online: Names of Trump, Obama, Merkel Attached to Ransomware Campaigns
  9. Ransomware attack causes blackout on screens of Bristol Airport
  10. 900,000 Australians opt out of My Health Record

Attacks

  1. US Dept of State says attack on email system exposed employees’ personal data
  2. State Department email breach leaks employee PII
  3. 14 million customer records exposed in GovPayNow leak
  4. Xbash Malware Deletes Databases on Linux, Mines for Coins on Windows
  5. Survey: Nearly one-third of breached companies reported job losses after data breach
  6. Here’s a Free Turnkey Phishing Awareness Program for National Cybersecurity Awareness Month
  7. Hackers selling research phished from universities on WhatsApp
  8. Insiders Continue to be Data Theft’s Best Friend
  9. Symantec offers political campaigns service to guard against website spoofing
  10. Huge E-marketing Database that Contains 11 Million Sensitive Personal Records Exposed Online
  11. GovPayNow Leak of 14M+ Records Dates Back to 2012
  12. MongoDB server leaks 11 million user records from e-marketing service
  13. Bizarre botnet infects your PC to scrub away cryptocurrency mining malware
  14. GovPayNow payment portal may have exposed over 14 million customer records
  15. New Xbash Malware Attack on Linux & Windows with Botnet, Ransomware & Coinminer Capabilities
  16. New XBash malware combines features from ransomware, cryptocurrency miners, botnets, and worms
  17. Database with 11 Million Email Records Exposed
  18. UK watchdog has not issued any GDPR data breach-related fines yet
  19. Political Figures Differ Online: Names of Trump, Obama, Merkel Attached to Ransomware Campaigns
  20. 900,000 Australians opt out of My Health Record

Threats

  1. Facebook Bug Bounty opens to reward access token exposure
  2. iOS Webkit flaw found that forces iPhone restart
  3. NSO mobile Pegasus Spyware used in operations in 45 countries
  4. ThreatList: Malware Samples Targeting IoT More Than Double in 2018
  5. The NUUO Peekaboo vulnerability gives hackers your camera feed | Avast
  6. Intel releases firmware update for ME flaw
  7. Xbash Malware Deletes Databases on Linux, Mines for Coins on Windows
  8. Chinese-speaking cybercrime group launches destructive malware family
  9. Pegasus spyware active in 45 countries, Citizen Lab says
  10. Destructive Xbash Linux Malware Targets Enterprise Intranets
  11. Critical Vulnerability Impacts Hundreds of Thousands of IoT Cameras
  12. Dangerous Pegasus Spyware Has Spread to 45 Countries
  13. iOS 12 Brings Patches for 16 Security Vulnerabilities
  14. 91 “child friendly” Android apps accused of exploitation
  15. A flaw in Alpine Linux could allow executing arbitrary code
  16. Windows 10 Build 17763 Released As Microsoft Continues to Squash Bugs
  17. Hackers acknowledge Windows flaws but prefer social engineering tricks
  18. "Lawful intercept" Pegasus spyware found deployed in 45 countries
  19. Cybercrime: Ransomware remains a 'key' malware threat says Europol
  20. Critical RCE Peekaboo Bug in NVR Surveillance System, PoC Available
  21. Cracked Windows installations are serially infected with EternalBlue exploit code
  22. HIDE AND SEEK: Tracking NSO Group’s Pegasus Spyware to Operations in 45 Countries
  23. Bizarre botnet infects your PC to scrub away cryptocurrency mining malware
  24. Facebook Offers Rewards for Access Token Exposure Flaws
  25. Powerful Android and iOS Spyware Found Deployed in 45 Countries
  26. New Xbash Malware Attack on Linux & Windows with Botnet, Ransomware & Coinminer Capabilities
  27. New XBash malware combines features from ransomware, cryptocurrency miners, botnets, and worms
  28. Response Guide of IBM WebSphere Code Execution Vulnerability
  29. Political Figures Differ Online: Names of Trump, Obama, Merkel Attached to Ransomware Campaigns
  30. Ransomware attack causes blackout on screens of Bristol Airport

