Infosec News 20200616
Top News
-
Facebook, Instagram and all US cell operators hit by massive cyber attack sparking outages across the US
"American telecom customers experienced widespread cellphone outages after reportedly being crippled by a massive cyber attack across the country"
TLP1 : Green
-
Twitter Disrupts Wide-Ranging Political Disinformation Campaigns
"This removal, of 32K accounts, is not the first time Twitter has taken action to protect its users from influence operations. Researchers weighed in on the practice with Threatpost"
TLP1 : Green
-
American convicted of spying in Russia, gets 16 years
"A Russian court convicted an American corporate security executive Monday of espionage and sentenced him to 16 years in prison after a closed trial that the U.S. denounced as a “mockery of justice,” and it angrily said his treatment in jail was “appalling.”"
TLP1 : Green
-
Norway suspends its COVID-19 contact tracing app due to privacy concerns
"Norway’s health authorities announced the suspension of the design of a COVID-19 contact tracing app due to privacy concerns"
TLP1 : Green
Cybersecurity State: Surveillance, Cyberwarfare, Cybercriminality and Hacktivism
-
IBM acquires Spanugo to bolster cloud for regulated industries push
"Spanugo's platform allows regulated industries to monitor compliance in real time. The technology will be folded into IBM's financial-services ready cloud"
TLP1 : Green
-
Black Kingdom ransomware operators exploit Pulse VPN flaws
"Black Kingdom ransomware operators are targeting organizations using unpatched Pulse Secure VPN software to deploy their malware"
TLP1 : Green
-
Snap Your Fingers Twice, Thanos Ransomware is Here!
"Cybersecurity researchers have found a new ransomware called Thanos. This ransomware is being popularly advertised in the underground market as Ransomware-as-a-service (RaaS) tool"
TLP1 : Green
Breaches: Data Breaches and Hacks
-
113 NHS Email Accounts Hacked
"Some 113 NHS email accounts were compromised by phishing emails last month, the NHS has admitted. The attack came amid a large-scale, ongoing phishing campaign across the UK targeting multiple sectors."
TLP1 : Green
-
845GB of sensitive explicit data on niche dating apps users exposed online
"VpnMentor’s security research team headed by Noam Rotem and Ran Locar has discovered an unprotected database online containing sensitive data of members of at least 9 datings and hook up apps. "
TLP1 : Green
Vulnerabilities: Vulnerability Advisories, Zero-Days,Patches and Exploits
-
WFH Alert: Critical Bug Found in Old D-Link Router Models
"Researchers find six bugs in consumer D-Link DIR-865L Wireless AC 1750 Dual Band Cloud Router"
TLP1 : Green
-
Intel Adds Anti-Malware Protection in Tiger Lake CPUs
"Intel’s Tiger Lake CPUs will come with Control-flow Enforcement Technology (CET), aimed at battling common control-flow hijacking attacks"
TLP1 : Green
-
Flaws in mobile Internet protocol GTP allow hackers to target 5G users
"Security vulnerabilities in modern communication protocol GTP used by mobile network operators can be exploited by attackers to target 4G/5G users"
TLP1 : Green
Incident Response: Infrastructure, Training, SIEM and Incident Handling
-
Poor Data Security Policies Affect Businesses During the Pandemic: Report
"A new research from secure payments provider PCI Pal revealed that most consumers may not trust organizations with poor cybersecurity practices or data breach history"
TLP1 : Green
-
Cybersecurity brings more opportunities
"Global Market Insights estimated the size of the cybersecurity market will reach US$300 billion by 2024, due to increasing cyber attacks and unprotected IoT devices"
TLP1 : Green
Technical Articles: Forensics, Reverse Engineering, Malware, Phishing, Pentesting, Software Security and Cryptography
-
Fast-Google-Dorks-Scan - Fast Google Dorks Scan
"A script to enumerate web-sites using Google dorks"
TLP1 : Green
-
Axiom - A Dynamic Infrastructure Toolkit For Red Teamers And Bug Bounty Hunters!
"Project Axiom is a set of utilities for managing a small dynamic infrastructure setup for bug bounty and pentesting"
TLP1 : Green
1Traffic Light Protocol (TLP) [1] for information sharing:
- Red:Not for disclosure, restricted to participants only.
- Amber: Limited disclosure, restricted to participants organizations.
- Green: Limited disclosure, restricted to the community.