TRANSNATIONAL / UNKNOWN
CHINA
Nil
INDIA
Nil
NORTH KOREA
PAKISTAN
Nil
VIETNAM
Nil
IRAN
Nil
IRAQ
Nil
LEBANON
Nil
PALESTINE
Nil
SAUDI ARABIA
Nil
SYRIA
Nil
TURKEY
Nil
UNITED ARAB EMIRATES
Nil
YEMEN
Nil
RUSSIA
Nil
SERBIA
Nil
UKRAINE
Nil
Nov 5, 2018
Platform report for 2018-11-04
WINDOWS
LINUX
- Security Affairs newsletter Round 187 – News of the week
- WireGuard has not been merged into the Linux kernel mainline
UNIX
Nil
ANDROID
Nil
IOS
MACOS
Nil
Threat report for 2018-11-04
DATA BREACH & DATA LOSS
DENIAL-OF-SERVICE
Nil
MALVERTISING
Nil
PHISHING
WEB DEFACEMENT
Nil
BOTNET
Nil
RANSOMWARE
- Kraken ransomware 2.0 is available through the RaaS model
- Targeted SamSam Ransomware Attacks Continues to Breaking & Lock 67 Different Organizations Network
CRYPTOMINING & CRYPTOCURRENCIES
MALWARE
- Week in review: Bleedingbit, nastiest malware of 2018, Cisco security appliances under attack
- Google logins make JavaScript mandatory, Huawei China spy shock, Mac malware, Iran gets new Stuxnet, and more
- What should you do when you realize you've click on a malicious link?
EXPLOIT
VULNERABILITY
- Vulnerability Scanners 101
- PortSmash flaw in Hyper-Threading CPU could allow sensitive data theft
- New Microsoft Edge Browser Zero-Day RCE Exploit in the Works
- Researchers recently found vulnerabilities within the robot controllers from @Universal_Robot. Learn what these #robot controllers are used for and how
- Why Vulnerability Management Does Not Work
- Bluetooth chip has serious security vulnerabilities that widely affect smart electronic products
- Intel processors are vulnerable to new PortSmash side-channel vulnerability
- New Intel CPU Flaw Exploits Hyper-Threading to Steal Encrypted Data
Region brief for 2018-11-04
ASIA
- Security Affairs newsletter Round 187 – News of the week
- Kraken ransomware 2.0 is available through the RaaS model
- Google logins make JavaScript mandatory, Huawei China spy shock, Mac malware, Iran gets new Stuxnet, and more
- Bluetooth chip has serious security vulnerabilities that widely affect smart electronic products
OCEANIA
NORTH AMERICA
- Who’s In Your Online Shopping Cart?
- PortSmash flaw in Hyper-Threading CPU could allow sensitive data theft
- Security Affairs newsletter Round 187 – News of the week
- Targeted SamSam Ransomware Attacks Continues to Breaking & Lock 67 Different Organizations Network
- Intel processors are vulnerable to new PortSmash side-channel vulnerability
- WireGuard has not been merged into the Linux kernel mainline
SOUTH AMERICA
EUROPE
- Who’s In Your Online Shopping Cart?
- PortSmash flaw in Hyper-Threading CPU could allow sensitive data theft
- Security Affairs newsletter Round 187 – News of the week
- Kraken ransomware 2.0 is available through the RaaS model
- Bluetooth chip has serious security vulnerabilities that widely affect smart electronic products
- Intel processors are vulnerable to new PortSmash side-channel vulnerability
AFRICA
Sector brief for 2018-11-04
HEALTHCARE
TRANSPORT
BANKING & FINANCE
- Who’s In Your Online Shopping Cart?
- Kraken ransomware 2.0 is available through the RaaS model
- Beware!! Cyber Criminals Stealing Cash From Cardless ATM Using SMS Phishing Attack
INFORMATION & TELECOMMUNICATION
- Who’s In Your Online Shopping Cart?
- Security Affairs newsletter Round 187 – News of the week
- Kraken ransomware 2.0 is available through the RaaS model
FOOD
Nil
WATER
Nil
ENERGY
GOVERNMENT & PUBLIC SERVICE
Daily brief for 2018-11-04
ASIA
- Security Affairs newsletter Round 187 – News of the week
- Kraken ransomware 2.0 is available through the RaaS model
- Google logins make JavaScript mandatory, Huawei China spy shock, Mac malware, Iran gets new Stuxnet, and more
- Bluetooth chip has serious security vulnerabilities that widely affect smart electronic products
WORLD
- Who’s In Your Online Shopping Cart?