Crime

  1. Xbash Malware Deletes Databases on Linux, Mines for Coins on Windows
  2. Chinese-speaking cybercrime group launches destructive malware family
  3. Destructive Xbash Linux Malware Targets Enterprise Intranets
  4. Broadcaster ABS-CBN customer data stolen, sent to Russian servers
  5. Insiders Continue to be Data Theft’s Best Friend
  6. Cybercrime: Ransomware remains a 'key' malware threat says Europol
  7. GovPayNow Leak of 14M+ Records Dates Back to 2012
  8. GovPayNow payment portal may have exposed over 14 million customer records

Politics

  1. Symantec offers political campaigns service to guard against website spoofing
at
Labels:

Sep 18, 2018

Daily brief for 2018-09-17

Asia

  1. Zero day in popular video surveillance technology goes public, unpatched
  2. APT10 targets Japanese media company with upgraded UPPERCUT
  3. Deterrence or waste of time? Experts at odds over DOJ's actions on North Korea
  4. Amazon Probing Staff Data Leaks

World

  1. Zero day in popular video surveillance technology goes public, unpatched
  2. Ransomware Disrupts Flight Boards at U.K. Airport
  3. UK Airport Won’t Negotiate With Ransomware Attackers; Falls Back to Whiteboards
  4. Deterrence or waste of time? Experts at odds over DOJ's actions on North Korea
  5. Ransomware Takes Down Airport's Flight Information Screens
  6. Google Android team found high severity flaw in Honeywell Android-based handheld computers
  7. Ransomware Attack Hits Bristol Airport, Flight Display Screens Went Offline

Attacks

  1. iOS 12 Patches Memory Bugs, Safari 12 Fixes Data Leaks
  2. New XBash malware combines ransomware, coinminer, botnet, and worm features in deadly combo
  3. Apple iOS 12 security update tackles Safari spoofing, data leaks, kernel memory flaws
  4. Survey: Nearly one-third of breached companies reported job losses after data breach
  5. New Botnet Hides in Blockchain DNS Mist and Removes Cryptominer
  6. Survey: Nearly one-third of breached companies reported job losses after data breach
  7. Amazon Probing Staff Data Leaks
  8. Xbash Combines Botnet, Ransomware, Coinmining in Worm that Targets Linux and Windows
  9. On the hook! Phishing trip nets “Barbara” 5 years and whopping fine
  10. This new phishing attack uses an old trick to steal passwords and credit card details
  11. Amazon staff said to be taking bribes to leak data

Threats

  1. Zero-Day Bug Allows Hackers to Access CCTV Surveillance Cameras
  2. iOS 12 Patches Memory Bugs, Safari 12 Fixes Data Leaks
  3. New XBash malware combines ransomware, coinminer, botnet, and worm features in deadly combo
  4. Apple iOS 12 security update tackles Safari spoofing, data leaks, kernel memory flaws
  5. Proofpoint: One month out from deadline, half of agency domains are DMARC compliant
  6. Colorado firm claims ransomware attack behind closure
  7. Zero day in popular video surveillance technology goes public, unpatched
  8. New Botnet Hides in Blockchain DNS Mist and Removes Cryptominer
  9. Old WordPress Plugin Being Exploited in RCE Attacks
  10. New Xbash Malware a Cocktail of Malicious Functions
  11. Cyber scammers using Hurricane Florence as a hook for malicious emails
  12. Bristol airport hit with ransomware attack
  13. Colorado firm claims ransomware attack behind closure
  14. Facebook bolsters bug bounty program with rewards for user token exposure
  15. Hackers hijack surveillance camera footage with 'Peekaboo' zero-day vulnerability
  16. Ransomware Disrupts Flight Boards at U.K. Airport
  17. Privilege Escalation Vulnerability Found in Honeywell Android Computers
  18. UK Airport Won’t Negotiate With Ransomware Attackers; Falls Back to Whiteboards
  19. Uptick in malware designed to size up targets before launching full payload
  20. Ransomware Takes Down Airport's Flight Information Screens
  21. Xbash Combines Botnet, Ransomware, Coinmining in Worm that Targets Linux and Windows
  22. Why the 'fixed' Windows EternalBlue exploit won't die
  23. Google Android team found high severity flaw in Honeywell Android-based handheld computers
  24. Google's Android Team Finds Serious Flaw in Honeywell Devices
  25. Ransomware Attack Takes Down Bristol Airport's Flight Display Screens
  26. Wannamine Malware Still Penetrate the Unpatched SMB Computers using NSA’s EternalBlue Exploit
  27. Ransomware Attack Hits Bristol Airport, Flight Display Screens Went Offline
  28. Watch Out! This New Web Exploit Can Crash and Restart Your iPhone

