InfoSec News 20191203
Top News
-
Google warned 12K+ users targeted by state-sponsored hackers
"Google revealed that over 12,000 of its users were targeted by state-sponsored hackers in the third quarter of this year."
TLP1 : Green
-
Netflix account freeze – don’t click, it’s a scam!
"Another Netflix phishing scam! We’ve written about these scams before, and we’ll probably write about them again... for the sadly simple reason that THEY WORK."
TLP1 : Green
-
EFF Report Exposes, Explains Big Tech’s Personal Data Trackers Lurking on Social Media, Websites, and Apps
"San Francisco—The Electronic Frontier Foundation (EFF) today released a comprehensive report that identifies and explains the hidden technical methods and business practices companies use to collect and track our personal information from the minute we turn on our devices each day."
TLP1 : Green
Cybersecurity State: Surveillance, Cyberwarfare, Cybercriminality and Hacktivism
-
Smart TVs: The Cyberthreat Lurking in Your Living Room, Feds Warn
"TV takeover, privacy threats, botnet concerns and Wi-Fi network compromise are all big concerns when it comes to connected TVs."
TLP1 : Green
-
Unpatched Strandhogg Android Vulnerability Actively Exploited in the Wild
"Cybersecurity researchers have discovered a new unpatched vulnerability in the Android operating system that dozens of malicious mobile apps are already exploiting in the wild to steal users' banking and other login credentials and spy on their activities."
TLP1 : Green
-
Clop Ransomware attempts to disable Windows Defender and Malwarebytes
"Experts discovered a new malware dubbed Clop ransomware that attempts to remove Malwarebytes and other security products."
TLP1 : Green
Breaches: Data Breaches and Hacks
-
Data of 21 million Mixcloud users available for sale on the dark web
"The online music streaming service Mixcloud was recently breached by a hacker that is attempting to sell stolen user data a dark web marketplace."
TLP1 : Green
Vulnerabilities: Vulnerability Advisories, Zero-Days,Patches and Exploits
-
Experts discovered DLL hijacking issues in Kaspersky and Trend Micro solutions
"Experts discovered several DLL hijacking flaws in Kaspersky Secure Connection, Trend Micro Maximum Security, and Autodesk Desktop Application."
TLP1 : Green
-
Microsoft OAuth Flaw Opens Azure Accounts to Takeover
"The Microsoft applications are vulnerable to an authentication issue that could enable Azure account takeover."
TLP1 : Green
Incident Response: Infrastructure, Training, SIEM and Incident Handling
-
Improving Vulnerability Disclosure Together.
"At CISA, we work to do good things. Some are easy, like eating pineapple on pizza. Some are hard, like managing risks in 5G. Yet we know that if it’s hard to do good things, most people won’t do them – and reporting a vulnerability on a government system shouldn’t be so hard."
TLP1 : Green
-
ENISA proposes Best Practices and Techniques for Pseudonymisation
"The European Union Agency for Cybersecurity (ENISA) published a new report on “Pseudonymisation Techniques and Best Practices”, which explores the basic notions of pseudonymisation, as well as technical solutions that can support implementation in practice."
TLP1 : Green
Technical Articles: Forensics, Reverse Engineering, Malware, Phishing, Pentesting, Software Security and Cryptography
-
CAPE - Malware Configuration And Payload Extraction
"CAPE is a malware sandbox. It is derived from Cuckoo and is designed to automate the process of malware analysis with the goal of extracting payloads and configuration from malware."
TLP1 : Green
-
Public SSH keys can leak your private infrastructure
"This article describes a minor security flaw in the SSH authentication protocol that can lead to unexpected private infrastructure disclosure. It also provides a PoC written in Python."
TLP1 : Green
1Traffic Light Protocol (TLP) [1] for information sharing:
- Red:Not for disclosure, restricted to participants only.
- Amber: Limited disclosure, restricted to participants organizations.
- Green: Limited disclosure, restricted to the community.