- PortSmash flaw in Hyper-Threading CPU could allow sensitive data theft
- Security Affairs newsletter Round 187 – News of the week
- Kraken ransomware 2.0 is available through the RaaS model
- Targeted SamSam Ransomware Attacks Continues to Breaking & Lock 67 Different Organizations Network
- Bluetooth chip has serious security vulnerabilities that widely affect smart electronic products
- Intel processors are vulnerable to new PortSmash side-channel vulnerability
- WireGuard has not been merged into the Linux kernel mainline
ATTACKS
- PortSmash flaw in Hyper-Threading CPU could allow sensitive data theft
- Beware!! Cyber Criminals Stealing Cash From Cardless ATM Using SMS Phishing Attack
THREATS
- Week in review: Bleedingbit, nastiest malware of 2018, Cisco security appliances under attack
- Vulnerability Scanners 101
- PortSmash flaw in Hyper-Threading CPU could allow sensitive data theft
- New Microsoft Edge Browser Zero-Day RCE Exploit in the Works
- Kraken ransomware 2.0 is available through the RaaS model
- Google logins make JavaScript mandatory, Huawei China spy shock, Mac malware, Iran gets new Stuxnet, and more
- Targeted SamSam Ransomware Attacks Continues to Breaking & Lock 67 Different Organizations Network
- What should you do when you realize you've click on a malicious link?
- Researchers recently found vulnerabilities within the robot controllers from @Universal_Robot. Learn what these #robot controllers are used for and how
- Why Vulnerability Management Does Not Work
- Bluetooth chip has serious security vulnerabilities that widely affect smart electronic products
- Intel processors are vulnerable to new PortSmash side-channel vulnerability
- New Intel CPU Flaw Exploits Hyper-Threading to Steal Encrypted Data
CRIME
- PortSmash flaw in Hyper-Threading CPU could allow sensitive data theft
- Security Affairs newsletter Round 187 – News of the week
- Kraken ransomware 2.0 is available through the RaaS model
POLITICS
Nov 4, 2018
APT report for 2018-11-03
TRANSNATIONAL / UNKNOWN
CHINA
INDIA
Nil
NORTH KOREA
Nil
PAKISTAN
Nil
VIETNAM
Nil
IRAN
Nil
IRAQ
Nil
LEBANON
Nil
PALESTINE
Nil
SAUDI ARABIA
Nil
SYRIA
Nil
TURKEY
Nil
UNITED ARAB EMIRATES
Nil
YEMEN
Nil
RUSSIA
SERBIA
Nil
UKRAINE
Nil
Threat report for 2018-11-03
DATA BREACH & DATA LOSS
- Weekly Threat Briefing: HealthCare.gov Suffered Data Breach As Hackers Stole 75,000 Records
- Business Email Compromise: Must-Have Defenses
- Radisson Suffers Global Loyalty Program Data Breach
- Android Devices Remain Unsecured, While Two Botnets Fight For Dominance
- Discover how #NetSpectre attacks leak data remotely via side-channels with Michael Cobb of @thehairyITdog.
DENIAL-OF-SERVICE
Nil
MALVERTISING
Nil
PHISHING
WEB DEFACEMENT
Nil
BOTNET
RANSOMWARE
- SamSam ransomware continues to make damages. Call it targeted Ransomware
- #SamSam #ransomware targeted 67 organizations in 2018, according to @symantec research. By @MaddieBacon11
- #Kraken #ransomware as a service is getting more popular after being bundled into the Fallout #ExploitKit and getting more update
- The Week in Ransomware - November 2nd 2018 - RaaS, DiskCryptor, & More
CRYPTOMINING & CRYPTOCURRENCIES
- Blockchain as a Tool for Cybersecurity
- #Kraken #ransomware as a service is getting more popular after being bundled into the Fallout #ExploitKit and getting more update
MALWARE
- Web domain owners paid EasyDNS to cloak their contact info from sight. It was blabbed via public Whois anyway
- BBC micro:bit vendor Kitronik says customers' deets nicked, fingers Magecart malware
- Gotta love how Robert Tappan Morris describes his Morris worm background in his bio: ”In 1988 his discovery of buffer
- New Trickbot Malware Steal Password & Other Sensitive Data From Microsoft Outlook,Chrome,Firefox, IE, Edge
EXPLOIT
VULNERABILITY
- The Responsible Disclosure of Software Vulnerabilities in the Nutshell
- .@Siemens central plant clocks were affected by six SICLOCK flaws, three have been rated "critical." Learn what these SICLOCK flaws
- Six flaws were recently found in @Siemens SICLOCK central plant clocks. Learn what these clocks do, which clocks were infected
- Researchers say #Bleedingbit vulnerabilities could allow #RemoteCodeExecution on wireless access points, medical devices and any other products using the affected
Region brief for 2018-11-03
ASIA
- Weekly Threat Briefing: HealthCare.gov Suffered Data Breach As Hackers Stole 75,000 Records
- SamSam ransomware continues to make damages. Call it targeted Ransomware
OCEANIA
NORTH AMERICA
- Weekly Threat Briefing: HealthCare.gov Suffered Data Breach As Hackers Stole 75,000 Records
