Sorry for the absence of news last week, our entire crew was at DefCon 22, so we had to skip the news post for that week. It was fun stuff though! Either way, we are back now, so let’s get to it
- First story this week looks at some of the similarities between the GameOver Zeus, and the Boletos malware family. Seems like there is a collaborative effort here between the two groups, as they are using some very similar techniques.
- Read More @ https://securelist.com/blog/research/65797/zeus-gameover-brazilian-trojans-and-boletos-an-explosive-combination
- So, we had to have a story in here about the much coveted “Pwnie” awards. Some pretty good “winners” this time around. Enjoy.
- Read More @ nakedsecurity.sophos.com/2014/08/11/pwnie-awards-for-heartbleed-goto-fail-mt-gox
- This is a pretty important one for all you memory forensicators out there. New version of volatility is out, and the feature list of new additions is pretty impressive. I am looking forward to playing around with it.
- Read More @ http://volatility.tumblr.com/post/94701542977/presenting-volatility-foundation-volatility-framework
- Next, a story based on a report by Symantec on malware that is capable of escaping, or infecting a Virtual Machine environment. Examples include host-to-guest, and guest-to-host infections. Very interesting read.
- Read More @ http://www.scmagazine.com/malware-threatens-virtual-machines-according-to-report/article/366155/
- Next, a story from BitDefender, about two new variants of GameOver ZeuS. So much for it being taken down. Didn’t last long, but it’s to be expected I suppose.
- Read More @ http://labs.bitdefender.com/2014/08/gameover-zeus-variants-targeting-ukraine-us/
- Next, an article by Kaspersky that provides some interesting statistics on the state of the vulnerability the Stuxnet worm exploited. Seems like millions of machines are still vulnerable despite a patch being available. When you see the areas affected, it’s not too surprising but still an interesting statistic non-the-less.
- Read More @ http://business.kaspersky.com/stuxnets-hole-the-vulnerability-is-still-around/
- Last story of the week, we have another breach. This time it’s a chain of retail stores owned by the SUPERVALU group. If you are a customer, keep an eye on your Credit Card transactions.
- Read More @ http://www.scmagazine.com/supervalu-ab-acquisition-announce-payment-card-breaches-at-grocery-chains/article/366562/