InfoSec News 20190930
Top News
-
Checkm8: unpatchable iOS exploit could lead to permanent jailbreak for iOS devices running A5 to A11 chips
"A security expert has released a new jailbreak, dubbed Checkm8, that impacts all iOS devices running on A5 to A11 chipsets, it works on iPhone models from 4S to 8 and X. "
TLP1 : Green
-
Hackers used fake job website to scam jobless US veterans
"Pretender website with the URL of "hiremilitaryheroes[.]com" was discovered distributing malware by prompting users to download an application for computers based on the Windows OS."
TLP1 : Green
-
New Spyware Threatens Telegram's 200 Million Users
"A new piece of spyware, designed to steal sensitive information from users of the messaging app Telegram, is for sale on the black market. "
TLP1 : Green
Cybersecurity State: Surveillance, Cyberwarfare, Cybercriminality and Hacktivism
-
Phishers continue to abuse Adobe and Google Open Redirects
"Experts reported that phishing campaigns are leveraging Google and Adobe open redirects to bypass spam filters and redirect users to malicious sites."
TLP1 : Green
-
Masad Spyware Uses Telegram Bots for Command-and-Control
"The malware harvests data, steals cryptocurrency and drops additional malware, while masquerading as a Fortnite aimbot and more."
TLP1 : Green
-
German Cops Raid "Cyberbunker 2.0," Arrest 7 in Child Porn, Dark Web Market Sting
"German authorities said Friday they'd arrested seven people and were investigating six more in connection with the raid of a Dark Web hosting operation that allegedly supported multiple child porn, cybercrime and drug markets with hundreds of servers buried inside a heavily fortified military bunker."
TLP1 : Green
Breaches: Data Breaches and Hacks
-
Exclusive - Hacker Steals Over 218 Million Zynga 'Words with Friends' Gamers Data
"A Pakistani hacker who previously made headlines earlier this year for selling almost a billion user records stolen from nearly 45 popular online services has now claimed to have hacked the popular mobile social game company Zynga Inc. "
TLP1 : Green
Vulnerabilities: Vulnerability Advisories, Zero-Days,Patches and Exploits
-
After SIMJacker, WIBattack hacking technique disclosed. Billions of users at risk
"Researchers are warning of a new variant of recently disclosed SimJacker attack, dubbed WIBattack, that could expose millions of mobile phones to remote hacking. "
TLP1 : Green
-
Apple Safari APPLE-SA-2019-9-26-9 Multiple security Vulnerabilities
"Apple Safari is prone to is prone to multiple security vulnerabilities. An attacker may exploit these issues to carry out phishing-style attacks or to obtain sensitive information that may aid in further attacks."
TLP1 : Green
Incident Response: Infrastructure, Training, SIEM and Incident Handling
-
Parsing Sysmon Events for IR Indicators
"The purpose of this post is to provide an easy and automated way to present the Sysmon event log for review and a batch script using the tools and techniques described in this post will be available for download."
TLP1 : Green
Technical Articles: Forensics, Reverse Engineering, Malware, Phishing, Pentesting, Software Security and Cryptography
-
Microsoft Warns of a New Rare Fileless Malware Hijacking Windows Computers
"There's a new strain of malware making rounds on the Internet that has already infected thousands of computers worldwide and most likely, your antivirus program would not be able to detect it."
TLP1 : Green
1Traffic Light Protocol (TLP) [1] for information sharing:
- Red:Not for disclosure, restricted to participants only.
- Amber: Limited disclosure, restricted to participants organizations.
- Green: Limited disclosure, restricted to the community.