InfoSec News 20231023
Top News
-
Quasar RAT Leverages DLL Side-Loading to Fly Under the Radar
"The open-source remote access trojan known as Quasar RAT has been observed leveraging DLL side-loading to fly under the radar and stealthily siphon data from compromised Windows hosts."
TLP1 : Green
-
China has stolen more personal and corporate information than every other country in the world combined, FBI director says
"FBI Director Christopher Wray says China is running the world's most extensive hacking program."
TLP1 : Green
-
Brasil é líder do ranking de ataques DDoS na América Latina pela 10ª vez; entenda
"O Brasil, pelo 10º ano consecutivo, é o líder do ranking de ataques DDoS, segundo informações divulgadas na semana passada pela empresa norte-americana de soluções de cibersegurança NETSCOUT."
TLP1 : Green
Cybersecurity State: Surveillance, Cyberwarfare, Cybercriminality and Hacktivism
-
Europol Dismantles Ragnar Locker Ransomware Infrastructure, Nabs Key Developer
"Europol on Friday announced the takedown of the infrastructure associated with Ragnar Locker ransomware, alongside the arrest of a "key target" in France."
TLP1 : Green
-
DoNot Team's New Firebird Backdoor Hits Pakistan and Afghanistan
"The threat actor known as DoNot Team has been linked to the use of a novel .NET-based backdoor called Firebird targeting a handful of victims in Pakistan and Afghanistan."
TLP1 : Green
-
Email users vulnerable to phishing when message ‘comes from’ trusted source
"Nearly one-third of email users are likely to click on a suspicious link or comply with a fraudulent request. Cybercriminals understand that people are even more likely to open a message from a seemingly reliable source, such as the HR department."
TLP1 : Green
Breaches: Data Breaches and Hacks
-
Okta's Support System Breach Exposes Customer Data to Unidentified Threat Actors
"Identity services provider Okta on Friday disclosed a new security incident that allowed unidentified threat actors to leverage stolen credentials to access its support case management system."
TLP1 : Green
Vulnerabilities: Vulnerability Advisories, Zero-Days,Patches and Exploits
-
Cisco Zero-Day Exploited to Implant Malicious Lua Backdoor on Thousands of Devices
"Cisco has warned of a new zero-day flaw in IOS XE that has been actively exploited by an unknown threat actor to deploy a malicious Lua-based implant on susceptible devices."
TLP1 : Green
-
Password Admin123: Hackers sweat to expose Philippines’ state secrets
"The documents stolen included about 500 gigabytes of documents from the National Intelligence Coordinating Agency, all of which related to the Philippine Air Force."
TLP1 : Green
Incident Response: Infrastructure, Training, SIEM and Incident Handling
-
The US released popular phishing techniques
"The United States government released a guide regarding the most popular phishing techniques. It defines phishing as “a cyberattack that uses deception to trick people into giving away sensitive information or taking actions that compromise security.” Everyone should read these tips to remain secure online, even those outside the US. "
TLP1 : Green
Technical Articles: Forensics, Reverse Engineering, Malware, Phishing, Pentesting, Software Security and Cryptography
-
SecuSphere - Efficient DevSecOps
"SecuSphere is a comprehensive DevSecOps platform designed to streamline and enhance your organization's security posture throughout the software development life cycle. Our platform serves as a centralized hub for vulnerability management, security assessments, CI/CD pipeline integration, and fostering DevSecOps practices and culture."
TLP1 : Green
1Traffic Light Protocol (TLP) [1] for information sharing:
- Red:Not for disclosure, restricted to participants only.
- Amber: Limited disclosure, restricted to participants organizations.
- Green: Limited disclosure, restricted to the community.