InfoSec News 20190806
Top News
-
Puzzling Gwmndy Botnet Focuses on Low-Volume Proxy Connections
"An odd botnet has been spotted targeting Fiberhome routers, in a quest to add 200 of them per day to its botnet web. "
TLP1 : Green
-
Cybereason raises $200 million to protect enterprise endpoints in real time
"A Cybersecurity platform provider based in Tel Aviv and Boston, Massachusetts, today announced that it’s secured $200 million in investments and commitments from Softbank and its affiliates, bringing the startup’s total raised to date to $400 million."
TLP1 : Green
-
Microsoft sets up isolated environment for bug hunters to test attacks against Azure
"Microsoft has some very good news for bug hunters: not only has the company doubled the top bounty reward for vulnerabilities discovered in its Azure cloud computing service, but has also created an isolated testing environment that will allow researchers to try to exploit them."
TLP1 : Green
Cybersecurity State: Surveillance, Cyberwarfare, Cybercriminality and Hacktivism
-
1270412: Russia-linked STRONTIUM APT targets IoT devices to hack corporate networks
"The STRONTIUM Russia-linked APT group is compromising common IoT devices to gain access to several corporate networks."
TLP1 : Green
-
1270400: LookBack malware targeting utility sector
"Three U.S. firms in the utility sector were hit with a spear phishing campaign in mid-July with the emails containing a malicious Word document that can contain and can install the new remote access trojan LookBack."
TLP1 : Green
-
North Korea generated $2 billion from Cyber Attacks to fund its nuclear intentions
"North Korea is reported to have generated an estimated $2 bilion to fund its nuclear intentions - all through increasingly sophisticated cyber attacks. "
TLP1 : Green
Breaches: Data Breaches and Hacks
-
Hacker swipes personal info on 106 million US, Canadian credit card applicants
"More than 1 million social numbers nicked among other details – FBI collars, charges software engineer"
TLP1 : Green
Vulnerabilities: Vulnerability Advisories, Zero-Days,Patches and Exploits
"A series of critical vulnerabilities have been discovered in Qualcomm chipsets that could allow hackers to compromise Android devices remotely just by sending malicious packets over-the-air with no user interaction."
TLP1 : Green
-
MICROSOFT WINDOWS POWERSHELL SEMICOLON REMOTE CODE EXECUTION
"A vulnerability classified as critical has been found in Microsoft Windows (Operating System) (the affect version unknown)."
TLP1 : Green
Incident Response: Infrastructure, Training, SIEM and Incident Handling
-
Financial services and e-payment firms in Singapore must follow new cyber hygiene rules from next August: MAS
"All financial services and e-payment firms in Singapore must follow a set of cyber hygiene rules from August next year, with Singapore's central bank stepping up efforts to strengthen the sector's defence against rising threats."
TLP1 : Green
Technical Articles: Forensics, Reverse Engineering, Malware, Phishing, Pentesting, Software Security and Cryptography
-
Beware of GermanWiper – the ransomware that is not ransomware
"A piece of wiper malware is making the rounds erasing people’s important files, with its authors demanding a modest ransom to restore the data. However, the ransomware campaign is a lie, and the operators have no intention of decrypting the data."
TLP1 : Green
1Traffic Light Protocol (TLP) [1] for information sharing:
- Red:Not for disclosure, restricted to participants only.
- Amber: Limited disclosure, restricted to participants organizations.
- Green: Limited disclosure, restricted to the community.