It’s that time of the week again, so let’s not delay and on with the news!
- First news of the day and one all you have probably heard about by now is about the Phishing attack on Gmail users. The attack attempted to get the users OATH tokens by impersonating Google Docs. Google quickly shut down the campaign in around an hour or so.
- Read More @ https://threatpost.com/1-million-gmail-users-impacted-by-google-docs-phishing-attack/125436/
- Next, an analysis of the attack mentioned above by “Umbrella” and specifically how they detected the attack using traffic analysis. Interesting read.
- Read More @ https://umbrella.cisco.com/blog/2017/05/04/detecting-google-docs-phishing-attack-using-traffic-analysis/
- Next, continuing the leaks from the CIA “Vault 7” Wikileaks now brings details on a Man In The Middle tool called “Archimedes”.
- Read More @ http://thehackernews.com/2017/05/cia-mitm-hacking-tool.html
- According to the FBI Business and Email Account Compromise loses topped $5 billion from October 2013 to December 2016. Worst yet, it continues to rise. Good time to be in security I suppose.
- Read More @ http://www.darkreading.com/attacks-breaches/fbi-business–and-email-account-compromise-attack-losses-hit-$5-billion/d/d-id/1328812
- Carbanak continues to innovate, this time showcasing a clever trick for maintaining persistence by utilizing Shim Databases. Good read.
- Read More @ https://threatpost.com/carbanak-attackers-devise-clever-new-persistence-trick/125457/
- The webcast for the week is by Sqrrl and is about modernizing your SOC, and showcases how to build an effective hunting program in order to get the most out of your soc.
- Watch @ https://www.brighttalk.com/webcast/15393/257911