Latest News Articles

--- TLP:WHITE ---
(https://first.org/tlp/)

########################################################
#### CSIRT-IE End of Week Report ####
########################################################

Date   : Friday 10-05-2019 10:00 ; Friday 17-05-2019 10:00

=====================================
= News =
=====================================

− WhatsApp informs Irish regulator of 'serious security vulnerability'
DUBLIN (Reuters) - Facebook’s WhatsApp has informed its lead regulator
in the European Union, Ireland’s Data Protection Commissioner (DPC), of
a serious security vulnerability on its platform, the DPC said on 
Tuesday. “The DPC understands that the vulnerability may have enabled 
a malicious actor to....
 
https://www.reuters.com/article/us-facebook-cyber-whatsapp-ireland/
whatsapp-informs-irish-regulator-of-serious-security-vulnerability-
idUSKCN1SK0ZW


− Over 460,000 E-Retailer User Accounts Hacked
Asia's largest retailer suffered a breach exposing account information
of nearly half a million users

https://www.infosecurity-magazine.com/news/over-460-million-
eretailer-1


− Nine Charged in Alleged SIM Swapping Ring
Eight Americans and an Irishman have been charged with wire fraud this
week for allegedly hijacking mobile phones through SIM-swapping, a form
of fraud in which scammers bribe or trick employees at mobile phone 
stores into seizing control of the target's phone number and diverting
all texts and phone calls to the attacker's mobile device. From there, 
the attackers simply start requesting password reset links via text 
message for a variety of accounts tied to the hijacked phone ...

https://krebsonsecurity.com/2019/05/nine-charged-in-alleged-sim-
swapping-ring/


=====================================
= Vulnerabilities =
=====================================

− Microsoft SharePoint Bug Exploited in the Wild
Microsoft SharePoint Bug Exploited in the Wild. A number of reports show
CVE-2019-0604 is under active attack, Alien Labs researchers say.

https://www.darkreading.com/endpoint/microsoft-sharepoint-bug-exploited
-in-the-wild/d/d-id/1334683


− Hackers Exploit ASUS Update Process to Install Backdoor
The BlackTech cyber-espionage group has been performing man-in-the-
middle (MitM) attacks on the update process of the ASUS WebStorage 
application to deliver the Plead backdoor to their targeted victims, 
ESET reports. read more

https://www.securityweek.com/hackers-exploit-asus-update-process-install
-backdoor


− Critical Update: Windows Remote Desktop Services Vulnerability
Background Earlier today Microsoft released several security updates as
part of its regular monthly updates known as Patch Tuesday. One of the 
issues that was patched in today's update, CVE-2019-0708, is critical, 
and all Windows users should apply the patches immediately, regardless
of whether or not they are running the vulnerable operating system. 
Large organizations following 15/30/60-day patch cycles should consider
making an exception and applying the patches as soon as possible

https://blogs.technet.microsoft.com/msrc/2019/05/14/prevent-a-worm-by-
updating-remote-desktop-services-cve-2019-0708/


− WhatsApp Vulnerability Allows Hackers to Infect iPhones, Android Phones
A security vulnerability in WhatsApp allowed hacked to deploy spyware 
on Android devices and iPhones without users even knowing about it. A 
report from The Financial Times reveals that the security flaw made it 
possible for malicious actors to inject Israeli spyware on mobile device
using nothing more than a typical WhatsApp call. By the looks of things,
users didn’t even have to answer the calls, as the malicious code was 
executed in the background. The missed call was most often

https://news.softpedia.com/news/whatsapp-vulnerability-allows-hackers-to
-infect-iphones-android-phones-526019.shtml


− Adobe Patches Over 80 Vulnerabilities in Acrobat Products
Adobe’s Patch Tuesday updates for May 2019 fix a critical vulnerability 
in Flash Player and more than 80 flaws in the company’s Acrobat products.

https://www.securityweek.com/adobe-patches-over-80-vulnerabilities-
acrobat-products


− Google's Titan Security Keys Vulnerable to Bluetooth Attacks
Google announced on Wednesday that it’s offering a free replacement for 
its Titan Security Key dongles following the discovery of a potentially
serious vulnerability.

https://www.securityweek.com/googles-titan-security-keys-vulnerable-
bluetooth-attacks


− Cisco Releases Multiple Security Updates, 2019-05-15

Cisco has released security updates to address vulnerabilities in 
multiple Cisco products. A remote attacker could exploit some of these
vulnerabilities to take control of an affected system.


https://www.us-cert.gov/ncas/current-activity/2019/05/15/Cisco-Releases
-Multiple-Security-Updates



=====================================
= Community News =
=====================================

− US, EU Spar Over Sharing Electronic Evidence in Investigations
In August 2016, the lifeless bodies of a young French man and woman were
discovered on a beach in Madagascar, with murder suspected. The secret
to the case could be in the last messages they sent, but those are 
stored in the databanks of US tech giants who don't have to turn over 
the information to French investigators.

https://www.france24.com/en/20190512-us-eu-spar-over-sharing-electronic
-evidence-investigations


− Cyber Attack simulation by G7 Countries
“French Central Bank will exercising the cyber attack on behalf of the
G7 nations,” said Nathalie Aufauvre, the Banking General Director of 
France. And she added that the simulation will be launched to check the 
financial stability. Already such attacks have been conducted on a 
previous note such as

https://www.cybersecurity-insiders.com/cyber-attack-simulation-by-g7-
countries/


− Facebook Opens a Command Post to Thwart Election Meddling in Europe
DUBLIN — Inside a large room in Facebook’s European headquarters in 
Ireland’s capital, about 40 employees sit at rows of desks, many with
two computer screens and a sign representing a country in the European 
Union. Large screens at the front display charts and other information 
about trends on the....

https://www.nytimes.com/2019/05/05/technology/facebook-opens-a-command-
post-to-thwart-election-meddling-in-europe.html


− Equifax Has Spent Nearly $1.4bn on Breach Costs
Cautionary tale as credit agency pays heavily for 2017 incident

https://www.infosecurity-magazine.com/news/equifax-has-spent-nearly-
14bn-on-1/


− Stack Overflow Discloses Security Breach
Stack Overflow, the popular Q&A platform for programmers, revealed on 
Thursday that someone gained access to its production systems over the 
weekend.

https://www.securityweek.com/stack-overflow-discloses-security-breach



--- TLP:WHITE ---