Cool News Story Bro! Week of 04-17-2015

by Otakun
Categories: News
Tags: No Tags
Comments: Leave a Comment

Hey Guys,

It’s that time of the week again. We come bearing the gift of news for your enjoyment! So let’s jump right into it.

  1. POS Providers Feel Brunt of PoSeidon Malware

    1. First article comes from Krebs on Security, one of our favorite security bloggers, as he takes a look at the “PoSeidon” Point of Sale malware. Or rather, some of the recent breaches that used this malware. I always like reading his stories as he tends to bring a more in depth perspective of the economy surrounding these hacks, instead of a technical analysis. Tends to give you a good luck into how these criminals operate. Really good read.
    2. Read More @ http://krebsonsecurity.com/2015/04/pos-providers-feel-brunt-of-poseidon-malware/
  2. Remote Code Execution Via HTTP Request In IIS On Windows

    1. Next, arguably the biggest news this weak, is that of a new Remote Code Execution vulnerability in IIS on Windows (MS15-034). A specially crafted HTTP request could allow for executing arbitrary code under the privilege of the “System” account. This is a fairly significant vulnerability and one that’s already seeing use in the wild. Patch quickly!
    2. Read More @ https://ma.ttias.be/remote-code-execution-via-http-request-in-iis-on-windows/
  3. Interpol announces successful takedown of “Simda” botnet

    1. Next, yet another botnet takedown story, hot on the heels of the “BeeBone” takedown we spoke of last week. This time the bot in question is “Simda”, not quite as prevalent as “BeeBone” but still affected about 770,000 machines. Either way, good news.
    2. Read More @ https://nakedsecurity.sophos.com/2015/04/15/interpol-announces-successful-takedown-of-simda-botnet
  4.  Flash EK Strikes Again via Google’s DoubleClick

    1. Time for another malvertising campaign. We seem to be getting more of those lately, but this one is rather significant as it affects Google’s DoubleClick Ad network. Considering the far reach of DoubleClick, this is a pretty big deal.
    2. Read More @ https://blog.malwarebytes.org/malvertising-2/2015/04/flash-ek-strikes-again-via-googles-doubleclick/
  5. The Chronicles of the Hellsing APT: the Empire Strikes Back

    1. So this next one is a rather interesting APT related story. It seems like, according to findings by Kaspersky, they stumbled upon an instance of two APT groups (Hellsing, and Naikon) that operate in the same geographical region actually targeting each other. I have to say, this is the first time I’ve seen something like this happen. Excellent read!
    2. Read More @ https://securelist.com/analysis/publications/69567/the-chronicles-of-the-hellsing-apt-the-empire-strikes-back/
  6. Operation Pawn Storm Ramps Up its Activities; Targets NATO, White House

    1. Next, more APT related news, this time involving the “Operation Pawn Storm” group. New findings by Trend Micro discovered that the campaign has expanded to feature a few more new targets, mainly “NATO”, and the “White House”.
    2. Read More @ http://blog.trendmicro.com/trendlabs-security-intelligence/operation-pawn-storm-ramps-up-its-activities-targets-nato-white-house/
  7. New POS Malware Emerges – Punkey

    1. Next, more PoS malware news. TrustWave brings news of new PoS malware named “Punkey” that recently started making the rounds. Some pretty in depth analysis on their blog, good read for those interested in keeping up with latest PoS threats.
    2. Read More @ https://www.trustwave.com/Resources/SpiderLabs-Blog/New-POS-Malware-Emerges—Punkey/?page=1&year=0&month=0
  8. Target Reaches $19 Million Settlement With MasterCard Over Data Breach

    1. Next, more from the “Target” breach. It looks like the retailer has settled with MasterCard over the breach for $19 million. This should cover the expenses to MasterCard that goes along with reissuing all new cards for their customers affected by the breach. Similar settlement is expected to happen soon with VISA as well.
    2. Read More @ http://www.huffingtonpost.com/2015/04/15/target-settlement-data-breach_n_7074358.html?ir=Technology&ncid=tweetlnkushpmg00000046
  9. China suspends bank-technology rules that sparked backlash

    1. In an interesting new development, China seems to have backpedaled on their new requirements for any foreign firms looking to do business with Chinese banks. If you have been following our news we brought you several stories of U.S government as well as companies protesting the new rules. It seems like the Chinese banks themselves were not big fans of the proposed rules either, and have convinced the government to “suspend” the new rules. Will it be permanent? Only time will tell.
    2. Read More @ http://www.reuters.com/article/2015/04/17/us-china-bank-rules-idUSKBN0N807E20150417
  10. WikiLeaks publishes massive searchable archive of hacked Sony documents

    1. Last story of the day is one related to the Sony hack. WikiLeaks has just published a massive archive of the hacked Sony documents in an easily searchable format. I doubt Sony is happy that the information has been easier to access, but at this point the cat is out of the bag.
    2. Read More @ https://nakedsecurity.sophos.com/2015/04/17/wikileaks-publishes-massive-searchable-archive-of-hacked-sony-documents/
– Otakun –

Leave a Reply

Your email address will not be published. Required fields are marked *

Today is Wednesday