2015/05/02

Cool News Story Bro! Week of 05-01-2015

by Otakun
Categories: News
Tags:
Comments: Leave a Comment

Hey Guys,

Decent amount of news to get to this week so let’s just dive right into it. Enjoy!

  1. 25 members of $15 million carding gang arrested in Romania

    1. First story of the week, by Naked Security, is some feel good news unless you are one of the criminals arrested. It looks like a fairly prolific carding gang was arrested by Romanian authorities. The gang was cloning debit cards and then withdrawing money from ATMs with said cards, their haul totaled over $15 million.  Looks like this was only about half the gang, but it’s good news anyway.
    2. Read More @ https://nakedsecurity.sophos.com/2015/04/28/25-members-of-15-million-carding-gang-arrested-in-romania/
  2. Details on WordPress Zero Day Disclosed

    1. It hasn’t been a good few weeks for WordPress, with several vulnerabilities disclosed in recent past and this last one might be the worst one yet. A Finnish researcher has discovered a stored XSS vulnerability in the WordPress Core Engine that could allow for Remote Code Execution. Patch is available, so patch soon!
    2. Read More @ https://threatpost.com/details-on-wordpress-zero-day-disclosed/112435
  3. FBI slammed on Capitol Hill for ‘stupid’ ideas about encryption

    1. In a rare moment of sensible thinking, several politicians at the Washington D.C hearing on encryption slammed the FBI’s proposal of backdoors in encryption technology, going as far as to call it “stupid”. Let’s face it, we all knew this to be the case but there was always a level of skepticism on whether our political leaders would agree.
    2. Read More @ http://www.dailydot.com/politics/second-crypto-war-hearing-washington/
  4.  TROJ_WERDLOD: New Banking Trojan Targets Japan

    1. Trend Micro brings news of a new Banking Trojan that is targeting Japan. It has some interesting features that make it particularly annoying, like importing it’s own root CA that allows it to MITM SSL traffic. Good read.
    2. Read More @ http://blog.trendmicro.com/trendlabs-security-intelligence/troj_werdlod-new-banking-trojan-targets-japan/
  5. New Spam Campaign Pushing CTB-Locker Ransomware

    1. Ransomware seems to be all the rage these days, and there is a new SPAM campaign that is spreading the CTB-Locker ransomware. Careful what you click on!
    2. Read More @ https://threatpost.com/new-spam-campaign-pushing-ctb-locker-ransomware/112519
  6. Chinese security vendor caught cheating in AV test

    1. In some rather amusing news (unless you are a Qihoo 360 user), a Chinese AV vendor behind Qihoo 360 was caught cheating in an AV effectiveness test, by using the BitDefender detection engine in testing, which resulted in much better results than their own engine would have. For their trouble, they are set to lose their certifications.
    2. Read More @ http://www.itnews.com.au/News/403418,chinese-security-vendor-caught-cheating-in-av-test.aspx
  7. JPMorgan Chase Insider Thief Nabbed by FBI

    1. The FBI this week nabbed a JPMorgan Chase employee who was stealing and attempting to sell customer information to cyber criminals. He was caught by an undercover agent posing as a potential buyer. Just goes to show that companies with sensitive data need to be aware of both external, as well as external threats.
    2. Read More @ www.infosecurity-magazine.com/news/jpmorgan-chase-insider-thief
  8. U.S. and Japan bolster cooperation to thwart cyber attacks

    1. Following Japan’s Prime Minister Shinzo Abe’s visit to Washington, it was announced that the U.S and Japan are to bolster their cooperation when it comes to thwarting cyber attacks by sharing threat information
    2. Read More @ http://www.scmagazine.com/us-and-japan-form-cyber-security-alliance/article/411899/
  9. Macro Malware Returns with a Vengeance, Infecting Half a Million PCs

    1. It looks like Macro based malware is back, and in a fairly big way. Microsoft has announced that they have seen over half a million PCs infected with Macro-based malware. Dridex, and Vawtrak being the primary offenders.
    2. Read More @ www.infosecurity-magazine.com/news/macro-malware-returns-with-a
  10. New Dyre Version- Yet Another Malware Evading Sandboxes

    1. Keeping with the Dyre/Dridex news, it looks like the newest version of the banking trojan has some new tricks up it’s sleeve. Mainly, it seems to have developed the ability to evade sandboxes. Makes you wonder how long before traditional Sandboxes are no longer a useful analysis tool.
    2. Read More @ http://www.seculert.com/blog/2015/04/new-dyre-version-evades-sandboxes.html

 

Otakun
– Otakun –

Leave a Reply

Your email address will not be published. Required fields are marked *



Today is Friday
2018/02/23