Infosec News 20200409
Top News
-
NASA warns of a significant increase in cyber attacks during Coronavirus outbreak
"This week, NASA sent out a memo to its personnel warning of a significant increase in the during the Coronavirus outbreak. "
TLP1 : Green
-
The Pentagon Is Using Zoom. Is it Safe?
"Like a lot of organizations that are learning to operate with large swaths of telecommuting employees and contractors, the Defense Department is suddenly finding itself using videoconferencing software by Zoom"
TLP1 : Green
-
Campanha fraudulenta COVID-19 em nome do SNS24 em curso em Portugal
"Desde o dia 8 de abril de 2020 que tem sido notada uma campanha fraudulenta em nome do SNS24 relativa ao recente surto COVID-19."
TLP1 : Green
Cybersecurity State: Surveillance, Cyberwarfare, Cybercriminality and Hacktivism
-
Top 10 Hacks & Attacks from 2019
"Last year was a busy one in the world of website security. ;
TLP1 : Green
-
Cyber attack leads to beer delivery issues in Alberta - Global News
"A major supplier of popular beer brands in Alberta, Brewers Distributor Ltd., was the victim of a cyber attack two weeks ago, impacting their ability to process orders from liquor stores."
TLP1 : Green
Breaches: Data Breaches and Hacks
-
Cybersecurity breaches leave Oakland and Berkeley students exposed during coronavirus crisis’ online learning - San Francisco Chronicle
"At least two Bay Area school districts have suffered recent cybersecurity breaches in the wake of the sudden switch to digital learning during coronavirus-related school closures."
TLP1 : Green
-
Intent to Infekt: ‘Operation Pinball’ Tactics Reminiscent of ‘Operation Secondary Infektion’
" a covert information operation targeting governments in the United States and Europe and believed to originate from Russia. We have named this information operation “Operation Pinball.”"
TLP1 : Green
Vulnerabilities: Vulnerability Advisories, Zero-Days,Patches and Exploits
-
Update Firefox again – more RCEs and an Android “takeover” bug too
"Hot on the heels of Firefox's emergency update over the weekend are the four-weekly fixes that Mozilla had in train already. Get 'em now! "
TLP1 : Green
-
‘Fake Fingerprints’ Bypass Scanners with 3D Printing
"New research used 3D printing technology to bypass fingerprint scanners, and tested it against Apple, Samsung and Microsoft mobile products. "
TLP1 : Green
Incident Response: Infrastructure, Training, SIEM and Incident Handling
-
ENISA released a Tool to map dependencies to International Standards
"The European Agency for Cybersecurity ENISA has released a tool for the mapping of international security standards to interdependencies’ indicators."
TLP1 : Green
-
Google Releases Security Updates)
"Google has released Chrome version 81.0.4044.92 for Windows, Mac, and Linux. This version addresses vulnerabilities that an attacker could exploit to take control of an affected system."
TLP1 : Green
Technical Articles: Forensics, Reverse Engineering, Malware, Phishing, Pentesting, Software Security and Cryptography
-
Chromepass - Hacking Chrome Saved Passwords
"Chromepass is a python-based console application that generates a windows executable with the following features:"
TLP1 : Green
-
Tentacle - A POC Vulnerability Verification And Exploit Framework
"Tentacle is a POC vulnerability verification and exploit framework. It supports free extension of exploits and uses POC scripts. It supports calls to zoomeye, fofa, shodan and other APIs to perform bulk vulnerability verification for multiple targets. (Still in DEV...)"
TLP1 : Green
1Traffic Light Protocol (TLP) [1] for information sharing:
- Red:Not for disclosure, restricted to participants only.
- Amber: Limited disclosure, restricted to participants organizations.
- Green: Limited disclosure, restricted to the community.