InfoSec News 20200303
Top News
- 10-Year Old Facebook OAuth Framework Flaw Discovered
"A researcher has found a serious vulnerability in the Facebook platform that could allow hijacking anyone’s Facebook account. For discovering this OAuth Framework flaw, Facebook awarded a hefty bug bounty to the researcher."
TLP1 : Green
- Hackers Can Use Ultrasonic Waves to Secretly Control Voice Assistant Devices
"Researchers have discovered a new means to target voice-controlled devices by propagating ultrasonic waves through solid materials in order to interact with and compromise them using inaudible voice commands without the victims' knowledge."
TLP1 : Green
Cybersecurity State: Surveillance, Cyberwarfare, Cybercriminality and Hacktivism
- Venezuela – Power outage knocked out part of the internet connectivity
"A power outage and fluctuations in supply across Venezuela 1 March 2020, knocked out approximately 35% of the country’s telecommunications infrastructure."
TLP1 : Green
- The hacker explained why in Russia cards will become more often blocked.
"Hacker Alexander Warski told what to expect from Governing Bodies. According to him, bank cards will more often be blocked in Russia. The information security specialist expressed the opinion of the new law on mandatory notification of blocking of finances on the accounts of Russians."
TLP1 : Green
Breaches: Data Breaches and Hacks
- Vulnerabilities In Top Free Android VPN Apps Risk Over 120 Million Users.
"Researchers from VPNPro have discovered multiple vulnerabilities in many of the Top Free Android VPN apps. The most critical of all is the SuperVPN app that has the most extensive userbase too. The app boasts over 100,000,000 installs on Google Play Store, thus putting the security of 100 million users at risk."
TLP1 : Green
- Decathlon Leaked Data Of Spanish Employees Exposing 123 Million Records.
"he giant sports goods retailer Decathlon now makes it to the news due to a security flaw. Researchers found a database exposing over 123 million records that belonged to Decathlon Group. Specifically, the database leaked explicit data of Decathlon Spain employees including their personal details and proprietary information."
TLP1 : Green
Vulnerabilities: Vulnerability Advisories, Zero-Days,Patches and Exploits
- Cerberus Malware Improved To Pilfer Google Authenticator 2FA Codes.
"The Android banking trojan that entered the realm of cyber threats is now back stronger than ever. Researchers have revealed that the Cerberus malware has been improved to steal Google Authenticator 2FA codes."
TLP1 : Green
- Alfresco 5.2.4 - Persistent Cross-Site Scripting
"CVE: 2020-8778 2020-8777 2020-8776."
TLP1 : Green
Incident Response: Infrastructure, Training, SIEM and Incident Handling
- Critical MediaTek rootkit affecting millions of Android devices has been out in the open for months
"Google just made public the Android Security Bulletin for March 2020. One of the vulnerabilities that are documented in the latest bulletin is CVE-2020-0069, a critical security exploit, specifically a rootkit, that affects millions of devices with chipsets from MediaTek, the large Taiwanese chip design company. Even worse, the vulnerability is actively being exploited by hackers. Now MediaTek has turned to Google to close this patch gap and secure millions of devices against this critical security exploit."
TLP1 : Green
Technical Articles: Forensics, Reverse Engineering, Malware, Phishing, Pentesting, Software Security and Cryptography
- Karkoff 2020: a new APT34 espionage operation involves Lebanon Government.
"Experts from Cybaze/ Yoroi Zlab spotted a new sample of the Karkoff implant that was employed in past campaigns associated with Iran-linked APT34 group."
TLP1 : Green
1Traffic Light Protocol (TLP) [1] for information sharing:
- Red:Not for disclosure, restricted to participants only.
- Amber: Limited disclosure, restricted to participants organizations.
- Green: Limited disclosure, restricted to the community.