Apologies for the late news post this week. Halloween got a bit busy for me, but alas there must be a post and this week will be no exception. So let’s get to it!
- First story of the week is a follow up to the massive DDoS attack on Dyn that occurred last week. After some analysis, it looks like this was omitted by script kiddies rather than a nation state hackers. Flashpoint researchers believe the attack was done by those from the HackForums community.
- Read More @ https://threatpost.com/dyn-ddos-work-of-script-kiddies-not-politically-motivated-hackers/121537/
- Florida man will pleased guilty to taking part in JPMorgan Chase, breach that resulted in compromise of information on 100 million customers. He also took part in opearting a bit coin site “Coin.mix” which use used to launder money.
- Read More @ http://www.darkreading.com/endpoint/florida-man-to-plead-guilty-in-jpmorgan-bitcoin-hack-case/d/d-id/1327312
- Next, a great article by the folks at Kaspersky that takes a look at the Gootkit malwere, as well as the operation of its C2 server. Great read.
- Read More @ https://securelist.com/blog/research/76433/inside-the-gootkit-cc-server/
- Next, a detailed look BLACKGEAR espionage campaign that has been targeting Taiwan, and has now expended to Japan as well. Good read.
- Read More @ http://blog.trendmicro.com/trendlabs-security-intelligence/blackgear-espionage-campaign-evolves-adds-japan-target-list/
- Next, a look at 7 of the more common ransomware families. For those who are interested in knowing more about these types of threats, read on.
- Read More @ http://www.darkreading.com/endpoint/7-scary-ransomware-families–/d/d-id/1327259
- Next, the Shadow Brokers, group responsible for disclosing the NSA tools a while back is back with more. This time showing the list of servers hacked by the NSA all over the world. With China and Japan taking the top spots. Interesting.
- Read More @ http://thehackernews.com/2016/10/nsa-shadow-brokers-hacking.html
- FCC has passed a new set of rules that will go some way towards protecting the privacy of ISP’s customers. You know the changes are positive,because the ISPs are already complaining.
- Read More @ https://nakedsecurity.sophos.com/2016/10/28/new-fcc-rules-impose-privacy-boost-for-isp-customers/
- Next, a look at a new Windows vulnerability dubbed “AtomBombing”, which is a code injection vulnerability that exploits the “Atom” tables used by Windows.
- Read More @ http://www.securityweek.com/atombombing-windows-vulnerability-cannot-be-patched
- Next, a good write up on some of the mistakes organizations make when working on securing their endpoint devices. Good read.
- Read More @ http://www.darkreading.com/endpoint/the-4-biggest-mistakes-businesses-make-trying-to-secure-endpoints/a/d-id/1327313?_mc=sm_dr&hootPostID=4f5b7615e99fb708afdb294f68d27c40
- Next, these articles seem to be becoming the norm. A look at some of the things that can be done about the cybersecurity skills shortage. Interesting read.
- Read More @ https://www.helpnetsecurity.com/2016/10/31/critical-cybersecurity-skills-shortage/