Crime

  1. Zero day in popular video surveillance technology goes public, unpatched
  2. New Xbash Malware a Cocktail of Malicious Functions
  3. On the hook! Phishing trip nets “Barbara” 5 years and whopping fine
  4. This new phishing attack uses an old trick to steal passwords and credit card details
  5. Wannamine Malware Still Penetrate the Unpatched SMB Computers using NSA’s EternalBlue Exploit

Politics

  1. Amazon Probing Staff Data Leaks
at
Labels:

Sep 17, 2018

Daily brief for 2018-09-16

Asia

  1. Security Affairs newsletter Round 180 – News of the week

World

  1. Critical infrastructure will have to operate if there's malware on it or not
  2. Security Affairs newsletter Round 180 – News of the week

Attacks

  1. Survey: Nearly one-third of breached companies reported job losses after data breach
  2. Survey: Nearly one-third of breached companies reported job losses after data breach
  3. Feedify cloud service architecture compromised by MageCart crime gang

Threats

  1. Ransomware attack blacks out screens at Bristol Airport
  2. Critical infrastructure will have to operate if there's malware on it or not
  3. Uptick in malware designed to size up targets before launching full payload
  4. Hackers Spreading New Malware with Powerful Obfuscation Technique to Bypass Antivirus Software
  5. Honolulu-based Fetal Diagnostic Institute of the Pacific hit with ransomware

Crime

  1. Feedify cloud service architecture compromised by MageCart crime gang

Politics

  1. Nothing to report
at
Labels:

Sep 16, 2018

Daily brief for 2018-09-15

Asia

  1. China-linked APT10 group behind new attacks on the Japanese media sector

World

  1. China-linked APT10 group behind new attacks on the Japanese media sector
  2. Russian Hacker Who Operated Kelihos Botnet Pleads Guilty in US Federal Court

Attacks

  1. Russians and Latvians in DOJ crosshairs for cybercrimes, including running the Kelihos botnet
  2. Cobalt Gang phishing campaign targets Eastern Europeans with CobInt backdoor-downloader
  3. Russian Hacker Who Operated Kelihos Botnet Pleads Guilty in US Federal Court

Threats

  1. Uptick in malware designed to size up targets before launching full payload
  2. Colorado firm claims ransomware attack behind closure
  3. Apple’s Safari and Microsoft’s Edge browsers contain spoofing bug
  4. Cobalt Gang phishing campaign targets Eastern Europeans with CobInt backdoor-downloader
  5. New Brrr Dharma Ransomware Variant Released
  6. Experts disclose a Webroot SecureAnywhere macOS Kernel Level bug found months ago
  7. Windows Systems Vulnerable to FragmentSmack, 90s-Like DoS Bug
  8. Multiple vulnerabilities in Fuji Electric V-Server

