Infosec News 20210212
Top News
-
Newly Discovered Android Spyware Linked to State-Sponsored Indian Hackers
"Researchers at mobile security firm Lookout have published information on two recently discovered Android spyware families employed by an advanced persistent threat (APT) group named Confucius."
TLP1 : Green
-
Avaddon ransomware decryptor released, but operators quickly reacted
"An expert released a free decryption tool for the Avaddon ransomware, but operators quickly updated malware code to make it inefficient."
TLP1 : Green
-
Following Oldsmar attack, FBI warns about using TeamViewer and Windows 7
"An FBI alert sent on Tuesday warns companies about the use of out-of-date Windows 7 systems, poor account passwords, and desktop sharing software TeamViewer."
TLP1 : Green
Cybersecurity State: Surveillance, Cyberwarfare, Cybercriminality and Hacktivism
-
Police in Europe bust gang hijacking celeb phones, arrest 10
"Police have arrested 10 people in the U.K., Belgium and Malta for allegedly hijacking mobile phones belonging to U.S. celebrities including internet influencers, sports stars and musicians to steal personal information and millions in cryptocurrency, authorities said."
TLP1 : Green
-
Hackers ask only $1,500 for access to breached company networks
"The number of offers for network access and their median prices on the public posts on hacker forums dropped in the final quarter of last year but the statistics fail to reflect the real size of the initial access market."
TLP1 : Green
-
Chinese APT Group Deploys ‘Most Sophisticated’ Shellcode
"Newly Discovered BendyBear's Advanced Features Include Anti-Analysis Capabilities."
TLP1 : Green
Breaches: Data Breaches and Hacks
-
Mobile Health Apps Found to Expose Records of Millions of Users
"An analysis of 30 popular mobile health (mHealth) applications has revealed that all of them expose the full patient records of millions of people."
TLP1 : Green
Vulnerabilities: Vulnerability Advisories, Zero-Days,Patches and Exploits
-
Apple Patches 10-Year-Old macOS SUDO Root Privilege Escalation Bug
"Apple has rolled out a fix for a critical sudo vulnerability in macOS Big Sur, Catalina, and Mojave that could allow unauthenticated local users to gain root-level privileges on the system."
TLP1 : Green
-
Siemens Patches 21 More File Parsing Vulnerabilities in PLM Products
"Siemens this week released nine new security advisories describing vulnerabilities affecting the company’s products."
TLP1 : Green
Incident Response: Infrastructure, Training, SIEM and Incident Handling
-
The Intelligent Edge: An Increasing Target for Bad Actors
"The traditional network perimeter has been replaced with multiple edge environments. These include WAN, multi-cloud, IoT, home offices, the new device edge, and more. Each edge environment comes with its own set of unique risks and vulnerabilities, which is why they have become a prime target for cybercriminals, who are shifting significant resources to strategically target and exploit emerging network edge environments. Organizations need the right knowledge and the right resources to remain protected as these and newer threats emerge."
TLP1 : Green
Technical Articles: Forensics, Reverse Engineering, Malware, Phishing, Pentesting, Software Security and Cryptography
-
Uncovering a 24-year-old bug in the Linux Kernel
"One of the most interesting issues we encountered led to the discovery of a fairly old bug in the Linux kernel TCP implementation: every now and then, an rsync transfer from a source server would hang indefinitely for no apparent reason, as — apart from the stuck transfer — everything else seemed to be in order. What’s more, for reasons that became apparent later, the issue could not be reproduced at will, although some actions (e.g. adding an rsync-level rate limit) seemed to make the issue less frequent, with frequency ranging from once or twice per week to once every three months."
TLP1 : Green
1Traffic Light Protocol (TLP) [1] for information sharing:
- Red:Not for disclosure, restricted to participants only.
- Amber: Limited disclosure, restricted to participants organizations.
- Green: Limited disclosure, restricted to the community.