InfoSec News 20190725
Top News
-
Sky worries users with phishy-looking password reset email
"I guess I should be pleased that so many recipients questioned whether the email was legitimate, and contacted Sky's customer service department on Twitter to seek reassurance that they weren't being phished."
TLP1 : Green
-
Police arrest man after Lancaster University hacking attack
"Police have arrested a 25-year-old man from Bradford in connection with a data breach at Lancaster University."
TLP1 : Green
-
Attorney General William Barr on Encryption Policy
"Yesterday, Attorney General William Barr gave a major speech on encryption policy -- what is commonly known as "going dark." Speaking at Fordham University in New York, he admitted that adding backdoors decreases security but that it is worth it."
TLP1 : Green
Cybersecurity State: Surveillance, Cyberwarfare, Cybercriminality and Hacktivism
-
Siemens Contractor Pleads Guilty to Planting 'Logic Bomb' in Spreadsheets
"A former Siemens contractor has pledged guilty in federal court Friday to secretly planting code in automated spreadsheets he had created for the company over a decade ago that deliberately crashes the program every few years."
TLP1 : Green
-
New APT34 campaign uses LinkedIn to deliver fresh malware
"The APT24 group continues its cyber espionage activity, its members were posing as a researcher from Cambridge to infect victims with three new malware."
TLP1 : Green
-
Neo-Nazi SWATters Target Dozens of Journalists
"Nearly three dozen journalists at a broad range of major publications have been targeted by a far-right group that maintains a Deep Web database listing the personal information of people who threaten their views."
TLP1 : Green
Breaches: Data Breaches and Hacks
-
'Major breach': Real identities of Gobbo handlers sent to lawyers of underworld clients
"The real identities of Nicola Gobbo's handlers have been accidentally sent to the lawyers of her former underworld clients by the royal commission that is investigating her role as a police informer."
TLP1 : Green
Vulnerabilities: Vulnerability Advisories, Zero-Days,Patches and Exploits
-
Keep Calm, Carry On. VLC Not Affected by Critical Vulnerability
"A recent security alert caused a panic where people thought the VLC Media Player was affected by a critical vulnerability that had no patch. The problem is that the vulnerability was not in VLC, but rather a module that was replaced over 16 months ago."
TLP1 : Green
-
Evil-Winrm - The Ultimate WinRM Shell For Hacking/Pentesting
"This program can be used on any Microsoft Windows Servers with this feature enabled (usually at port 5985), of course only if you have credentials and permissions to use it. So we can say that it could be used in a post-exploitation hacking/pentesting phase. "
TLP1 : Green
Incident Response: Infrastructure, Training, SIEM and Incident Handling
-
Protecting Against Ransomware Attacks: A Checklist
"Shawn Taylor with Forescout talks about how cities can protect themselves."
TLP1 : Green
Technical Articles: Forensics, Reverse Engineering, Malware, Phishing, Pentesting, Software Security and Cryptography
-
China-Linked APT15 group is using a previously undocumented backdoor
"ESET researchers reported that China-linked cyberespionage group APT15 has been using a previously undocumented backdoor for more than two years."
TLP1 : Green
1Traffic Light Protocol (TLP) [1] for information sharing:
- Red:Not for disclosure, restricted to participants only.
- Amber: Limited disclosure, restricted to participants organizations.
- Green: Limited disclosure, restricted to the community.