Daily NCSC-FI news followup 2020-01-26

Teenagers today. Can’t take them anywhere, eh? 18-year-old kid accused of $50m SIM-swap cryptocurrency heist

www.theregister.co.uk/2020/01/25/security_roundup/ Also, Cisco, Citrix emit patches, US army advises using Signal

Patching the Citrix ADC Bug Doesn’t Mean You Weren’t Hacked

www.bleepingcomputer.com/news/security/patching-the-citrix-adc-bug-doesnt-mean-you-werent-hacked/ Citrix on Friday released the final patch for the critical vulnerability tracked as CVE-2019-19781 in its affected appliances. Many organizations are still at risk, though, as they continue to run Citrix servers without a fix or the advised mitigations.

Trend Micro antivirus zero-day used in Mitsubishi Electric hack

www.zdnet.com/article/trend-micro-antivirus-zero-day-used-in-mitsubishi-electric-hack/ Hackers exploited a Trend Micro OfficeScan zero-day to plant malicious files on Mitsubishi Electric servers.

Mozilla has banned nearly 200 malicious Firefox add-ons over the last two weeks

www.zdnet.com/article/mozilla-has-banned-nearly-200-malicious-firefox-add-ons-over-the-last-two-weeks/ Over the past two weeks, Mozilla’s add-on review team has banned 197 Firefox add-ons that were caught executing malicious code, stealing user data, or using obfuscation to hide their source code.

ThreatList: Ransomware Costs Double in Q4, Sodinokibi Dominates

threatpost.com/threatlist-ransomware-costs-double-in-q4-sodinokibi-dominates/152200/ Ransomware actors are turning their sights on larger enterprises, making both average cost and downtime inflicted from attacks skyrocket.

Interpol Arrests 3 Indonesian Credit Card Hackers for Magecart Attacks

thehackernews.com/2020/01/indonesian-magecart-hackers.html The Indonesian National Police in a joint press conference with Interpol earlier today announced the arrest of three Magecart-style Indonesian hackers who had compromised hundreds of international e-commerce websites and stolen payment card details of their online shoppers.

TrickBot Now Steals Windows Active Directory Credentials

www.bleepingcomputer.com/news/security/trickbot-now-steals-windows-active-directory-credentials/ A new module for the TrickBot trojan has been discovered that targets the Active Directory database stored on compromised Windows domain controllers.

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.