InfoSec News 20181003

  • Publicado: Qua, 03/10/2018 - 00:00

Top News

  • Facebook Finds 'No Evidence' Hackers Accessed Connected Third-Party Apps

“When Facebook last weekend disclosed a massive data breach—that compromised access tokens for more than 50 million accounts—many feared that the stolen tokens could have been used to access other third-party services, including Instagram and Tinder, through Facebook login.”

https://thehackernews.com/2018/10/facebook-token-hacking.html

TLP1 : Green

  • How China’s crackdown helped Binance become the world’s largest cryptocurrency exchange

“Binance founder Zhao Changpeng is playing a game of regulatory arbitrage to grow the world’s No 1 cryptocurrency exchange wherever it is welcome”

https://www.scmp.com/tech/start-ups/article/2166704/how-chinas-crackdown-helped-binance-become-worlds-largest 

TLP1 : Green

  • Google taking new steps to prevent malicious Chrome extensions

“Google has announced plans to further restrict Chrome extensions in a bid to crack down on the number of malicious extensions found in the Chrome Web Store.”

https://arstechnica.com/gadgets/2018/10/google-taking-new-steps-to-prevent-malicious-chrome-extensions/

TLP1 : Green

Cybersecurity State: Surveillance, Cyberwarfare, Cybercriminality and Hacktivism

  • 'Red October' has been spying on WORLD LEADERS for 5 years - researchers

“Security watchers have discovered a malware-based cyber-espionage campaign targeting diplomats, governments and scientific research institutions worldwide.”

https://www.theregister.co.uk/2013/01/14/red_october_cyber_espionage/

TLP1 : Green

Breaches: Data Breaches and Hacks

  • Firm’s website hacked, bank account emptied

“Navi Mumbai: The website of a businessman in Vashi was hacked and ₹11.31 lakh was transferred to various accounts on Monday. Vinay Kedia runs VK Ventures Pvt Ltd in Satra Plaza. The e-commerce firm, which provides services for travelling, DTH, recharge, and money transfer has its own payment getaway.”

https://www.thehindu.com/news/cities/mumbai/firms-website-hacked-bank-account-emptied/article25106556.ece 

TLP1 : Green

Vulnerabilities: Vulnerability Advsisories, Zero-Days,Patches and Exploits

  • Cisco unearths 13 'High Impact' IOS vulnerabilities you need to patch now

“Cisco details security problems in its IOS and IOS XE switch and router operating software and warns on Linux flaw impact”

https://www.networkworld.com/article/3309407/security/cisco-unearths-13-high-impact-ios-vulnerabilities-you-need-to-patch-now.html

TLP1 : Green

Incident Response: Infrastructure, Training, SIEM and Incident Handling

  • Optimizing SOC with Tufin & Swimlane’s SOAR Platform

“Forty-four percent of security operations (SecOps) managers see more than 5,000 security alerts daily and can realistically only investigate 25 percent or less. Even more challenging, when an alert is received, engineers and analysts are forced to chase down information from disparate tools and systems to respond to the incident. And, while the SecOps team is combing over all the data, a breach could have already happened.”

https://securityboulevard.com/2018/10/optimizing-soc-with-tufin-swimlanes-soar-platform/ 

TLP1 : Green

  • No-Rules SIEM Solutions with Avi Chesla of empow

“It’s a question more and more enterprises are asking as threat detection becomes the Archstone of modern cybersecurity platforms. To learn more, we spoke with Avi Chesla, Founder and CTO of SIEM solution provider empow, about no-rules SIEM and what it could represent for enterprises around the world.”

https://solutionsreview.com/security-information-event-management/no-rules-siem-solutions-avi-chesla-empow/

TLP1 : Green

Technical Articles: Forensics, Reverse Engineering, Malware, Phishing, Pentesting, Software Security and Cryptography

  • Trojan.Madominer Coin Miner Worm – How to Remove It from Windows

“Your computer might be affected by Trojan.Madominer and other threats.
Threats such as Trojan.Madominer may be persistent on your system. They tend to re-appear if not fully deleted. A malware removal tool like SpyHunter will help you to remove malicious programs, saving you the time and the struggle of tracking down numerous malicious files.”

https://securityboulevard.com/2018/10/trojan-madominer-coin-miner-worm-how-to-remove-it-from-windows/

TLP1 : Green

  • PHP Email spoofing

“I was shocked to see how easy this is and as far as i know the mail function is legit function which php provides. I'm Wondering how it can send emails like this without password authentication.”

https://www.reddit.com/r/HowToHack/comments/9kojr9/fake_email_using_php_how_it_works/

TLP1 : Green

 

 

1Traffic Light Protocol (TLP) [1] for information sharing:

 

 

  • Red:Not for disclosure, restricted to participants only.
  • Amber: Limited disclosure, restricted to participants organizations.
  • Green: Limited disclosure, restricted to the community.

 

[1]https://www.first.org/tlp

Infosec News