Crime

  1. Russian Hacker Who Operated Kelihos Botnet Pleads Guilty in US Federal Court

Politics

  1. China-linked APT10 group behind new attacks on the Japanese media sector
at
Labels:

Sep 15, 2018

Daily brief for 2018-09-14

Asia

  1. China-linked APT10 Hackers Update Attack Techniques
  2. Well-known Middle Eastern hacking group keeps updating its arsenal
  3. Iran-Linked OilRig APT group targets high-ranking office in a Middle Eastern nation
  4. Illegal Patch Allows Easier Access to India's Aadhaar Biometric Database
  5. Chinese Cyber Espionage Group APT10 Delivers UPPERCUT Backdoor Via Malicious Word Documents
  6. N. Korea Calls Sony, Wannacry Hack Charges Smear Campaign
  7. North Korean hacker officially charged for the WannaCry attacks

World

  1. Evaluating the Threatscape One Year After NotPetya Ransomware Attack
  2. Security news: More phishing, Canada pays ransom, SMBs are a target | Avast
  3. Well-known Middle Eastern hacking group keeps updating its arsenal
  4. Iran-Linked OilRig APT group targets high-ranking office in a Middle Eastern nation
  5. Military, Government Users Just as Bad About Password Hygiene as Civilians
  6. Chinese Cyber Espionage Group APT10 Delivers UPPERCUT Backdoor Via Malicious Word Documents
  7. N. Korea Calls Sony, Wannacry Hack Charges Smear Campaign
  8. Major US mobile carriers want to be your password
  9. Russian man accused of running Kelihos botnet pleads guilty
  10. North Korean hacker officially charged for the WannaCry attacks
  11. Law firm begins legal action for data theft in British Airways
  12. Malware-as-a-Service – New Black Rose Lucy Malware Targets Android Devices With a Special Logic for Xiaomi Phones

Attacks

  1. Jaxx Cryptocurrency wallet phishing campaign shut down
  2. Cryptojacking campaign targets add-ons for popular streaming app Kodi
  3. How to Protect Against Phishing Attacks that Follow Natural Disasters
  4. Survey: Nearly one-third of breached companies reported job losses after data breach
  5. Survey: Nearly one-third of breached companies reported job losses after data breach
  6. MEGA Chrome extension compromised to steal credentials and cryptocurrency
  7. Security news: More phishing, Canada pays ransom, SMBs are a target | Avast
  8. Russians and Latvians in DOJ crosshairs for cybercrimes, including running the Kelihos botnet
  9. Data breaches affect stock performance in the long run, study finds
  10. Cobalt Gang phishing campaign targets Eastern Europeans with CobInt backdoor-downloader
  11. Military, Government Users Just as Bad About Password Hygiene as Civilians
  12. One-Third of Data Breaches Led to People Losing Jobs: Kaspersky
  13. DDoS attacks: Students blamed for many university cyber attacks
  14. Illegal Patch Allows Easier Access to India's Aadhaar Biometric Database
  15. N. Korea Calls Sony, Wannacry Hack Charges Smear Campaign
  16. Major US mobile carriers want to be your password
  17. Russian man accused of running Kelihos botnet pleads guilty
  18. Veeam Publicly Exposed 445 Million Customers Records Of its Marketing Database
  19. Cold Boot Attacks – Hackers Can Unlock All the Modern Computers and Steal Encryption Keys & Passwords
  20. Law firm begins legal action for data theft in British Airways

