Top News

• Amazon Sidewalk will create entire smart neighborhoods. Here's what you should know

"Launching June 8 on Echo speakers, Ring products, Tile trackers and more, Amazon's low-bandwidth internet-of-things network lets your smart home stretch beyond Wi-Fi range."

Link

TLP¹ : Green

• Cryptocurrency hacks wanted – $100,000 prize fund offered in cybercrime forum contest

"Cybercriminals are running an online competition offering big prizes to anyone who believes they have found an unusual way to help crooks steal cryptocurrency."

Link

TLP¹ : Green

• Backdoor malware found on the Myanmar president’s website, again

"A cyber-espionage hacking group is believed to have hacked the website of the Myanmar president’s office and planted a backdoor trojan inside a localized Myanmar font package available for download on the site’s front page."

Link

TLP¹ : Green

Cybersecurity State: Surveillance, Cyberwarfare, Cybercriminality and Hacktivism

• FBI confirmed that JBS was hit by the REvil ransomware gang

"The US FBI announced that REvil ransomware gang (also known as Sodinokibi) is behind the attack that hit JBS Foods."

Link

TLP¹ : Green

• SharpPanda: Chinese APT Group Targets Southeast Asian Government With Previously Unknown Backdoor

"Check Point Research identified an ongoing surveillance operation targeting a Southeast Asian government. The attackers use spear-phishing to gain initial access and leverage old Microsoft Office vulnerabilities together with the chain of in-memory loaders to attempt and install a previously unknown backdoor on victim’s machines."

Link

TLP¹ : Green

• U.S. to Give Ransomware Attacks Similar Priority as Terrorism

"In the aftermath of the Colonial Pipeline hack and the increasing damage done by cybercriminals, the U.S. Department of Justice is intensifying investigations into ransomware assaults to the same level of severity as terrorism, according to a senior department official, as Reuters notes.  "

Link

TLP¹ : Green

Breaches: Data Breaches and Hacks

• AMT Games data breach: Millions of Users’ Messages, Account IDs, and IP Addresses Exposed

"WizCase’s security team discovered an unsecured ElasticSearch server owned by AMT Games which exposed 1.47 TB of data."

Link

TLP¹ : Green

Vulnerabilities: Vulnerability Advisories, Zero-Days,Patches and Exploits

• Cisco Releases Security Updates for Multiple Products

"Cisco has released security updates to address vulnerabilities in multiple Cisco products. An attacker could exploit some of these vulnerabilities to take control of an affected system."

Link

TLP¹ : Green

• Researchers Warn of Critical Bugs Affecting Realtek Wi-Fi Module

"A new set of critical vulnerabilities has been disclosed in the Realtek RTL8170C Wi-Fi module that an adversary could abuse to gain elevated privileges on a device and hijack wireless communications"

Link

TLP¹ : Green

Incident Response: Infrastructure, Training, SIEM and Incident Handling

• Build, Hack, and Defend Azure Identity - An Introduction to PurpleCloud Hybrid + Identity Cyber Range

"Attacking Identity Systems is an attack vector growing in visibility. Look no further than the Golden SAML tactic used in the SolarWinds campaign. We are seeing an explosion of Cyber Security tools, techniques, and solid presentations that convey a better understanding of Identity security issues."

Link

TLP¹ : Green

Technical Articles: Forensics, Reverse Engineering, Malware, Phishing, Pentesting, Software Security and Cryptography

• Russian Dolls VBS Obfuscation

"We received an interesting sample from one of our readers and we like this. Henry's sample was delivered in a password-protected ZIP archive and the file was a VBS script called "presentation_37142.vbs."

Link

TLP¹ : Green

• Email spoofing: how attackers impersonate legitimate senders

"In a nutshell, email spoofing is the creation of fake emails that seem legitimate. This article analyzes the spoofing of email addresses through changing the From header, which provides information about the sender’s name and address."

Link

TLP¹ : Green

¹Traffic Light Protocol (TLP) [1] for information sharing:

• Red:Not for disclosure, restricted to participants only.
• Amber: Limited disclosure, restricted to participants organizations.
• Green: Limited disclosure, restricted to the community.

[1]https://www.first.org/tlp