- SamSam ransomware continues to make damages. Call it targeted Ransomware
SOUTH AMERICA
Nil
EUROPE
- BBC micro:bit vendor Kitronik says customers' deets nicked, fingers Magecart malware
- Weekly Threat Briefing: HealthCare.gov Suffered Data Breach As Hackers Stole 75,000 Records
- SamSam ransomware continues to make damages. Call it targeted Ransomware
- "The resurgence of #VPNFilter #botnet appears to be limited to the Ukraine, but given the ease of infecting targeted systems,
AFRICA
Nil
Sector brief for 2018-11-03
HEALTHCARE
- Weekly Threat Briefing: HealthCare.gov Suffered Data Breach As Hackers Stole 75,000 Records
- SamSam ransomware continues to make damages. Call it targeted Ransomware
- Researchers say #Bleedingbit vulnerabilities could allow #RemoteCodeExecution on wireless access points, medical devices and any other products using the affected
TRANSPORT
BANKING & FINANCE
Nil
INFORMATION & TELECOMMUNICATION
FOOD
Nil
WATER
Nil
ENERGY
GOVERNMENT & PUBLIC SERVICE
Daily brief for 2018-11-03
ASIA
- Weekly Threat Briefing: HealthCare.gov Suffered Data Breach As Hackers Stole 75,000 Records
- SamSam ransomware continues to make damages. Call it targeted Ransomware
WORLD
- BBC micro:bit vendor Kitronik says customers' deets nicked, fingers Magecart malware
- Weekly Threat Briefing: HealthCare.gov Suffered Data Breach As Hackers Stole 75,000 Records
- SamSam ransomware continues to make damages. Call it targeted Ransomware
- "The resurgence of #VPNFilter #botnet appears to be limited to the Ukraine, but given the ease of infecting targeted systems,
ATTACKS
- Weekly Threat Briefing: HealthCare.gov Suffered Data Breach As Hackers Stole 75,000 Records
- Business Email Compromise: Must-Have Defenses
- Radisson Suffers Global Loyalty Program Data Breach
- Android Devices Remain Unsecured, While Two Botnets Fight For Dominance
- Discover how #NetSpectre attacks leak data remotely via side-channels with Michael Cobb of @thehairyITdog.
- New Trickbot Malware Steal Password & Other Sensitive Data From Microsoft Outlook,Chrome,Firefox, IE, Edge
THREATS
- The Responsible Disclosure of Software Vulnerabilities in the Nutshell
- Web domain owners paid EasyDNS to cloak their contact info from sight. It was blabbed via public Whois anyway
- BBC micro:bit vendor Kitronik says customers' deets nicked, fingers Magecart malware
- Blockchain as a Tool for Cybersecurity
- .@Siemens central plant clocks were affected by six SICLOCK flaws, three have been rated "critical." Learn what these SICLOCK flaws
- Six flaws were recently found in @Siemens SICLOCK central plant clocks. Learn what these clocks do, which clocks were infected
- SamSam ransomware continues to make damages. Call it targeted Ransomware
- Gotta love how Robert Tappan Morris describes his Morris worm background in his bio: ”In 1988 his discovery of buffer
- New Trickbot Malware Steal Password & Other Sensitive Data From Microsoft Outlook,Chrome,Firefox, IE, Edge
- Researchers say #Bleedingbit vulnerabilities could allow #RemoteCodeExecution on wireless access points, medical devices and any other products using the affected
- #SamSam #ransomware targeted 67 organizations in 2018, according to @symantec research. By @MaddieBacon11
- #Kraken #ransomware as a service is getting more popular after being bundled into the Fallout #ExploitKit and getting more update
- The Week in Ransomware - November 2nd 2018 - RaaS, DiskCryptor, & More
CRIME
- Weekly Threat Briefing: HealthCare.gov Suffered Data Breach As Hackers Stole 75,000 Records
- Business Email Compromise: Must-Have Defenses
- Radisson Suffers Global Loyalty Program Data Breach
POLITICS
Nov 3, 2018
APT report for 2018-11-02
TRANSNATIONAL / UNKNOWN
- Magecart cybergang targeting e-commerce credit card data
- Magecart claims fresh victim in electronics kit seller Kitronik
CHINA
INDIA
Nil
NORTH KOREA
Nil
PAKISTAN
Nil
VIETNAM
Nil
IRAN
Nil
IRAQ
Nil
LEBANON
Nil
PALESTINE
Nil
SAUDI ARABIA
Nil
SYRIA
Nil
TURKEY
Nil
UNITED ARAB EMIRATES
Nil
YEMEN
Nil
RUSSIA
- New Data Affirms Cyber Threat for Industrial Control Systems
- Beware this malware: it can even survive operating systems being reinstalled
SERBIA
Nil
UKRAINE
Nil
Platform report for 2018-11-02
WINDOWS
- Shellbot Variant Used in New Botnet, Spreads Using IoT and Linux Vulnerabilities
- Spam campaign targets Exodus Mac Users
- New Data Affirms Cyber Threat for Industrial Control Systems
- This Week in Security News: Spam Campaigns and Vulnerable Infrastructures
- How to password protect a folder or file in Windows | Avast
- Beware this malware: it can even survive operating systems being reinstalled
- Search for “Installing Chrome” on Bing can lead to malicious content
