Infosec News 20200622
Top News
-
A new variant of the IcedID banking Trojan spreads using COVID-19 lures
"Experts spotted a new version of the IcedID banking trojan that uses steganography to infect victims as part of COVID-19 themed attacks."
TLP1 : Green
-
Over 100 New Chrome Browser Extensions Caught Spying On Users
"Google recently removed 106 more extensions from its Chrome Web Store after they were found illegally collecting sensitive user data as part of a "massive global surveillance campaign" targeting oil and gas, finance, and healthcare sectors."
TLP1 : Green
-
230k+ Indonesian COVID-19 patients’ records for sale in the Darkweb
"Security researchers at threat intelligence firm Cyble discovered over 230.000 Indonesian COVID-19 patients records leaked in the darknet."
TLP1 : Green
Cybersecurity State: Surveillance, Cyberwarfare, Cybercriminality and Hacktivism
-
Moroccan journalist targeted with network injection attacks using NSO Group ‘s spyware
"Researchers at Amnesty International collected evidence that a Moroccan journalist was targeted with network injection attacks using NSO Group ‘s spyware."
TLP1 : Green
-
Former DIA Analyst Sentenced to Prison Over Data Leak
"A former Defense Intelligence Agency analyst leaked classified information to two journalists shedding light on insider threats"
TLP1 : Green
Breaches: Data Breaches and Hacks
-
‘BlueLeaks’ Exposes Files from Hundreds of Police Departments
"Hundreds of thousands of potentially sensitive files from police departments across the United States were leaked online last week."
TLP1 : Green
-
IT guy from FEMA hacked medical center, sold data on dark web
"According to prosecutors, the 29-year old Johnson sold it on the dark web."
TLP1 : Green
Vulnerabilities: Vulnerability Advisories, Zero-Days,Patches and Exploits
-
Microsoft Windows up to Server 2019 NTLM Downgrade weak authentication
"A vulnerability, which was classified as critical, was found in Microsoft Windows (Operating System)."
TLP1 : Green
-
Microsoft Windows up to Server 2019 DirectX privilege escalation
"A vulnerability has been found in Microsoft Windows up to Server 2019 (Operating System) and classified as critical."
TLP1 : Green
Incident Response: Infrastructure, Training, SIEM and Incident Handling
-
What You Need to Know About Linux Rootkits [Updated]
"Rootkits are an effective way for attackers to hide their tracks and keep access to the machines over which they have gained control."
TLP1 : Green
-
How to use the Whonix advanced security and privacy distribution
"Are you familiar with Whonix? Whonix is a Linux desktop dedicated to absolute security and privacy."
TLP1 : Green
Technical Articles: Forensics, Reverse Engineering, Malware, Phishing, Pentesting, Software Security and Cryptography
-
DroidTracker - Script To Generate An Android App To Track Location In Real Time
"Script to generate an Android App to track location in real time"
TLP1 : Green
-
O.G. AUTO-RECON - Enumerate A Target Based Off Of Nmap Results
"Enumerate a target Based off of Nmap Results"
TLP1 : Green
-
Simple story of some complicated XSS on Facebook
"This post is about the reflected cross-site scripting (rXSS) vulnerabilities I found on Facebook."
TLP1 : Green
1Traffic Light Protocol (TLP) [1] for information sharing:
- Red:Not for disclosure, restricted to participants only.
- Amber: Limited disclosure, restricted to participants organizations.
- Green: Limited disclosure, restricted to the community.