Another news week is upon us, so let’s see what we got this week!
- First story of the week is news of another hotel chain breach. This time it’s the Trump Hotel collection that was confirmed a card breach. Credit Cards used between May and June 2014 seem to be affected.
- Read More @ http://krebsonsecurity.com/2015/10/trump-hotel-collection-confirms-card-breach/
- Looks like the Angler Exploit Kit has taken a significant hit due to the efforts made by the CISCO security research team. Through their efforts the research team was able to eradicate up to 50% of Angler activity, dealing quite a significant hit to the operation. Will be interesting to see how the authors of the exploit kit respond to this setback.
- Read More @ https://threatpost.com/researchers-disrupt-angler-exploit-kit-ecosystem-derail-30m-ransomware-campaign/114939/
- A newly discovered targeted attack has exposed a weakness in the Outlook Web Access platform that allowed the attackers to steal thousands of credential sets from a target due to the OWA server’s willingness to load unsigned DLLs.
- Read More @ https://threatpost.com/targeted-attack-exposes-owa-weakness/114925/
- Israeli researchers have discovered a new RAT that uses a number of interesting techniques to keep itself hidden and to make itself difficult to analyze. Researchers have called it “Moker” and believe that its use is not widespread and was a dedicated piece of malware to target a specific organization, they do think similar techniques will be used in other malware going forward. Interesting indeed.
- Read More @ https://threatpost.com/new-moker-rat-bypasses-detection/114948/
- Dutch and Singapore Researchers have executed a first successful collision attack on the SHA-1 hashing algorithm, which will inevitably pave the way for more flashed out and complete attacks. Researchers predict that this might happen as soon as end of the current year.
- Read More @ http://it.slashdot.org/story/15/10/09/1425207/first-successful-collision-attack-on-the-sha-1-hashing-algorithm