Threats

  1. Zerodium announced Tor vulnerability on Twitter -announced-tor-vulnerability-on-twitter/ …
  2. FragmentSmack vulnerability also affects Windows, but Microsoft patched it
  3. Google’s desktop update for Chrome squashes two bugs
  4. The Week in Ransomware - September 14th 2018 - Kraken, Dharma, & Matrix
  5. Evaluating the Threatscape One Year After NotPetya Ransomware Attack
  6. Colorado firm claims ransomware attack behind closure
  7. Uptick in malware designed to size up targets before launching full payload
  8. Fallout Exploit Kit Pushing the SAVEfiles Ransomware
  9. Microsoft Office 365 Customers Get Protection Against Malicious Macros
  10. Canadian town bows to ransomware attack, will pay attackers
  11. From PoC to Pwned: New Exploits Appear in Attacks Just Days After Disclosure
  12. Kraken Cryptor Ransomware Masquerading as SuperAntiSpyware Security Program
  13. Cobalt Gang phishing campaign targets Eastern Europeans with CobInt backdoor-downloader
  14. Honolulu-based Fetal Diagnostic Institute of the Pacific hit with ransomware
  15. Chinese Cyber Espionage Group APT10 Delivers UPPERCUT Backdoor Via Malicious Word Documents
  16. Apple’s Safari and Microsoft’s Edge browsers contain spoofing bug
  17. Malware-as-a-Service – New Black Rose Lucy Malware Targets Android Devices With a Special Logic for Xiaomi Phones

Crime

  1. Cryptojacking campaign targets add-ons for popular streaming app Kodi
  2. How to Protect Against Phishing Attacks that Follow Natural Disasters
  3. Russian man accused of running Kelihos botnet pleads guilty
  4. Law firm begins legal action for data theft in British Airways

Politics

  1. Chinese Cyber Espionage Group APT10 Delivers UPPERCUT Backdoor Via Malicious Word Documents
at
Labels:

Sep 14, 2018

Daily brief for 2018-09-13

Asia

  1. OilRig APT Continues Its Ongoing Malware Evolution
  2. APT10 Targeting Japanese Corporations Using Updated TTPs

World

  1. Russian man extradited to U.S. for ‘massive’ financial hacking campaign
  2. Bacloud: Russia’s New Misinformation Safe Haven
  3. Kelihos Botnet Operator Pleads Guilty in Federal Court
  4. Scareware scheme operator thrown behind bars for targeting US media
  5. Cobalt crime gang is using again CobInt malware in attacks on former soviet states
  6. Russian Hacker Pleads Guilty to Operating Kelihos Botnet
  7. Kelihos Botnet Author Pleads Guilty in U.S. Court
  8. New PyLocky Ransomware Attack on Various Organization that Encrypt More than 100 File Extensions
  9. Smashing Security : British Airways hack, Mac apps steal browser history, and one person has 285,000 texts leaked

Attacks

  1. Russian man extradited to U.S. for ‘massive’ financial hacking campaign
  2. Sly malware author hides cryptomining botnet behind ever-shifting proxy service
  3. Park by Phone data breach affects 5000 customers
  4. Cobalt Gang phishing campaign targets Eastern Europeans with CobInt backdoor-downloader
  5. Cold-Boot Attack Steals Passwords In Under Two Minutes
  6. Security flaw can leak Intel ME encryption keys
  7. New Necurs Spam Campaign Targets Banks with Malicious .Wiz Files
  8. Veeam leaves MongoDB database wide open, exposes 445m records
  9. Kelihos Botnet Operator Pleads Guilty in Federal Court
  10. Kodi add-ons launch cryptomining campaign
  11. Jaxx wallet phishing campaign aimed to steal user cryptocurrency
  12. Kelihos botnet operator jailed for account theft, ID trading in the Dark Web
  13. Files With 42 Million Emails and Passwords Found On Free Hosting Service
  14. Raise of IoT Botnets Responsible for Massive DDoS Attacks – Q2 2018 Threat Report
  15. Russian Hacker Pleads Guilty to Operating Kelihos Botnet
  16. Kelihos Botnet Author Pleads Guilty in U.S. Court
  17. Mongo Lock: The attack that deletes MongoDB databases
  18. Mongo Lock: The attack that deletes MongoDB databases
  19. Smashing Security : British Airways hack, Mac apps steal browser history, and one person has 285,000 texts leaked