LINUX
- Shellbot Variant Used in New Botnet, Spreads Using IoT and Linux Vulnerabilities
- Outlaw Hacking Group Using Command Injection Flow To Attack Organizations Network using Botnet via C&C Server
- Systemd Vulnerability In Linux Could Trigger Remote Attacks And System Crashes
UNIX
Nil
ANDROID
- Two botnets are fighting over control of thousands of unsecured Android devices
- Shellbot Variant Used in New Botnet, Spreads Using IoT and Linux Vulnerabilities
IOS
Nil
MACOS
Threat report for 2018-11-02
DATA BREACH & DATA LOSS
- Two botnets are fighting over control of thousands of unsecured Android devices
- Joshua Adam Schulte, ex CIA employee, accused of continuing leaks from prison
- Spam campaign targets Exodus Mac Users
- 120 Million Facebook Accounts Compromised, Private Messages of 81,000 for Sale
- #SamSam #ransomware continues to be a thorn in the side of organizations in the U.S. with targeted ransomware campaigns continuing,
- 85 Millions of voter records available for sale ahead of the 2018 US Midterm Elections
- ePHI of 8,000 Patients Exposed in Health Plan Breach
- Facebook has experienced a number of security-related issues lately, but it doesn't appear to be at fault for the leak
- This Week in Security News: Spam Campaigns and Vulnerable Infrastructures
- Russian hackers compromise 120 million Facebook accounts; private messages on sale online
- SamSam ransomware campaigns continue to target U.S. in 2018
- Feds Accuse Ex-CIA Employee of Continuing Leaks From Prison
- Radisson Hotel Group Hit by Data Breach
- Spam campaign targets Exodus Mac Users
- Shipbuilder, defense contractor Austal reveals data breach
- Data theft at Radisson Hotel Group
- 85 million voter records on sale
- Iran has become victim of a cyberattack campaign
- Apache HBase 2.1.1 release, distributed database
- FIFA admits hack and braces for new leaks
DENIAL-OF-SERVICE
- ThreatList: Fewer Big DDoS Attacks in Q3, Overall Rate Holds Steady
- Bushido Botnet and DDoS-for-Hire
MALVERTISING
Nil
PHISHING
- SMS Phishing + Cardless ATM = Profit
- "While most phishing attacks on desktop and laptop computers come via email... a mobile device attack vector can be in
- #Phishing targets data that lives outside your enterprise perimeter—putting your entire enterprise at risk. Learn how post-perimeter security enables you
- How to password protect a folder or file in Windows | Avast
- Just half of Fortune 500 companies have installed DMARC, a tool that guards against email phishing scams, according to new
- Multiple #phishing pages on multiple domains targeting Canadian citizens posing as Canadian Revenue Agency, Interac, and others 192.99.86.132 (@OVH) cc: @cybercentre_ca
- YAPBS – Yet Another Password Breach Scam
WEB DEFACEMENT
Nil
BOTNET
- Shellbot Variant Used in New Botnet, Spreads Using IoT and Linux Vulnerabilities
- Bushido Botnet and DDoS-for-Hire
- Outlaw Hacking Group Using Command Injection Flow To Attack Organizations Network using Botnet via C&C Server
- BCMUPnP_Hunter: 100,000-node botnet is abusing routers for spam
- 'Outlaw' threat actor uses Shellbot variant to form new botnet
RANSOMWARE
- New Ransomware using DiskCryptor With Custom Ransom Message
- #SamSam #ransomware continues to be a thorn in the side of organizations in the U.S. with targeted ransomware campaigns continuing,
- Researchers found #Kraken #ransomware has become more popular after being packaged in the Fallout #ExploitKit and becoming part of an
- SamSam ransomware campaigns continue to target U.S. in 2018
- Kraken ransomware gets packaged into Fallout EK
- Giant ransomware bundle threatens to make malware attacks easier for crooks
CRYPTOMINING & CRYPTOCURRENCIES
- Researchers found #Kraken #ransomware has become more popular after being packaged in the Fallout #ExploitKit and becoming part of an
- Kraken ransomware gets packaged into Fallout EK
- Blockwatch: The aeternity Blockchain
- Trading with cryptocurrencies without losing self control
- EY launches the world's first secure private transactions over the Ethereum public blockchain
- Another packed room for .@idefense analyst Mei Nelson discussing China and cryptocurrency. #codeblue_jp @AccentureSecure @AccentureJPNews
MALWARE
- Facebook Blames Malicious Extensions in Breach of 81K Private Messages
- The day computer security turned real: The Morris Worm turns 30
- Worst Malware and Threat Actors of 2018
- Adversaries Distribute Malware Via Rarely Used Extensions
- Can you spot a malicious email? Take the quiz at
- Antimalware Day: The evolution of malicious code
