Situation Awareness 06.21.16
Trends
DDoS attacks on the rise, Android more vulnerable than iOS
https://securitybrief.com.au/story/ddos-attacks-rise-android-more-vulnerable-ios/
CryptoWall, TeslaCrypt and Locky Are Today’s Top 3 Ransomware Threats
http://news.softpedia.com/news/cryptowall-teslacrypt-and-locky-are-today-s-top-3-ransomware-threats-501629.shtml
FBI Warning: Ransomware Is Surging
http://www.databreachtoday.com/fbi-warning-ransomware-surging-a-8962
Attacks
Hackers Broke Into A Security Company And Stole The KKK’s Data
http://www.gizmodo.com.au/2016/03/hackers-broke-into-a-security-company-and-stole-the-kkks-data/
(Healthcare) 18 latest data breaches
http://www.beckershospitalreview.com/healthcare-information-technology/18-latest-data-breaches-3-11-16.html
Ottawa Hospital hit with ransomware, information on four computers locked down
http://news.nationalpost.com/news/canada/ottawa-hospital-hit-with-ransomware-information-on-four-computers-locked-down
Cerber Ransomware – New, But Mature
https://blog.malwarebytes.org/intelligence/2016/03/cerber-ransomware-new-but-mature/
‘Locky’ ransomware scam hits tens of thousands of Australian Computers
http://www.brisbanetimes.com.au/technology/consumer-security/locky-ransomware-scam-hits-tens-of-thousands-of-australian-computers-20160309-gnf82e.html
MARCHER TROJAN MORPHS, NOW TARGETS PORN SITES
Malware
A GROWING NUMBER OF ANDROID MALWARE FAMILIES BELIEVED TO HAVE A COMMON ORIGIN: A STUDY BASED ON BINARY CODE
https://www.fireeye.com/blog/threat-research/2016/03/android-malware-family-origins.html?utm_source=hs_email&utm_medium=email&utm_content=27218759&_hsenc=p2ANqtz-89qQ_i6Xmytz_fOBU1EMar6MpFnLk7d3_8z5Gywe1ktK9bAbOAtAwBVOiAFDeoIRLkEuP6OtDCoPEx9Rgs9zk2_N5Kxw&_hsmi=27218759
Triada Trojan Most Advanced Mobile Malware Yet: Kaspersky
http://www.securityweek.com/triada-trojan-most-advanced-mobile-malware-yet-kaspersky
We Can Decrypt Files Locked by KeRanger Mac Ransomware, Says Russian AV Vendor
http://news.softpedia.com/news/we-can-decrypt-files-locked-by-keranger-mac-ransomware-says-russian-av-vendor-501643.shtml
Cyber-Warfare
Intel agencies hack ISIS, score a goldmine of key information
http://bgr.com/2016/03/11/isis-hacked-security-breach-personal-data/
North Korea denies cyber attacks on South Korea officials
http://www.reuters.com/article/us-northkorea-korea-cyber-idUSKCN0WF05V
Attackers
Ransomware Rising – Criakl, OSX, and others – PhishMe Tracks Down Hackers,
Identifies Them and Provides Timeline of Internet Activities
http://phishme.com/ransomware-rising-criakl-osx-others/
Instagram hackers stole tens of thousands of euros from users
http://www.nltimes.nl/2016/03/14/instagram-hackers-stole-tens-of-thousands-of-euros-from-users/
Taking pity on law enforcement, Romanian hacker “GhostShell” doxes himself
http://www.databreaches.net/taking-pity-on-law-enforcement-romanian-hacker-ghostshell-doxes-himself/
Vulnerabilities
600,000 TFTP Servers Can Be Abused for Reflection DDoS Attacks
http://news.softpedia.com/news/600-000-tftp-servers-can-be-abused-for-reflection-ddos-attacks-501568.shtml
Botched Java patch leaves millions vulnerable to 30-month-old attack
http://arstechnica.com/security/2016/03/botched-java-patch-leaves-millions-vulnerable-to-30-month-old-attack/
The Facts Are In: Ambulances vulnerable to hackers
http://threatbrief.com/facts-ambulances-vulnerable-hackers/
Mechanic computers used to pwn cars in new model-agnostic attack
http://www.theregister.co.uk/2016/03/13/mechanic_computers_used_to_pwn_cars_in_new_modelagnostic_attack/
SAP software download app exposed passwords thanks to serious vuln
http://www.theregister.co.uk/2016/03/11/sap_software_download_app_exposed_passwords/
0day remote code exec holes in mobile modems can read SMS and HTTP
https://packetstormsecurity.com/news/view/26417/0day-Remote-Code-Exec-Holes-In-Mobile-Modems.html
Patches
Adobe issues emergency out-of-band update for actively exploited 0Day
http://securityaffairs.co/wordpress/45226/security/adobe-emergency-out-of-band-update.html
Cisco patches a bunch of cable modem vulns
http://www.theregister.co.uk/2016/03/10/cisco_patches_a_bunch_of_cable_modem_vulns/
Samsung Fixes Driver Update Tool to Prevent Malicious Takeover
http://news.softpedia.com/news/samsung-fixes-driver-update-tool-to-prevent-malicious-takeover-501547.shtml
General
http://mobileidworld.com/2d-fingerprint-spoof-method-highlights-need-for-liveness-detection-103113/
2D Fingerprint Spoof Method Highlights Need For Liveness Detection
Past, present and future of threat intelligence platforms
https://www.helpnetsecurity.com/2016/03/11/threat-intelligence-platforms/
FireEye Inc to Assist Bangladesh Central Bank Cyber-Attack Investigation
http://www.bidnessetc.com/65312-fireeye-assist-bangladesh-central-bank-cyberattack-investigation/
&
Malware suspected in Bangladesh bank heist: officials
http://www.reuters.com/article/us-usa-fed-bangladesh-malware-idUSKCN0WD1EV
Silicon Valley firm’s stumble signals chill in cybersecurity market
http://www.csmonitor.com/World/Passcode/2016/0311/Silicon-Valley-firm-s-stumble-signals-chill-in-cybersecurity-market
GeoPol
China’s overseas critics under pressure from smear campaigns, cyber attacks
https://cpj.org/blog/2016/03/chinas-overseas-critics-under-pressure-from-smear-.php
(Philippines) Banking system vulnerable to hack attacks – Recto
http://www.manilatimes.net/banking-system-vulnerable-to-hack-attacks-recto/250271/
(Singapore) Is there a need for new cyber security bill?
http://sbr.com.sg/telecom-internet/exclusive/there-need-new-cyber-security-bill-0
Related posts