Latest News Articles


--- TLP:WHITE ---
(https://first.org/tlp/)

########################################################
#### CSIRT-IE End of Week Report ####
########################################################

Date   : Friday 21-06-2019 10:00 ; Friday 28-06-2019 10:00

=====================================
= News =
=====================================
− Iran Denies Being Hit by US Cyber Attack
read more

https://www.securityweek.com/iran-denies-being-hit-us-cyber-attack>

− Global Cyberattack Campaign Hit Mobile Carrier Networks
. A nation-state group possibly out of China has attacked cell carrier 
networks in search of data on high-value individuals.

https://www.darkreading.com/attacks-breaches/global-cyberattack-campaign
-hit-mobile-carrier-networks-/d/d-id/1335052

− Hacked Ad Server Pushes SEON Ransomware, Trojans Via Malvertising
The ad server for a very popular video converter site was hacked to 
display malvertising that loads the GreenFlash Sundown exploit kit. This
exploit kit would then drop the SEON Ransomware, Pony information 
stealing Trojan, and miners on a vulnerable computer.

https://www.bleepingcomputer.com/news/security/hacked-ad-server-pushes-
seon-ransomware-trojans-via-malvertising/

− Welcome Spelevo: New exploit kit full of old tricks
Today, Cisco Talos is unveiling the details of a new exploit kit campaign
that proves exploitkits are still a threat and should be taken seriously
by defenders: Spelevo. This recent campaign leveraged a compromised 
business-to-business site to deliver Spelevo, one of the first new kits
we've seen in months.

https://blog.talosintelligence.com/2019/06/spelevo-exploit-kit.htm

=====================================
= Vulnerabilities =
=====================================

− Firefox Releases Critical Patch Update to Stop Ongoing Zero-Day Attacks
Important Update [21 June 2019]—Mozilla on Thursday released another 
update Firefox version 67.0.4 to patch a second zero-day vulnerability. 
If you use the Firefox web browser, you need to update it right now. 
Mozilla earlier today released Firefox 67.0.3 and Firefox ESR 60.7.1 
versions to patch a critical zero-day vulnerability in the browsing 
software that hackers have been found exploiting

https://thehackernews.com/2019/06/mozilla-firefox-patch-update.html

− Protection Against Side-Channel Attacks Added to OpenSSH
Protection against Spectre, Meltdown , Rowhammer , read more

https://www.securityweek.com/protection-against-side-channel-attacks-
added-openssh

− Important Flaw in Outlook App for Android Affects Over 100 Millions Users
Update (22 June 2019) — More technical details and proof-of-concept for 
the OutLook for Android vulnerability has been released that we have 
covered in a separate article here. Microsoft today released an updated 
version of its "Outlook for Android" that patches an important security 
vulnerability in the popular email app that is currently being used over
100 million users.

https://thehackernews.com/2019/06/outlook-app-android.html

− Critical Flaws Found in Cisco Data Center Network Manager
Cisco on Wednesday informed customers that its Data Center Network 
Manager (DCNM) product is affected by several vulnerabilities, including
ones described as “critical” and “high severity.”

https://www.securityweek.com/critical-flaws-found-cisco-data-center-
network-manager

=====================================
= Community News =
=====================================
− UK Police suspend work with major forensics firm after cyber-attack
A recent ransomware attack on forensics firm Eurofins has impacted 
operations of the UK police department, which is now dealing with an
increasing backlog of pending forensic investigations. Eurofins provides
various types of forensic services, including DNA analysis, toxicology, 
ballistics and computer forensics work. 

https://www.oodaloop.com/briefs/2019/06/24/uk-police-suspend-work-with-
major-forensics-firm-after-cyber-attack/

− Two US cities opt to pay $1m to ransomware operators
A few days apart, two cities in Florida cave in to extortionists’ 
demands in hopes of restoring access to municipal computer systems The 
post Two US cities opt to pay $1m to ransomware operators appeared first
on WeLiveSecurity

https://www.welivesecurity.com/2019/06/26/cities-pay-ransom-ransomware-
operators

--- TLP:WHITE ---