InfoSec News 20190606
Top News
-
Monero-Mining Malware PCASTLE Zeroes Back In on China, Now Uses Multilayered Fileless Arrival Techniques
"This campaign showed that fileless threats aren’t going away. In fact, we project that fileless techniques will be among the most prevalent threats used in the current landscape."
TLP1 : Green
-
Canva hack is a reminder of the importance of password security
"Another day, another security breach carried out by the hacker known as GnosticPlayers. This time the target was online graphics design service Canva – and the account details of 139 million users were taken."
TLP1 : Green
-
New BlueKeep malware proof-of-concept enables full system takeover, warns researcher
"A security expert has demonstrated a working exploit of the BlueKeep vulnerability, enabling attackers to take full control of a system in just 22 seconds."
TLP1 : Green
Cybersecurity State: Surveillance, Cyberwarfare, Cybercriminality and Hacktivism
-
Credential Stealing Backdoor Found in Agama Cryptocurrency Wallet Apps
"The company hacked its customers and unauthorisedly transferred nearly 8 million KMD and 96 Bitcoins from their cryptocurrency wallets to a new address owned by the company."
TLP1 : Green
-
Germany’s cyber defence strategy discussed behind closed doors
"The strategy is characterised by a much more active defence than is customary in Germany and goes as far as providing for the destruction of servers through which cyber attacks are carried out."
TLP1 : Green
-
New Phishing Attacks Stealing MFA Tokens Too
"With 2FA becoming more widely adopted for logins, phishing attempts are getting more sophisticated when attempting to access your data."
TLP1 : Green
Breaches: Data Breaches and Hacks
-
Vigilant Software’s most wanted: Data Breach Bulletin (May 2019)
"According to the ICO (Information Commissioner’s Office), more than 14,000 data breaches were logged in the first year since the introduction of the GDPR (General Data Protection Regulation), which is almost four times the number reported in 2017/18. "
TLP1 : Green
Vulnerabilities: Vulnerability Advisories, Zero-Days,Patches and Exploits
-
Cisco Security Updates – RCE Flaw in Cisco Industrial Network Director Let Hackers Gain Admin Level Access
"This new Cisco security updates release with the fixes for 9 vulnerabilities, in which, two vulnerabilities marked as high severity and rest of the 7 vulnerabilities are categorized under medium severity."
TLP1 : Green
-
Tor Browser 8.5.1 Released With Bugfixes and Improvements to User Privacy
"Tor Browser 8.5.1 released for Windows, Linux and Mac and Android. It is the first bug fix release in the 8.5 series. The new version aims at fixing regressions and provides minor improvements related to 8.5 release."
TLP1 : Green
Incident Response: Infrastructure, Training, SIEM and Incident Handling
-
Should more protection really equal more false positives?
"Security professionals should not have to accept that their efforts to harden their organisations’ security postures inevitably creates a constant, ever-growing deluge of false positives. Yet too many are resigned to the mistaken belief there’s nothing they can do to prevent them."
TLP1 : Green
Technical Articles: Forensics, Reverse Engineering, Malware, Phishing, Pentesting, Software Security and Cryptography
-
The Platinum cyber espionage group uses steganographic technique to hide communications with the Command and Control Servers (C&C).
"Hackers used a dropper to install the steganography backdoor, the malicious code creates directories for the backdoor and saves backdoor-related files in these folders."
TLP1 : Green
1Traffic Light Protocol (TLP) [1] for information sharing:
- Red:Not for disclosure, restricted to participants only.
- Amber: Limited disclosure, restricted to participants organizations.
- Green: Limited disclosure, restricted to the community.