InfoSec News 20191007
Top News
-
Hacker is auctioning a database containing details of 92 million Brazilians
"A database containing details of 92 million Brazilians was auctioned by a threat actor on underground forums along with a search service focused on Brazilians."
TLP1 : Green
-
Are we destined to lose? How SMEs can protect customers from cyber crime
"Small businesses are being encouraged to help their customers get in control of their online identities by making privacy policies more accessible and bolstering their defence against cyber crime."
TLP1 : Green
-
Measuring the Security of IoT Devices
"In August, CyberITL completed a large-scale survey of software security practices in the IoT environment, by looking at the compiled software."
TLP1 : Green
Cybersecurity State: Surveillance, Cyberwarfare, Cybercriminality and Hacktivism
-
Case Study: Tufts Medical Center Takes on Cybersecurity
"Tufts Medical Center provides critical healthcare services to the Boston community. When the decision came to evaluate security options to protect its core infrastructure, Tufts reached out to BlackBerry Cylance."
TLP1 : Green
-
Virus Bulletin 2019: VoIP Espionage Campaign Hits U.S. Utilities Supplier
"An attacker whose motives are unclear compromised an Asterisk server in a highly targeted campaign"
TLP1 : Green
-
Threat Discovery: Attackers are Abusing Adobe Open Redirect Service to Serve Phishing
"As we’ve blogged about before, cybercriminals are increasingly leveraging legitimate commercial infrastructure sites to avoid detection and host the growing number of phishing attacks they launch."
TLP1 : Green
Breaches: Data Breaches and Hacks
-
FBI warns about high-impact Ransomware attacks on U.S. Organizations
"The U.S. Federal Bureau of Investigation (FBI) Internet Crime Complaint Center (IC3) warns organizations about high-impact ransomware attacks."
TLP1 : Green
Vulnerabilities: Vulnerability Advisories, Zero-Days,Patches and Exploits
-
A Quick Guide to Sniffing Attacks
"Sniffing attack is the process of illicitly capturing and decoding data packets that pass through a network"
TLP1 : Green
-
Russian hackers modify Chrome and Firefox to track secure web traffic
"Many hackers won't touch web browsers beyond exploiting their vulnerabilities, but one group is taking things one step further. Kaspersky has detailed attempts by a R"
TLP1 : Green
Incident Response: Infrastructure, Training, SIEM and Incident Handling
-
Words with Friends' Got Hacked... and Criticized by Security Researchers
"You would think that the creator of "Words with Friends" would choose more sensible words to respond with when it got hacked."
TLP1 : Green
Technical Articles: Forensics, Reverse Engineering, Malware, Phishing, Pentesting, Software Security and Cryptography
-
Signal Bug Could Have Let Hackers Listen to Android Users Via Microphone
"Google’s Project Zero recently reported the issue, which the Signal maintainers have now fixed"
TLP1 : Green
1Traffic Light Protocol (TLP) [1] for information sharing:
- Red:Not for disclosure, restricted to participants only.
- Amber: Limited disclosure, restricted to participants organizations.
- Green: Limited disclosure, restricted to the community.