Buhtrap group uses zeroday in latest espionage campaigns
www.welivesecurity.com/2019/07/11/buhtrap-zero-day-espionage-campaigns/ ESET research reveals notorious crime group also conducting espionage campaigns for the past five years
Over 17,000 Domains Infected with Code that Steals Card Data
Microsoft Adds Automatic Phishing Detection to Microsoft Forms
www.bleepingcomputer.com/news/security/microsoft-adds-automatic-phishing-detection-to-microsoft-forms/ “In order to make Forms a more secure service, we are going to enable automatic phishing detection to prevent our customers from losing sensitive data via phishing forms,” says an update to the Microsoft 365 Roadmap.
Unusual Linux Ransomware Targets NAS Servers
threatpost.com/linux-ransomware-nas-servers/146441/ A rare instance of ransomware targeting Linux-based file storage systems (network-attached storage servers, specifically) has been spotted, spreading via 15 separate but related campaigns. The adversaries behind the effort are continuing their depredations on an ongoing basis, according to researchers, so targets are expected to proliferate.
Train maker’s coder goes loco, choo-choo-chooses to flee to China with top-secret code allegedly
www.theregister.co.uk/2019/07/12/train_software_theft/ The case is one of a number involving allegations of US-based developers and engineers fleeing to China while in possession or trade secrets. In March, a former Tesla engineer was sued for lifting trade secrets from the Musk-y auto outfit with the intent of taking them to a Chinese rival, and last year a trio of Micron engineers were charged with stealing confidential docs from the chipmaker on behalf of two China-based outfits. ®