InfoSec News 20191001
Top News
-
Ransomware attack on Demant fetches $95 million loss and FBI on Meridian Cyber Attack
"Denmark based hearing aid manufacturer Demant has released an official statement yesterday stating that the ransomware attack which took place on its database early last month could fetch a $95 million loss to the company in the current financial year."
TLP1 : Green
-
New Bug Found in NSA’s Ghidra Tool
"Flaw in National Security Agency’s Ghidra reverse-engineering tools allows hackers to execute code in vulnerable systems."
TLP1 : Green
-
Chinese theft of trade secrets on the rise, the US Justice Department warns
"The Justice Department launched the “China Initiative” in November 2018 with the aim of countering Chinese national security threats."
TLP1 : Green
Cybersecurity State: Surveillance, Cyberwarfare, Cybercriminality and Hacktivism
-
New cybersecurity masterplan to protect Singapore's critical systems
"SINGAPORE: New cybersecurity measures were unveiled on Tuesday (Oct 1) in light of threats to Operational Technology (OT) systems that control critical physical systems like power, water and transportation networks. "
TLP1 : Green
-
FBI called in as Strathroy auto parts factory suffers cyber attack
"STRATHROY – Local authorities have called in the FBI as the investigation deepens into a rare cyber attack against an auto parts manufacturer here."
TLP1 : Green
-
Navy revs up information warfare to stop enemy missiles, weapons
". Navy preparations for this kind of scenario include the use of radar, long-range sensors and coordinated surveillance with surface, undersea and air assets - all seemingly operated for rapid response-enabled destruction of incoming enemy fire."
TLP1 : Green
Breaches: Data Breaches and Hacks
-
Ex-Yahoo Engineer Pleads Guilty To Hacking Thousands Of Accounts For Sexual Images, Videos
"SAN JOSE (CBS SF) — A former Yahoo software engineer pleaded guilty in federal court Monday to hacking into thousands of Yahoo users’ personal accounts, primarily in search of sexual images and videos, according to the U.S. Department of Justice."
TLP1 : Green
-
Security News This Week: A DoSecurity News This Week: A DoorDash Breach Exposes Data of 4.9 Million CustomersorDash Breach Exposes Data of 4.9 Million Customers
"DoorDash, a takeout delivery company, confirmed a data breach on Thursday almost five months after it occurred on May 4, and a year after some users started complaining that their accounts had been inexplicably compromised."
TLP1 : Green
-
218M ‘Words with Friends’ players’ data reportedly stolen in Zynga hack
"Popular social game developer Zynga has reportedly become the latest victim of a massive data breach impacting some 218 million Words with Friends accounts."
TLP1 : Green
Vulnerabilities: Vulnerability Advisories, Zero-Days,Patches and Exploits
-
Ransomware attack blocks access to health systems in Victoria
"A number of hospitals and health services in Victoria have had their access to systems blocked by a ransomware attack that took place on Monday."
TLP1 : Green
-
A new critical flaw in Exim exposes email servers to remote attacks
"Exim maintainers released an urgent security update to address a critical security flaw that could allow a remote attacker to potentially execute malicious code on targeted servers."
TLP1 : Green
Incident Response: Infrastructure, Training, SIEM and Incident Handling
-
Here’s how to claim your $100 from Yahoo’s massive data breach settlement
"Yahoo is about to reach a $117.5 million settlement in a class-action lawsuit over a series of data breaches that affected users between 2012 and 2016 — and you’re likely eligible for your $100 cut or free credit monitoring if you had an account during that time."
TLP1 : Green
1Traffic Light Protocol (TLP) [1] for information sharing:
- Red:Not for disclosure, restricted to participants only.
- Amber: Limited disclosure, restricted to participants organizations.
- Green: Limited disclosure, restricted to the community.