Infosec News 20200724
Top News
-
Smartwatch Maker Garmin Shuts Down Services After Ransomware Attack
"Garmin, the maker of fitness trackers, smartwatches and GPS-based wearable devices, is currently dealing with a massive worldwide service interruption after getting hit by a targeted ransomware attack"
TLP1 : Green
-
Federal agencies warn foreign hackers are targeting critical infrastructure
"The National Security Agency (NSA) and the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) on Thursday warned that foreign hackers are attempting to target U.S. critical infrastructure"
TLP1 : Green
-
Threat highlight: Analysis of 5+ million unmanaged, IoT, and IoMT devices
"A new study incorporates analysis of anonymized data from more than 5 million unmanaged, IoT, and IoMT devices in Ordr customer deployments across a variety of verticals including healthcare, life sciences, retail and manufacturing, between June 2019 and June 2020"
TLP1 : Green
Cybersecurity State: Surveillance, Cyberwarfare, Cybercriminality and Hacktivism
-
Are Businesses Unprepared to Fight Bot Attacks?
"Businesses know bots present a big threat to their security and sensitive data"
TLP1 : Green
-
Cybersecurity Market Expected to Grow by 2.5% in Worst-Case Scenario
"Cybersecurity spending will grow by 5.6% year-on-year in 2020, despite the financial problems that all economies face right now"
TLP1 : Green
-
Operation RussianDoll: Adobe & Windows Zero-Day Exploits Likely Leveraged by Russia’s APT28 in Highly-Targeted Attack
"FireEye Labs recently detected a limited APT campaign exploiting zero-day vulnerabilities in Adobe Flash and a brand-new one in Microsoft Windows"
TLP1 : Green
Breaches: Data Breaches and Hacks
-
Cryptojacking botnet Prometei uses NSA exploit to steal data, mine Monero
"Cisco Talos’ threat intelligence team published a report revealing startling details of how cybercriminals are continually reinventing the way they can monetize their malicious tools and techniques"
TLP1 : Green
-
CouchSurfing Investigates Potential Data Breach
"CouchSurfing, a company that helps travelers find free places to stay, is looking into a data breach following the discovery of 17 million user records for sale on hacking forums and private Telegram channels, ZDNet reports."
TLP1 : Green
Vulnerabilities: Vulnerability Advisories, Zero-Days,Patches and Exploits
-
PoC Released for Critical CVE-2020-1147 flaw, SharePoint servers exposed to hack
"Expert release a PoC exploit code for a recently addressed critical flaw in Microsoft SharePoint, .NET Framework, and Visual Studio"
TLP1 : Green
-
GCDWebServer up to 3.5.2 GCDWebUploader oldAbsolutePath directory traversal
"A vulnerability was found in GCDWebServer up to 3.5.2 (Web Server)"
TLP1 : Green
-
Vulnerable Invisible Salamanders and You: A Tale of Encryption Weakness
"A Black Hat presentation will discuss how vulnerabilities found in Facebook Messenger encryption could mean trouble for your secure messages."
TLP1 : Green
Incident Response: Infrastructure, Training, SIEM and Incident Handling
-
Kali-Linux-Tools-Interface - Graphical Web Interface Developed To Facilitate The Use Of Security Information Tools
"Kali Linux Tools Interface is a graphical interface to use information security tools by the browser"
TLP1 : Green
Technical Articles: Forensics, Reverse Engineering, Malware, Phishing, Pentesting, Software Security and Cryptography
-
Ransomware recovery: Moving forward without backing up
"Phishing scams tied to COVID-19 show no signs of stopping"
TLP1 : Green
-
Facebook Announced New Privacy and Security Feature for Messenger
"The new app lock feature helps prevent other people from accessing your chats. The app lock is now available for iPhones and iPads, the social media giant is working on the new Android version."
TLP1 : Green
-
Twilio Security Incident Shows Danger of Misconfigured S3 Buckets
"Twilio, the cloud communications platform-as-a-service (CPaaS) giant, has confirmed a security incident in which attackers accessed a misconfigured Amazon AWS S3 bucket and modified the TaskRouter JavaScript SDK. The SDK path had been publicly readable and writable since 2015."
TLP1 : Green
-
Apple Offers Hackable iPhones to Security Researchers
"Specifically designed for security researchers, these devices feature unique code execution and containment policies and are offered as part of the company’s Security Research Device (SRD) program, which was initially announced in December last year."
TLP1 : Green
-
Researchers Disclose New Methods for Replacing Content in Signed PDF Files
"Dubbed Shadow Attacks, the new techniques allow a hacker to hide and replace content in a signed PDF document without invalidating its signature. The hacker can create a document with two different contents, one that the signer expects to see and one that will be displayed to the recipient of the document."
TLP1 : Green
1Traffic Light Protocol (TLP) [1] for information sharing:
- Red:Not for disclosure, restricted to participants only.
- Amber: Limited disclosure, restricted to participants organizations.
- Green: Limited disclosure, restricted to the community.