- Outlaw Hacking Group Using Command Injection Flow To Attack Organizations Network using Botnet via C&C Server
- Beware this malware: it can even survive operating systems being reinstalled
- Emotet Trojan Changes Tactics…Again
- Giant ransomware bundle threatens to make malware attacks easier for crooks
- If you think you have been hacked or got #malware installed, disconnect the internet, leave your device running and connected
- U.S. Geological Survey Network got Infected with Malware
- Search for “Installing Chrome” on Bing can lead to malicious content
- Previous malware attacks: When more than 7,5000 of the #Mikrotik routes were reportedly being spied on by attackers
EXPLOIT
- Kraken ransomware gets packaged into Fallout EK
- How to Perform Manual SQL Injection With Double quotes Error Based String Method
- Researchers recently found vulnerabilities in #robot controllers from @Universal_Robot. Learn what these robot controllers do and how #ThreatActors exploit these
VULNERABILITY
- Shellbot Variant Used in New Botnet, Spreads Using IoT and Linux Vulnerabilities
- Cisco Security Appliance Zero-Day Found Actively Exploited in the Wild
- BLEEDINGBIT – Two Zero Day Vulnerabilities Affecting Wireless Access Point Bluetooth Chips
- Hackers actively exploiting vulnerabilities in Cisco security appliances
- Cisco fixed the high-risk security vulnerabilities in variant products
- Bluetooth Bugs Speak to Lack of Security in DevOps
- Sauter Quickly Patches Flaw in Building Automation Software
- Bleedingbit vulnerabilities put Wi-Fi access points at risk
- Test IO introduces Bug Fix Confirmation, leveraging network of software testers to verify bug fixes
- Flaw in Sophos HitmanPro.Alert could enable hackers to gain privileges over systems
- Intel CPUs impacted by new PortSmash side-channel vulnerability
- CISCO warn of a zero-day DoS flaw that is being actively exploited in attacks
- Systemd Vulnerability In Linux Could Trigger Remote Attacks And System Crashes
- .@ArmisSecurity researchers discovered two chip-level #Bluetooth vulnerabilities -- dubbed #Bleedingbit -- that could allow pseudo #RemoteCodeExecution on wireless access points.
- Cisco Reports SIP Inspection Vulnerability
- Mozilla exorcises five bugs on Halloween
- Researchers recently found vulnerabilities in #robot controllers from @Universal_Robot. Learn what these robot controllers do and how #ThreatActors exploit these
- BLEEDINGBIT – Two Bluetooth Chip-level Vulnerabilities Affected Millions of Enterprise Wi-Fi Access Point Devices
- GNOME 3.30.2 released: bugs fix
- Attackers Use Zero-Day That Can Restart Cisco Security Appliances
Region brief for 2018-11-02
ASIA
- Shellbot Variant Used in New Botnet, Spreads Using IoT and Linux Vulnerabilities
- Stuxnet Returns, Striking Iran with New Variant
- This Week in Security News: Spam Campaigns and Vulnerable Infrastructures
- Outlaw Hacking Group Using Command Injection Flow To Attack Organizations Network using Botnet via C&C Server
- BCMUPnP_Hunter: 100,000-node botnet is abusing routers for spam
- Iran has become victim of a cyberattack campaign
- Another packed room for .@idefense analyst Mei Nelson discussing China and cryptocurrency. #codeblue_jp @AccentureSecure @AccentureJPNews
OCEANIA
Nil
NORTH AMERICA
- Joshua Adam Schulte, ex CIA employee, accused of continuing leaks from prison
- New Data Affirms Cyber Threat for Industrial Control Systems
- #SamSam #ransomware continues to be a thorn in the side of organizations in the U.S. with targeted ransomware campaigns continuing,
- 85 Millions of voter records available for sale ahead of the 2018 US Midterm Elections
- SMS Phishing + Cardless ATM = Profit
- Stuxnet Returns, Striking Iran with New Variant
- Bluetooth Bugs Speak to Lack of Security in DevOps
- This Week in Security News: Spam Campaigns and Vulnerable Infrastructures
- Russian hackers compromise 120 million Facebook accounts; private messages on sale online
- SamSam ransomware campaigns continue to target U.S. in 2018
- BCMUPnP_Hunter: 100,000-node botnet is abusing routers for spam
- Multiple #phishing pages on multiple domains targeting Canadian citizens posing as Canadian Revenue Agency, Interac, and others 192.99.86.132 (@OVH) cc: @cybercentre_ca
- U.S. Geological Survey Network got Infected with Malware
- 85 million voter records on sale
- Iran has become victim of a cyberattack campaign
- EY launches the world's first secure private transactions over the Ethereum public blockchain
SOUTH AMERICA
EUROPE
- Shellbot Variant Used in New Botnet, Spreads Using IoT and Linux Vulnerabilities
- Magecart cybergang targeting e-commerce credit card data