Threats

  1. Domestic Kitten spyware targets ISIS supporters
  2. September Patch Tuesday: Adobe patches seven critical vulnerabilities
  3. Sly malware author hides cryptomining botnet behind ever-shifting proxy service
  4. Apple store apps are not all safe: Malwarebytes, Tripwire
  5. Uptick in malware designed to size up targets before launching full payload
  6. Honolulu-based Fetal Diagnostic Institute of the Pacific hit with ransomware
  7. Cobalt Gang phishing campaign targets Eastern Europeans with CobInt backdoor-downloader
  8. Apple’s Safari and Microsoft’s Edge browsers contain spoofing bug
  9. OilRig APT Continues Its Ongoing Malware Evolution
  10. Apache Struts exploit found in Mirai variant may signify shift in attack strategy
  11. Flaws in firmware expose almost any modern PC to Cold Boot Attacks
  12. ThreatList: Microsoft Macros Remain Top Vector for Malware Delivery
  13. Security flaw can leak Intel ME encryption keys
  14. How to Perform Manual SQL Injection With Integer Based Method
  15. [SingCERT] Alert on Critical Microsoft Vulnerabilities CVE-2018-8440, CVE-2018-8475, CVE-2018-0965, CVE-2018-8439 & CVE-2018-8449
  16. 2 Billion Bluetooth Devices Remain Exposed to Airborne Attack Vulnerabilities
  17. Really old computer viruses are still infecting new machines
  18. New Necurs Spam Campaign Targets Banks with Malicious .Wiz Files
  19. ICS CERT warns of several flaws in Fuji Electric V-Server
  20. Two billion devices still vulnerable to Blueborne flaws a year after discovery
  21. Prison for man who assisted scareware scheme that targeted newspaper website
  22. Microsoft Office Macros: Still Your Leader in Malware Delivery
  23. Windows and Linux Kodi users infected with cryptomining malware
  24. Kodi add-ons launch cryptomining campaign
  25. Ransomware attack shuts down small Canadian town; officials pay ransom
  26. New Firmware Flaws Resurrect Cold Boot Attacks
  27. New Gartner Report Recommends a Vulnerability Management Process Based on Weaponization and Asset Value
  28. Kernel exploit discovered in macOS Webroot SecureAnywhere antivirus software
  29. Malicious Kodi Add-ons Install Windows & Linux Coin Mining Trojans
  30. Scareware scheme operator thrown behind bars for targeting US media
  31. Cobalt crime gang is using again CobInt malware in attacks on former soviet states
  32. New PyLocky Ransomware stands out for anti-machine learning capability
  33. New PyLocky Ransomware Attack on Various Organization that Encrypt More than 100 File Extensions
  34. Smashing Security : British Airways hack, Mac apps steal browser history, and one person has 285,000 texts leaked

Crime

  1. Sly malware author hides cryptomining botnet behind ever-shifting proxy service
  2. Prison for man who assisted scareware scheme that targeted newspaper website
  3. Bacloud: Russia’s New Misinformation Safe Haven
  4. Windows and Linux Kodi users infected with cryptomining malware
  5. Kelihos Botnet Operator Pleads Guilty in Federal Court
  6. Kodi add-ons launch cryptomining campaign
  7. Ransomware attack shuts down small Canadian town; officials pay ransom
  8. New Gartner Report Recommends a Vulnerability Management Process Based on Weaponization and Asset Value
  9. Kelihos botnet operator jailed for account theft, ID trading in the Dark Web
  10. Files With 42 Million Emails and Passwords Found On Free Hosting Service
  11. Scareware scheme operator thrown behind bars for targeting US media
  12. Cobalt crime gang is using again CobInt malware in attacks on former soviet states
  13. Russian Hacker Pleads Guilty to Operating Kelihos Botnet
  14. Kelihos Botnet Author Pleads Guilty in U.S. Court

Politics

  1. APT10 Targeting Japanese Corporations Using Updated TTPs
  2. Bacloud: Russia’s New Misinformation Safe Haven
at
Labels:
Subscribe to: Posts (Atom)