Daily NCSC-FI news followup 2019-09-11

Ryuk Related Malware Steals Confidential Military, Financial Files

www.bleepingcomputer.com/news/security/ryuk-related-malware-steals-confidential-military-financial-files/ A new malware with strange associations to the Ryuk Ransomware has been discovered to look for and steal confidential financial, military, and law enforcement files.

Microsoft to Improve Office 365 Phishing Email Notifications

www.bleepingcomputer.com/news/security/microsoft-to-improve-office-365-phishing-email-notifications/ Microsoft is currently working on enhancing the notification system for quarantined malware or phishing messages for admins in all Microsoft 365 environments, with the new feature to roll out to customers in early October.

Virtual Disk Attachments Can Bypass Gmail and Chrome Security

www.bleepingcomputer.com/news/security/virtual-disk-attachments-can-bypass-gmail-and-chrome-security/ Virtual disk files are locked containers that shield the items inside from online or local security defenses. The trick can help adversaries deliver malware invisibly to a target’s computer.. Vulnerability analyst Will Dormann last week published research on VHD and VHDX files being treated like a black box by Windows and the operating system.

Iranian hackers resume credential-stealing phishing attacks against universities around the world

www.zdnet.com/article/iranian-hackers-credential-stealing-phishing-attacks-against-universities-around-the-world/ Over 60 universities in the US, the UK, Australia and more have been targeted by the Colbalt Dickens hacking group in attacks attempting to steal research and intellectual property.

198 Million Car-Buyer Records Exposed Online for All to See

threatpost.com/198m-car-buyer-records-exposed-online/148231/ An Elastica DB belonging to Dealer Leads exposed a raft of information collected by research websites aimed at prospective car buyers.

Major Groupon, Ticketmaster Fraud Scheme Exposed By Insecure Database

threatpost.com/major-groupon-ticketmaster-fraud-scheme-exposed-by-insecure-database/148246/ An exposed database containing 17 million email addresses exposed a massive fraud scheme impacting vendors like Groupon and Ticketmaster.. After discovering a cache of 17 million emails exposed on an unsecured database, researchers with vpnMentor began to hunt for its owner but to their surprise, they found that the database belonged not to a company, but to a sophisticated criminal network.

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.