Security Affairs newsletter Round 148 – News of the week

A new round of the weekly SecurityAffairs newsletter arrived!

The best news of the week with Security Affairs.

Once again thank you!

·      Attackers behind Cloudflare_solutions Keylogger are back, 2000 WordPress sites already infected
·      Download URLs for two packages of the phpBB forum software were compromised
·      Iran-linked APT OilRig target IIS Web Servers with new RGDoor Backdoor
·      Japan-based digital exchange Coincheck to refund to customers after cyberheist
·      #ThinkBeyond – Security solutions from market leaders may all fail in your particular environment
·      A new report from MALWAREBYTES reveals a rise of 90% on ransomware detection in business
·      Cybersecurity week Round-Up (2018, Week 4)
·      Dridex banking Trojan and the FriedEx ransomware were developed by the same group
·      Military personnel improperly used Fitness Strava Tracker exposed their bases
·      On Saturday Malwarebytes delivered a buggy update that caused excessive memory usage and crashes.
·      Over the weekend Microsoft rolled out out-of-band updates to disable mitigations for Spectre v2 attacks
·      Cisco ASA software is affected by a flaw with 10 out of 10 severity rating. Patch it asap
·      Crooks target ATMs with Ploutus-D malware, these are the first confirmed cases of Jackpotting in US
·      Intel reportedly alerted Chinese companies before US Government about Meltdown and Spectre flaws
·      Three Dutch banks and Tax Agency under DDoS Attacks … is it a Russian job?
·      Cybercriminals Stealing From Cybercriminals Ransomware Victims Left Stranded
·      Is ICEMAN behind the malware-based attack on Crystal Finance Millennium?
·      Mozilla fixes a critical remote code execution vulnerability in Firefox
·      Once again, Oracle MICROS PoS have been breached
·      US Attorney General set up the Joint Criminal Opioid Darknet Enforcement team to fight online opioid trafficking
·      Malware exploiting Spectre and Meltdown flaws are currently based on available PoC
·      Mining Smominru botnet used NSA exploit to infect more than 526,000 systems
·      Siemens fixed three flaws in plant management product Siemens TeleControl Basic system
·      South Korea Warns of Flash Zero-Day flaw exploited by North Korea in surgical attacks
·      WannaMine, the sophisticated crypto miner that spreads via NSA EternalBlue exploit
·      Chinese Iron Tiger APT is back, a close look at the Operation PZChao
·      DDG, the second largest mining botnet targets Redis and OrientDB servers
·      Hundreds of ICS products affected by a critical flaw in CODESYS WebVisu
·      Researchers discovered several zero-day flaws in ManageEngine products
·      Watch out, cyber criminals are using fake FBI emails to infect your computer
·      Japans Financial Services Agency raided the Coincheck headquarters in Tokyo after the hack
·      JenX botnet leverages Grand Theft Auto videogame community to infect devices
·      Western Digital My Cloud flaws allows local attacker to gain root access to the devices
·      Why are we all silent on the surveillance?


Pierluigi Paganini

(Security Affairs – Newsletter)

The post Security Affairs newsletter Round 148 – News of the week appeared first on Security Affairs.

Leave a Reply