2014/09/20

Cool News Story Bro! Week of 9-19-2014

by Otakun
Categories: News
Tags:
Comments: Leave a Comment

Hey Guys and Gals,

Welcome to another week of news. As usual, got some good stuff for you..so let’s get to it!

  1. Large malvertising campaign under way involving DoubleClick and Zedo

    1. First article of the week, by MalwereBytes, looks at a malvertising campaign that seems to stem from DoubleClick ad network. If you remember from our stories last week, we linked to an article about an popular Israeli Think Tank site was being used to redirect to Exploit Kits, well this seems to be related.
    2. Read More @ https://blog.malwarebytes.org/malvertising-2/2014/09/large-malvertising-campaign-under-way-involving-doubleclick-and-zedo
  2. Agora edges past Silk Road 2.0 as Darknet leader, report says

    1. Next, a story that looks at the state of the underground illegal drug sale sites. Since Silk Road 2.0 was shut down, people looking to buy illegal drugs online had to go somewhere else, and it looks like Agora is the “winner” in this case. Interesting look at the state of such sites, post Silk Road 2.0
    2. Read More @ http://www.scmagazine.com/agora-edges-past-silk-road-20-as-darknet-leader-report-says/article/369572/
  3. Home Depot: 56M Cards Impacted, Malware Contained

    1. Next, some new info on the Home Depot breach, and it’s not good reading if you are Home Depot, or one of their customers. 56 Million compromised Credit Cards makes it the largest breach to date. Keep an eye out on your accounts if you shopped at Home Depot after April 2014.
    2. Read More @ http://krebsonsecurity.com/2014/09/home-depot-56m-cards-impacted-malware-contained/
  4. Cyberspies Resuscitate Citadel Trojan For Petrochemical Attacks

    1. This is an interesting one. Apparently an APT campaign targeting Petrochemical firms in the Middle East is using the “Citadel” banking Trojan in its campaign. This is rather unusual, as it’s an old, well known, banking trojan. Not really the type of malware you think of when you think “APT”. Granted there has been a shift towards increased use of commodity malware in targeted campaigns, this one is still a bit odd.
    2. Read More @ http://www.darkreading.com/attacks-breaches/cyberspies-resuscitate-citadel-trojan-for-petrochemical-attacks/d/d-id/1315849?piddl_msgid=260326&linkId=9669264#msg_260326
  5. Tinba variant aimed at U.S., international banks

    1. So, it looks like the relatively new “Tinba” (Tiny Banker) banking trojan is finally expanding in scope, and targeting U.S banks as well. This is a very interesting piece of malware, in that it’s only 20k in size.
    2. Read More @ http://www.scmagazine.com/tinba-variant-aimed-at-us-international-banks/article/371924/
  6. Watering hole attack targets website visitors of oil and gas start-up

    1. This article takes a look at the new “Watering Hole” campaign aimed at a new Oil & Gas start up website. While these attacks are hardly new, it’s interesting that they targeted a start up in this sector, in anticipation of increased traffic to their site due to having just secured additional funding.
    2. Read More @ http://www.scmagazine.com/watering-hole-attack-targets-website-visitors-of-oil-and-gas-start-up/article/372415/
  7. Apple cannot comply with search warrants on iOS 8 devices

    1. Now to switch gears a bit for this next story to privacy news. It looks like Apple is taking a stand on government requests for user data by implementing measures in iOS8 devices that make it unable to comply with such requests. Their new privacy policy outlines the new policy, as well as the technology used to provide an increased level of security. This is good news for any privacy advocates out there, especially in light of recent news of the scope of government reach when it comes to personal data requests.
    2. Read More @ http://www.scmagazine.com/apple-cannot-comply-with-search-warrants-on-ios-8-devices/article/372410/
  8. Chinese hackers breached US military contractors, says Senate report

    1. As shocking as this headline might be, I know, it’s an interesting article regardless. New report by “US Senate Armed Services Committee.” sheds some light on some of the breaches involving US military contractors. Of course, the report was quickly rebuffed by Chinese government. This is hardly going to stop anytime soon, because we ask politely, but it’s interesting to read a more “official” government report on such matters.
    2. Read More  @ http://nakedsecurity.sophos.com/2014/09/19/chinese-hackers-breached-us-military-contractors-says-senate-report/

Leave a Reply

Your email address will not be published. Required fields are marked *



Today is Friday
2017/07/21