Hey Guys and Gals,
Welcome to another week of news. As usual, got some good stuff for you..so let’s get to it!
- First article of the week, by MalwereBytes, looks at a malvertising campaign that seems to stem from DoubleClick ad network. If you remember from our stories last week, we linked to an article about an popular Israeli Think Tank site was being used to redirect to Exploit Kits, well this seems to be related.
- Read More @ https://blog.malwarebytes.org/malvertising-2/2014/09/large-malvertising-campaign-under-way-involving-doubleclick-and-zedo
- Next, a story that looks at the state of the underground illegal drug sale sites. Since Silk Road 2.0 was shut down, people looking to buy illegal drugs online had to go somewhere else, and it looks like Agora is the “winner” in this case. Interesting look at the state of such sites, post Silk Road 2.0
- Read More @ http://www.scmagazine.com/agora-edges-past-silk-road-20-as-darknet-leader-report-says/article/369572/
- Next, some new info on the Home Depot breach, and it’s not good reading if you are Home Depot, or one of their customers. 56 Million compromised Credit Cards makes it the largest breach to date. Keep an eye out on your accounts if you shopped at Home Depot after April 2014.
- Read More @ http://krebsonsecurity.com/2014/09/home-depot-56m-cards-impacted-malware-contained/
- This is an interesting one. Apparently an APT campaign targeting Petrochemical firms in the Middle East is using the “Citadel” banking Trojan in its campaign. This is rather unusual, as it’s an old, well known, banking trojan. Not really the type of malware you think of when you think “APT”. Granted there has been a shift towards increased use of commodity malware in targeted campaigns, this one is still a bit odd.
- Read More @ http://www.darkreading.com/attacks-breaches/cyberspies-resuscitate-citadel-trojan-for-petrochemical-attacks/d/d-id/1315849?piddl_msgid=260326&linkId=9669264#msg_260326
- So, it looks like the relatively new “Tinba” (Tiny Banker) banking trojan is finally expanding in scope, and targeting U.S banks as well. This is a very interesting piece of malware, in that it’s only 20k in size.
- Read More @ http://www.scmagazine.com/tinba-variant-aimed-at-us-international-banks/article/371924/
- This article takes a look at the new “Watering Hole” campaign aimed at a new Oil & Gas start up website. While these attacks are hardly new, it’s interesting that they targeted a start up in this sector, in anticipation of increased traffic to their site due to having just secured additional funding.
- Read More @ http://www.scmagazine.com/watering-hole-attack-targets-website-visitors-of-oil-and-gas-start-up/article/372415/
- Read More @ http://www.scmagazine.com/apple-cannot-comply-with-search-warrants-on-ios-8-devices/article/372410/
- As shocking as this headline might be, I know, it’s an interesting article regardless. New report by “US Senate Armed Services Committee.” sheds some light on some of the breaches involving US military contractors. Of course, the report was quickly rebuffed by Chinese government. This is hardly going to stop anytime soon, because we ask politely, but it’s interesting to read a more “official” government report on such matters.
- Read More @ http://nakedsecurity.sophos.com/2014/09/19/chinese-hackers-breached-us-military-contractors-says-senate-report/