Infosec News 20210520
Top News
-
Threats Hover Over Tor Users
"Cybercriminals are increasingly targeting the Tor network. Recently, two fresh waves of attacks have been observed, which include SSL-stripping attacks and a new fingerprinting technique, dubbed scheme flooding."
TLP1 : Green
-
The Lasting Impact of the COVID Pandemic on Privacy
""People are saying more and more that they're concerned about how their data is being used and that they want more privacy," Brill said. "They want companies to do more, and they want governments to do more, to ensure that their data is well protected.""
TLP1 : Green
-
EU Member States test rapid Cyber Crisis Management
"CySOPEx 2021 is testing for the first time today the procedures for prompt and effective cyber crisis management in the EU to face large-scale, cross border cyber-attacks."
TLP1 : Green
Cybersecurity State: Surveillance, Cyberwarfare, Cybercriminality and Hacktivism
-
Glass and Metal Packaging Giant Ardagh Group Discloses Cyberattack
"The Luxembourg-based company, one of the largest producers of glass and metal packaging products, says it was able to safely continue operations at its facilities despite the incident."
TLP1 : Green
-
How Ransomware Encourages Opportunists to Become Criminals
"What we know at this point is criminals have developed sophisticated tactics (the ransomware), distribution mechanism (like REvil), and patience for bringing down bigger prey (like CNA.) The ability to breach one of the largest organizations that exist to underwrite cybersecurity risk is compelling evidence that the bear is now chasing the faster, tastier runners. If the criminal networks possess a listing of companies insured and the amount that they are insured for, they have created a menu of the tastiest morsels to target."
TLP1 : Green
-
BazarCall: Call Centers Help Spread BazarLoader Malware
"BazarLoader (sometimes referred to as BazaLoader) is malware that provides backdoor access to an infected Windows host. After a client is infected, criminals use this backdoor access to send follow-up malware, scan the environment and exploit other vulnerable hosts on the network."
TLP1 : Green
Breaches: Data Breaches and Hacks
-
Here’s how much your stolen personal data is worth on the dark web
"Data breaches have become common, and billions of records are stolen worldwide every year. Most of the media coverage of data breaches tends to focus on how the breach happened, how many records were stolen and the financial and legal impact of the incident for organizations and individuals affected by the breach. But what happens to the data that is stolen during these incidents?"
TLP1 : Green
Vulnerabilities: Vulnerability Advisories, Zero-Days, Patches and Exploits
-
D-Link Router CVE-2021-27342 Timing Side-Channel Attack Vulnerability Writeup
"Rather quickly I found I can enable telnet through the admin web gui, and then connect to telnet with an admin user. But that was too easy, so let’s see if we can find a bug/vulnerability.."
TLP1 : Green
-
Android Issues Patches for 4 New Zero-Day Bugs Exploited in the Wild
"Google on Wednesday updated its May 2021 Android Security Bulletin to disclose that four of the security vulnerabilities that were patched earlier this month by Arm and Qualcomm may have been exploited in the wild as zero-days."
TLP1 : Green
Incident Response: Infrastructure, Training, SIEM and Incident Handling
-
The Minimum Requirements For Enterprise SIEM Solutions
"What are the minimum requirements for enterprise SIEM solutions? In other words, what should your enterprise expect from even the most basic next-generation solution to conduct your cybersecurity optimally? "
TLP1 : Green
Technical Articles: Forensics, Reverse Engineering, Malware, Phishing, Pentesting, Software Security and Cryptography
-
Strong ARMing with MacOS: Adventures in Cross-Platform Emulation
" In a world where adversaries are becoming more sophisticated by the day, it is important that threat hunters can keep a competitive advantage and remain one step ahead of threat actors. Recent developments in Apple® hardware have made it even more difficult for security researchers to keep up, and the demand for ARM-targeted testing environments is increasing."
TLP1 : Green
1Traffic Light Protocol (TLP) [1] for information sharing:
- Red:Not for disclosure, restricted to participants only.
- Amber: Limited disclosure, restricted to participants organizations.
- Green: Limited disclosure, restricted to the community.