InfoSec News 20191106
Top News
-
Mysterious DarkUniverse APT remained undetected for 8 years
"Kaspersky discovered a previously unknown APT group, tracked as DarkUniverse, by analyzing Shadow Brokers' "Lost in Translation" data dump."
TLP1 : Green
-
Nikkei worker tricked into transferring $29 million into scammer's bank account
"Nikkei, one of the largest media companies in Japan, with an empire spanning broadcasting, digital media, magazines, and newspapers such as the Financial Times, says that its US subsidiary, Nikkei America, has been scammed out of $29 million."
TLP1 : Green
-
Anonymous and LulzSecITA hacked professional orders and telephone operator Lyca Mobile
"The #FifthOfNovember has arrived, the Italian branch of Anonymous and LulzSecITA hacked websites of professional orders, prefecture of Naples, and also the telephone operator Lyca Mobile."
TLP1 : Green
Cybersecurity State: Surveillance, Cyberwarfare, Cybercriminality and Hacktivism
-
US Department of Justice push for encryption backdoors might run afoul of First Amendment
"On October 22, the former general counsel of the FBI Jim Baker published a lengthy and astonishing piece called "Rethinking Encryption." In that article, the conservative-leaning current director of national security and cybersecurity at the R Street Institute advised the Justice Department and law enforcement to "embrace reality and deal with it" when it comes to encrypted communications."
TLP1 : Green
-
PSA: Scammers are exploiting a Firefox bug to lock users out of the browser
"Scammers have been found actively exploiting a bug in Firefox to trick unsuspecting people into believing that their computers have been hacked. What's more, the attack urges users to call a fraudulent support line within five minutes to avoid having their systems disabled."
TLP1 : Green
-
How China Conducts Cyber Industrial Espionage
"Crowdstrike concludes China's trade policies play an important support role in the attacks by effectively forcing technology transfer, including the use of Joint Ventures that allow hackers and intelligence operatives easier means for obtaining lucrative trade secrets."
TLP1 : Green
Breaches: Data Breaches and Hacks
-
Eye Clinic Breach Reveals Data of 20,000 Patients
"A Utah eye clinic is in the process of informing 20,000 patients that they were the victims of a data breach that happened a year and a half ago and linked patients to a scam involving PayPal."
TLP1 : Green
Vulnerabilities: Vulnerability Advisories, Zero-Days,Patches and Exploits
-
CVE-2019-2114 flaw allows hackers to plant malware on Android devices via NFC beaming
"A vulnerability affecting devices running Andoid 8 (Oreo) or later, tracked as CVE-2019-2114, could be exploited by hackers to infect them via NFC beaming."
TLP1 : Green
-
Google Android Library CVE-2019-2201 Remote Code Execution Vulnerability
"Google Android is prone to a remote code execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of the affected application. This issue is being tracked by Android bug ID A-120551338."
TLP1 : Green
Incident Response: Infrastructure, Training, SIEM and Incident Handling
-
Defense-in-Depth: Key for Healthcare Data
"A study conducted by IBM revealed that it takes nearly a year for the healthcare industry to identify and contain a data breach. "
TLP1 : Green
Technical Articles: Forensics, Reverse Engineering, Malware, Phishing, Pentesting, Software Security and Cryptography
-
New Exploit Kit Capesand Reuses Old and New Public Exploits and Tools, Blockchain Ruse
"Discovered a new exploit kit named Capesand in October 2019. Capesand attempts to exploit recent vulnerabilities in Adobe Flash and Microsoft Internet Explorer (IE)."
TLP1 : Green
Technical Articles: Forensics, Reverse Engineering, Malware, Phishing, Pentesting, Software Security and Cryptography
-
Xray - A Tool For Recon, Mapping And OSINT Gathering From Public Networks
"XRay is a tool for network OSINT gathering, its goal is to make some of the initial tasks of information gathering and network mapping automatic."
TLP1 : Green
1Traffic Light Protocol (TLP) [1] for information sharing:
- Red:Not for disclosure, restricted to participants only.
- Amber: Limited disclosure, restricted to participants organizations.
- Green: Limited disclosure, restricted to the community.