- 120 Million Facebook Accounts Compromised, Private Messages of 81,000 for Sale
- Stuxnet Returns, Striking Iran with New Variant
- Sauter Quickly Patches Flaw in Building Automation Software
- This Week in Security News: Spam Campaigns and Vulnerable Infrastructures
- Russian hackers compromise 120 million Facebook accounts; private messages on sale online
- Beware this malware: it can even survive operating systems being reinstalled
- Magecart claims fresh victim in electronics kit seller Kitronik
- Iran has become victim of a cyberattack campaign
- EY launches the world's first secure private transactions over the Ethereum public blockchain
AFRICA
Nil
Sector brief for 2018-11-02
HEALTHCARE
- ePHI of 8,000 Patients Exposed in Health Plan Breach
- This Week in Security News: Spam Campaigns and Vulnerable Infrastructures
TRANSPORT
Nil
BANKING & FINANCE
- Magecart cybergang targeting e-commerce credit card data
- New Data Affirms Cyber Threat for Industrial Control Systems
- SMS Phishing + Cardless ATM = Profit
- This Week in Security News: Spam Campaigns and Vulnerable Infrastructures
- Emotet Trojan Changes Tactics…Again
- Shipbuilder, defense contractor Austal reveals data breach
- Data theft at Radisson Hotel Group
- Trading with cryptocurrencies without losing self control
- EY launches the world's first secure private transactions over the Ethereum public blockchain
INFORMATION & TELECOMMUNICATION
- Facebook Blames Malicious Extensions in Breach of 81K Private Messages
- Joshua Adam Schulte, ex CIA employee, accused of continuing leaks from prison
- New Data Affirms Cyber Threat for Industrial Control Systems
- 120 Million Facebook Accounts Compromised, Private Messages of 81,000 for Sale
- 85 Millions of voter records available for sale ahead of the 2018 US Midterm Elections
- Bluetooth Bugs Speak to Lack of Security in DevOps
- Facebook has experienced a number of security-related issues lately, but it doesn't appear to be at fault for the leak
- "While most phishing attacks on desktop and laptop computers come via email... a mobile device attack vector can be in
- #Phishing targets data that lives outside your enterprise perimeter—putting your entire enterprise at risk. Learn how post-perimeter security enables you
- Can you spot a malicious email? Take the quiz at
- This Week in Security News: Spam Campaigns and Vulnerable Infrastructures
- Russian hackers compromise 120 million Facebook accounts; private messages on sale online
- BCMUPnP_Hunter: 100,000-node botnet is abusing routers for spam
- Just half of Fortune 500 companies have installed DMARC, a tool that guards against email phishing scams, according to new
- Multiple #phishing pages on multiple domains targeting Canadian citizens posing as Canadian Revenue Agency, Interac, and others 192.99.86.132 (@OVH) cc: @cybercentre_ca
- If you think you have been hacked or got #malware installed, disconnect the internet, leave your device running and connected
- 85 million voter records on sale
- Search for “Installing Chrome” on Bing can lead to malicious content
- YAPBS – Yet Another Password Breach Scam
- Previous malware attacks: When more than 7,5000 of the #Mikrotik routes were reportedly being spied on by attackers
- Another packed room for .@idefense analyst Mei Nelson discussing China and cryptocurrency. #codeblue_jp @AccentureSecure @AccentureJPNews
FOOD
Nil
WATER
Nil
ENERGY
- New Data Affirms Cyber Threat for Industrial Control Systems
- Bluetooth Bugs Speak to Lack of Security in DevOps
- This Week in Security News: Spam Campaigns and Vulnerable Infrastructures
- Iran has become victim of a cyberattack campaign
- BLEEDINGBIT – Two Bluetooth Chip-level Vulnerabilities Affected Millions of Enterprise Wi-Fi Access Point Devices
GOVERNMENT & PUBLIC SERVICE
- Shellbot Variant Used in New Botnet, Spreads Using IoT and Linux Vulnerabilities
- Joshua Adam Schulte, ex CIA employee, accused of continuing leaks from prison
- 85 Millions of voter records available for sale ahead of the 2018 US Midterm Elections
- Outlaw Hacking Group Using Command Injection Flow To Attack Organizations Network using Botnet via C&C Server
- Russian hackers compromise 120 million Facebook accounts; private messages on sale online
- U.S. Geological Survey Network got Infected with Malware
- 85 million voter records on sale
- Iran has become victim of a cyberattack campaign
Daily brief for 2018-11-02
ASIA
- Shellbot Variant Used in New Botnet, Spreads Using IoT and Linux Vulnerabilities
- Stuxnet Returns, Striking Iran with New Variant
- This Week in Security News: Spam Campaigns and Vulnerable Infrastructures
