Thursday, September 20, 2018

APT10 Under Close Scrutiny as Potentially Linked to Chinese Ministry of State Security

An advanced threat actor has been associated with China’s Ministry of State Security via two individuals and a Chinese firm. Source link

Cybersecurity, BGU, BullGuard, IoT | Homeland Security Newswire

CybersecurityDojo by BullGuard establishes lab at [email protected] Published 14 September 2018Dojo by BullGuard, an Internet of Things (IoT) security specialist, and BGN Technologies, the technology transfer company of Ben-Gurion University...

Cisco Umbrella Enterprise Roaming Client and Enterprise Roaming Module Privilege Escalation Vulnerability

Cisco has released free software updates that address the vulnerability described in this advisory. Customers may only install and expect support for software versions and feature sets for which they...

ThreatList: Attacks on Industrial Control Systems on the Rise

The main source of infection on industrial control systems was the internet, researchers at Kaspersky Lab found in a new report. Source link

Threatlist: Email Attacks Surge, Targeting Execs

Overall, the number of email fraud attacks per targeted company rose 25 percent from the previous quarter (to 35 on average) and 85 percent from the year-ago quarter. Source link

Mirai, Gafgyt Botnets Return to Target Infamous Apache Struts, SonicWall Flaws

By implementing the "Equifax bug," it's the first known time a Mirai IoT botnet variant has targeted an Apache Struts vulnerability. Source link

Threat Actors Eyeing IQY Files To Peddle Malspam

The Necurs Botnet, DarkHydrus and other threat actors are turning to the inconspicuous files. Source link

Tiny Island Atoll’s Domain Used in Widespread Ad Fraud

The campaign is believed to bring in close to $22,000 per month for bad actors. Source link

Russian hacking, 2016 U.S. elections, social media, fake Americans, Russia’s cyberattacks, espionage, Twitter, Facebook,...

The Russia connectionTwitter, Facebook face senators againPublished 5 September 2018The Senate Intelligence Committee is set to hear from two top social media executives today (Wednesday) on what they have been...

Open .Git Directories Leave 390K Websites Vulnerable

An exhaustive scan shows hundreds of thousands of websites potentially exposing sensitive data such as database passwords, API keys and so on. Source link