2014/07/05

Cool News Story Bro! Week of 7-04-2014

by Otakun
Categories: News
Tags: No Tags
Comments: Leave a Comment

Hey there! Another news recap, but first…Happy 4th of July! Hopefully you are drinking many a beer and eating plenty of delicious BBQ! Now, into the news we go.

  1. Microsoft seizes 22 NO-IP domains, disrupts cybercriminal and nation state APT malware operations

    1. First story comes courtesy of SecureList, and this is a big one. Microsoft has disrupted a large number of APT and malware operations through domain seizures of DDNS provider No-IP. Anyone routinely dealing with APT knows how often DDNS is abused by APT actors.  This did also disrupt a large number of legitimate customers as well, but I think it’s a good move.
    2. Read More @ http://www.securelist.com/en/blog/208214339/Microsoft_seizes_22_NO_IP_domains_disrupts_cybercriminal_and_nation_state_APT_malware_operations
  2. Miniduke is back: Nemesis Gemina and the Botgen Studio

    1. Another one from SecureList. This time, it’s a look at the “improved” Miniduke APT operations. Seems like this operation has gone through some fairly significant changes, and they provide a nice analysis of the old and the new.
    2. Read more @ http://www.securelist.com/en/blog/208214341/Miniduke_is_back_Nemesis_Gemina_and_the_Botgen_Studio
  3. Rig Exploit Kit Used in Recent Website Compromise

    1. Next, we have an article by Symantec, that takes a look into the “Rig Exploit Kit”. This one is fairly new, only discovered a few months ago. You know by now that I love me some exploit it news, so anytime I can learn more about any of them is appreciated.
    2. Read More @ http://www.symantec.com/connect/blogs/rig-exploit-kit-used-recent-website-compromise?linkId=8704505
  4. Dragonfly: Western Energy Companies Under Sabotage Threat

    1. Last story for the week also comes to us courtesy of Symantec. This time it’s a look at the “Dragonfly” APT campaign, that is targeting western energy companies. Interesting thing here is that the threat actor seems to be eastern European in origin, and not Chinese, as is usually the case.
    2. Read More @ http://www.symantec.com/connect/blogs/dragonfly-western-energy-companies-under-sabotage-threat

Leave a Reply

Your email address will not be published. Required fields are marked *



Today is Friday
2018/02/23