- Outlaw Hacking Group Using Command Injection Flow To Attack Organizations Network using Botnet via C&C Server
- BCMUPnP_Hunter: 100,000-node botnet is abusing routers for spam
- Iran has become victim of a cyberattack campaign
- Another packed room for .@idefense analyst Mei Nelson discussing China and cryptocurrency. #codeblue_jp @AccentureSecure @AccentureJPNews
WORLD
- Shellbot Variant Used in New Botnet, Spreads Using IoT and Linux Vulnerabilities
- Joshua Adam Schulte, ex CIA employee, accused of continuing leaks from prison
- Magecart cybergang targeting e-commerce credit card data
- New Data Affirms Cyber Threat for Industrial Control Systems
- 120 Million Facebook Accounts Compromised, Private Messages of 81,000 for Sale
- #SamSam #ransomware continues to be a thorn in the side of organizations in the U.S. with targeted ransomware campaigns continuing,
- 85 Millions of voter records available for sale ahead of the 2018 US Midterm Elections
- SMS Phishing + Cardless ATM = Profit
- Stuxnet Returns, Striking Iran with New Variant
- Bluetooth Bugs Speak to Lack of Security in DevOps
- Sauter Quickly Patches Flaw in Building Automation Software
- This Week in Security News: Spam Campaigns and Vulnerable Infrastructures
- Russian hackers compromise 120 million Facebook accounts; private messages on sale online
- Beware this malware: it can even survive operating systems being reinstalled
- Magecart claims fresh victim in electronics kit seller Kitronik
- SamSam ransomware campaigns continue to target U.S. in 2018
- BCMUPnP_Hunter: 100,000-node botnet is abusing routers for spam
- Multiple #phishing pages on multiple domains targeting Canadian citizens posing as Canadian Revenue Agency, Interac, and others 192.99.86.132 (@OVH) cc: @cybercentre_ca
- U.S. Geological Survey Network got Infected with Malware
- 85 million voter records on sale
- Iran has become victim of a cyberattack campaign
- EY launches the world's first secure private transactions over the Ethereum public blockchain
ATTACKS
- Two botnets are fighting over control of thousands of unsecured Android devices
- Joshua Adam Schulte, ex CIA employee, accused of continuing leaks from prison
- Spam campaign targets Exodus Mac Users
- 120 Million Facebook Accounts Compromised, Private Messages of 81,000 for Sale
- #SamSam #ransomware continues to be a thorn in the side of organizations in the U.S. with targeted ransomware campaigns continuing,
- 85 Millions of voter records available for sale ahead of the 2018 US Midterm Elections
- SMS Phishing + Cardless ATM = Profit
- ePHI of 8,000 Patients Exposed in Health Plan Breach
- Facebook has experienced a number of security-related issues lately, but it doesn't appear to be at fault for the leak
- "While most phishing attacks on desktop and laptop computers come via email... a mobile device attack vector can be in
- #Phishing targets data that lives outside your enterprise perimeter—putting your entire enterprise at risk. Learn how post-perimeter security enables you
- This Week in Security News: Spam Campaigns and Vulnerable Infrastructures
- How to password protect a folder or file in Windows | Avast
- Russian hackers compromise 120 million Facebook accounts; private messages on sale online
- SamSam ransomware campaigns continue to target U.S. in 2018
- Feds Accuse Ex-CIA Employee of Continuing Leaks From Prison
- Radisson Hotel Group Hit by Data Breach
- Spam campaign targets Exodus Mac Users
- Just half of Fortune 500 companies have installed DMARC, a tool that guards against email phishing scams, according to new
- Shipbuilder, defense contractor Austal reveals data breach
- Multiple #phishing pages on multiple domains targeting Canadian citizens posing as Canadian Revenue Agency, Interac, and others 192.99.86.132 (@OVH) cc: @cybercentre_ca
- Data theft at Radisson Hotel Group
- 85 million voter records on sale
- Iran has become victim of a cyberattack campaign
- YAPBS – Yet Another Password Breach Scam
- Apache HBase 2.1.1 release, distributed database
- FIFA admits hack and braces for new leaks
THREATS
- Facebook Blames Malicious Extensions in Breach of 81K Private Messages
- Shellbot Variant Used in New Botnet, Spreads Using IoT and Linux Vulnerabilities
- The day computer security turned real: The Morris Worm turns 30
- Worst Malware and Threat Actors of 2018
- Cisco Security Appliance Zero-Day Found Actively Exploited in the Wild
- New Ransomware using DiskCryptor With Custom Ransom Message
- BLEEDINGBIT – Two Zero Day Vulnerabilities Affecting Wireless Access Point Bluetooth Chips
- #SamSam #ransomware continues to be a thorn in the side of organizations in the U.S. with targeted ransomware campaigns continuing,
