Top News

• Microsoft Patch Tuesday, April 2020 Edition

"Microsoft today released updates to fix 113 security vulnerabilities in its various Windows operating systems and related software."

Link

TLP¹ : Green

• RagnarLocker ransomware hits EDP energy giant, asks for €10M

"Attackers using the Ragnar Locker ransomware have encrypted the systems of Portuguese multinational energy giant Energias de Portugal (EDP) and are now asking for a 1580 BTC ransom ($10.9M or €9.9M)."

Link

TLP¹ : Green

• Ransomware scumbags leak Boeing, Lockheed Martin, SpaceX documents after contractor refuses to pay.

"Internal confidential documents belonging to some of the largest aerospace companies in the world have been stolen from an industrial contractor and leaked online."

Link

TLP¹ : Green

Cybersecurity State: Surveillance, Cyberwarfare, Cybercriminality and Hacktivism

• COVID-19 lockdown exposes millions of children to online risk

"Millions of children are at increased risk of harm as their lives move increasingly online during the COVID-19 pandemic lockdown."

Link

TLP¹ : Green

• Cyber Threats On The Rise

"Cyber threats are on the rise as more people work from home during pandemic"

Link

TLP¹ : Green

• Dua Lipa Calls for Action on Cyberbullying

"British model turned pop singer Dua Lipa has called for social media platforms to be monitored more closely for cyberbullying behavior. "

Link

TLP¹ : Green

Breaches: Data Breaches and Hacks

• 4 Million Quidd account details shared on hacking forums

"Quidd, an online marketplace for trading stickers, cards, toys, and other collectibles, discloses a data breach in has suffered in 2019."

Link

TLP¹ : Green

• Ransomware Now Leaking Stolen Documents

"Originally, ransomware didn't involve any data theft. Malware would encrypt the data on your computer, and demand a ransom for the encryption key."

Link

TLP¹ : Green

Vulnerabilities: Vulnerability Advisories, Zero-Days,Patches and Exploits

• Hackers are targeting hospitals already stretched thin from fighting the coronavirus — and experts say the worst cyberattacks may be still to come

"As healthcare workers fight on the front lines against the spread of COVID-19, hospitals are simultaneously facing a new wave of cyberattacks from criminals seeking to extort them for profit."

Link

TLP¹ : Green

• Siemens Industrial Devices Affected by 'SegmentSmack' Linux Kernel Flaw

"Siemens has released six new advisories for its April 2020 Patch Tuesday updates, including three that inform customers about the impact of the SegmentSmack vulnerability on some of the company’s industrial products."

Link

TLP¹ : Green

Incident Response: Infrastructure, Training, SIEM and Incident Handling

• The Dutch police took down 15 DDoS-for-hire services in a week

"Dutch authorities have taken down 15 DDoS-for-hire services in a week, this is another success of law enforcement in the fight against cybercrime."

Link

TLP¹ : Green

Technical Articles: Forensics, Reverse Engineering, Malware, Phishing, Pentesting, Software Security and Cryptography

• How much is the phish? Underground market of phishing kits is booming – Group-IB

"The report focuses on phishing kits – the driving force of the phishing industry, which is hard to detect but extremely valuable in terms of fight against phishing."

Link

TLP¹ : Green

¹Traffic Light Protocol (TLP) [1] for information sharing:

• Red:Not for disclosure, restricted to participants only.
• Amber: Limited disclosure, restricted to participants organizations.
• Green: Limited disclosure, restricted to the community.

[1]https://www.first.org/tlp