InfoSec News 20240116
Top News
-
Remcos RAT Spreading Through Adult Games in New Attack Wave
"The remote access trojan (RAT) known as Remcos RAT has been found being propagated via webhards by disguising it as adult-themed games in South Korea."
TLP1 : Green
-
Inferno Malware Masqueraded as Coinbase, Drained $87 Million from 137,000 Victims
"The operators behind the now-defunct Inferno Drainer created more than 16,000 unique malicious domains over a span of one year between 2022 and 2023."
TLP1 : Green
-
Ivanti VPN under widespread attack
"Ivanti Connect Secure (ICS, formerly Pulse Secure Connect Secure) is a SSL-based VPN solution used by organisations to provide remote secure access to internal networks and resources."
TLP1 : Green
Cybersecurity State: Surveillance, Cyberwarfare, Cybercriminality and Hacktivism
-
Israeli Ports Hit in Cyberattack: Anonymous Sudan Takes Credit
"Anonymous Sudan hacker group has claimed responsibility for cyberattack on Israeli ports. Details about this Anonymous Sudan cyberattack emerged on a dark web portal. The reported targets of this attack include the Israel Ports Development & Assets Company and Haifa Port Company."
TLP1 : Green
-
Delhi HC calls for policing reforms to tackle surging cyber crimes
"The Delhi High Court on Tuesday stressed the need for a reformed policing system to meet new challenges as it heard a Public Interest Litigation (PIL) regarding the surge in cyber crimes,"
TLP1 : Green
-
Phishing attacks to trick victims out of valuables on the rise
"Despite an exponential increase in attempts by criminals to steal valuable personal information, Luxembourg authorities have convicted no one in a phishing case and police can’t estimate the losses that have resulted, government ministers said on Tuesday."
TLP1 : Green
Breaches: Data Breaches and Hacks
-
Barings Law takes Capita data breach potentially affecting ‘millions’ to High Court
"Manchester-based law firm Barings Law has become the first in the country to issue a case against Capita at London’s High Court in response to a data breach that could affect millions of people."
TLP1 : Green
Vulnerabilities: Vulnerability Advisories, Zero-Days,Patches and Exploits
-
Alert: Over 178,000 SonicWall Firewalls Potentially Vulnerable to Exploits - Act Now
"Over 178,000 SonicWall firewalls exposed over the internet are exploitable to at least one of the two security flaws that could be potentially exploited to cause a denial-of-service (DoS) condition and remote code execution (RCE)."
TLP1 : Green
-
Hackers Weaponize Windows Flaw to Deploy Crypto-Siphoning Phemedrone Stealer
"Threat actors have been observed leveraging a now-patched security flaw in Microsoft Windows to deploy an open-source information stealer called Phemedrone Stealer."
TLP1 : Green
Incident Response: Infrastructure, Training, SIEM and Incident Handling
-
Nuisance phone call or strange email? Recognising a Phishing scam
"We all like to think we know how to spot a fake email or a nuisance phone call, but as with all technology these things evolve and become more sophisticated. And it’s a sad fact, but people still fall victim to scams that not only cause financial damage, but can be frightening as well."
TLP1 : Green
Technical Articles: Forensics, Reverse Engineering, Malware, Phishing, Pentesting, Software Security and Cryptography
-
CloudRecon - Finding assets from certificates
"CloudRecon is a suite of tools for red teamers and bug hunters to find ephemeral and development assets in their campaigns and hunts."
TLP1 : Green
1Traffic Light Protocol (TLP) [1] for information sharing:
- Red:Not for disclosure, restricted to participants only.
- Amber: Limited disclosure, restricted to participants organizations.
- Green: Limited disclosure, restricted to the community.