- Hackers actively exploiting vulnerabilities in Cisco security appliances
- Cisco fixed the high-risk security vulnerabilities in variant products
- Researchers found #Kraken #ransomware has become more popular after being packaged in the Fallout #ExploitKit and becoming part of an
- Bluetooth Bugs Speak to Lack of Security in DevOps
- Sauter Quickly Patches Flaw in Building Automation Software
- Bleedingbit vulnerabilities put Wi-Fi access points at risk
- Adversaries Distribute Malware Via Rarely Used Extensions
- Test IO introduces Bug Fix Confirmation, leveraging network of software testers to verify bug fixes
- Can you spot a malicious email? Take the quiz at
- Antimalware Day: The evolution of malicious code
- Flaw in Sophos HitmanPro.Alert could enable hackers to gain privileges over systems
- Outlaw Hacking Group Using Command Injection Flow To Attack Organizations Network using Botnet via C&C Server
- Intel CPUs impacted by new PortSmash side-channel vulnerability
- Beware this malware: it can even survive operating systems being reinstalled
- SamSam ransomware campaigns continue to target U.S. in 2018
- CISCO warn of a zero-day DoS flaw that is being actively exploited in attacks
- Systemd Vulnerability In Linux Could Trigger Remote Attacks And System Crashes
- .@ArmisSecurity researchers discovered two chip-level #Bluetooth vulnerabilities -- dubbed #Bleedingbit -- that could allow pseudo #RemoteCodeExecution on wireless access points.
- Cisco Reports SIP Inspection Vulnerability
- Kraken ransomware gets packaged into Fallout EK
- Emotet Trojan Changes Tactics…Again
- Mozilla exorcises five bugs on Halloween
- Giant ransomware bundle threatens to make malware attacks easier for crooks
- Blockwatch: The aeternity Blockchain
- Researchers recently found vulnerabilities in #robot controllers from @Universal_Robot. Learn what these robot controllers do and how #ThreatActors exploit these
- If you think you have been hacked or got #malware installed, disconnect the internet, leave your device running and connected
- U.S. Geological Survey Network got Infected with Malware
- Trading with cryptocurrencies without losing self control
- EY launches the world's first secure private transactions over the Ethereum public blockchain
- Search for “Installing Chrome” on Bing can lead to malicious content
- BLEEDINGBIT – Two Bluetooth Chip-level Vulnerabilities Affected Millions of Enterprise Wi-Fi Access Point Devices
- Previous malware attacks: When more than 7,5000 of the #Mikrotik routes were reportedly being spied on by attackers
- GNOME 3.30.2 released: bugs fix
- Attackers Use Zero-Day That Can Restart Cisco Security Appliances
- Another packed room for .@idefense analyst Mei Nelson discussing China and cryptocurrency. #codeblue_jp @AccentureSecure @AccentureJPNews
CRIME
- Joshua Adam Schulte, ex CIA employee, accused of continuing leaks from prison
- Magecart cybergang targeting e-commerce credit card data
- 120 Million Facebook Accounts Compromised, Private Messages of 81,000 for Sale
- 85 Millions of voter records available for sale ahead of the 2018 US Midterm Elections
- SMS Phishing + Cardless ATM = Profit
- Stuxnet Returns, Striking Iran with New Variant
- This Week in Security News: Spam Campaigns and Vulnerable Infrastructures
- How to password protect a folder or file in Windows | Avast
- Beware this malware: it can even survive operating systems being reinstalled
- Feds Accuse Ex-CIA Employee of Continuing Leaks From Prison
- Radisson Hotel Group Hit by Data Breach
- BCMUPnP_Hunter: 100,000-node botnet is abusing routers for spam
- Emotet Trojan Changes Tactics…Again
- Shipbuilder, defense contractor Austal reveals data breach
- Data theft at Radisson Hotel Group
- 85 million voter records on sale
- Iran has become victim of a cyberattack campaign
- Trading with cryptocurrencies without losing self control
- EY launches the world's first secure private transactions over the Ethereum public blockchain
- YAPBS – Yet Another Password Breach Scam
- FIFA admits hack and braces for new leaks
POLITICS
- Joshua Adam Schulte, ex CIA employee, accused of continuing leaks from prison
- Spam campaign targets Exodus Mac Users
- 85 Millions of voter records available for sale ahead of the 2018 US Midterm Elections
- This Week in Security News: Spam Campaigns and Vulnerable Infrastructures
- Beware this malware: it can even survive operating systems being reinstalled
- Emotet Trojan Changes Tactics…Again
- 85 million voter records on sale
- Iran has become victim of a cyberattack campaign
Subscribe to:
Posts (Atom)