Infosec News 20200713
Top News
-
Records of 45 Million+ travelers to Thailand and Malaysia Leaked on Darkweb!!
Recently, when our research team was performing their regular deepweb and darkweb sweeps, they came across a post in which a credible actor claimed to be in possession of records of 45 million+ travelers to Thailand and Malaysia from multiple countries.
TLP1 : Green
-
Google updates policies to ban any ads for surveillance solutions and services
Google announced that starting from August it will update its policies to reject ads proposed by organizations offering surveillance software.
TLP1 : Green
-
KingComposer fixes a reflected XSS impacting 100,000 WordPress sites
An XSS vulnerability in the KingComposer page builder for WordPress impacts 100,000 websites using the WordPress plugin.
TLP1 : Green
Cybersecurity State: Surveillance, Cyberwarfare, Cybercriminality and Hacktivism
-
Cyberwarfare: The changing role of force
Novel malware, computer code and clandestine digital access are some of the unconventional weapons various countries are currently amassing and deploying. Whether used as a force multiplier for disinformation operations, for stand-alone projections of power or carefully calibrated escalations of conflict, cyber weapon use is growing on the international stage.
TLP1 : Green
-
Cyber-crime cases jump by 67% amid Covid-19
Cybercrime cases jumped by more than 67% per cent till June 2020, in the cyber city as compared to June 2019.A total of 5,779 cases have been reported in the city in the first half of the current year. The figure was 3,466 in 2019 during the same time period, according to the Gurugram police data.
TLP1 : Green
-
New ransomware attacking APAC nations via malvertising
Cybersecurity researchers have discovered a very sophisticated Exploit Kit that is targeting countries in the Asia-Pacific region to deliver ransomware via malvertising, which is the spread of malware through online advertisements.
TLP1 : Green
Breaches: Data Breaches and Hacks
-
Hacker claims to have breached Night Lion security firm
Hacker claims to have stolen more than 8,200 databases from the US cyber security firm Night Lion Security.
TLP1 : Green
Vulnerabilities: Vulnerability Advisories, Zero-Days,Patches and Exploits
-
F5 BIG-IP Exploit, WiFi Router Security Updates, Password Reuse
Impact of the F5-BIG-IP critical vulnerability, security updates and your WiFi router, and details about new research that shows how billions of compromised credentials are available in the cyber underground.
TLP1 : Green
-
Malware adds Any.Run sandbox detection to evade analysis
Malware developers are now checking if their malware is running in the Any.Run malware analysis service to prevent their malware from being easily analyzed by researchers.
TLP1 : Green
Incident Response: Infrastructure, Training, SIEM and Incident Handling
-
Qualys free certification
Take free self-paced or instructor-led certified training on core Qualys topics, and get certified.
TLP1 : Green
Technical Articles: Forensics, Reverse Engineering, Malware, Phishing, Pentesting, Software Security and Cryptography
-
Biometrics: Preparing for a Passwordless Future
In today’s digital world, people can accomplish anything they need to online, from banking to shopping. Yet, the popular authentication for this online activity—passwords and PINs—is putting countless Americans at risk for online fraud. Gartner predicted that by 2020, 75% of omni-channel customer-facing organizations will endure a targeted, cross-channel fraud attack
TLP1 : Green
1Traffic Light Protocol (TLP) [1] for information sharing:
- Red:Not for disclosure, restricted to participants only.
- Amber: Limited disclosure, restricted to participants organizations.
- Green: Limited disclosure, restricted to the community.