2016/01/30

Cool News Story Bro! Week of 01-29-2016

by Otakun
Categories: News
Tags: No Tags
Comments: Leave a Comment

Hi Guys,

Welcome to another news week recap. Got some good stuff as usual, so let’s get to it.

News Stories:

  1. Scarlet Mimic Group Behind Four Year Campaign Against Tibetan, Uyghur Activists

    1. First story of the week is a look at an APT campaign targeting Tibetan activists. Palo Alto Networks report on the campaign dubbed “Scarlet Mimic”. The campaign mainly relies on spear phishing which leads to an Microsoft Office exploit that is used to install a trojan.
    2. Read More @ https://threatpost.com/scarlet-mimic-group-behind-four-year-campaign-against-tibetan-uyghur-activists/116008/
  2. OpenSSL to Patch Two Vulnerabilities This Week

    1. OpenSSL just patched two undisclosed vulnerabilities, one of “high” severity and one of “low” severity.The OpenSSL project this morning said the updates will move users to versions 1.0.2f and 1.0.1r and should be available Thursday between 8 a.m. and noon Eastern time.
    2. Read More @ https://threatpost.com/openssl-to-patch-two-vulnerabilities-this-week/116004/
  3. Skype Now Hides Your Internet Address

    1. The latest update to Skype will now finally make sure that the users IP is now hidden. For a long time this was not the case and by having a “Skype ID” a user’s IP could be resolved. The latest update addresses that issue.
    2. Read more @ http://krebsonsecurity.com/2016/01/skype-now-hides-your-internet-address/
  4. Israeli Electric Authority Hit by ‘Severe Cyber Attack,’ Likely Ransomware

    1. Earlier this week the Israeli Electric Authority was hit by a cyber attack but it was mitigated. There is some speculation that it might have been ransomware.
    2. Read More @ https://threatpost.com/israeli-electric-authority-hit-by-severe-cyber-attack-likely-ransomware/116036/
  5. BlackEnergy APT Attacks in Ukraine employ spearphishing with Word documents

    1. Next, a Kaspersky report on the BlackEnergy APT campaign that hit Ukraine end of last year, that takes a detailed look at the different aspects involved in the campaign. Good read as always.
    2. Read More @ https://securelist.com/blog/research/73440/blackenergy-apt-attacks-in-ukraine-employ-spearphishing-with-word-documents/
  6. Oracle to Kill Java Browser Plugin

    1. In some fairly significant news, Oracle is finally killing the Java browser plugin. This is great news on the security front, as the infamous browser plugin was a constant source of Java exploits and security headaches.
    2. Read More @ https://threatpost.com/oracle-to-kill-java-browser-plugin/116065/
  7. Lucrative pay offered India hackers to work for ISIS

    1. News has come out that it seems like ISIS is paying hackers in India upwards of $10,000 per job, and upwards of 30,000 individuals were contacted.
    2. Read More @ https://threatpost.com/oracle-to-kill-java-browser-plugin/116065/
Otakun
– Otakun –

Leave a Reply

Your email address will not be published. Required fields are marked *



Today is Friday
2018/02/23