Latest News Articles

				
--- TLP:WHITE ---
(https://first.org/tlp/)

########################################################
#### CSIRT-IE End of Week Report ####
########################################################

Date   : Friday 26-07-2019 10:00 ; Friday 02-08-2019 10:00

=====================================
= News =
=====================================
− Capital One Data Theft Impacts 106M People
Federal prosecutors this week charged a Seattle woman with stealing
data from more than 100 million credit applications made with Capital
One Financial Corp. Incredibly, much of this breached played out
publicly over several months on social media and other open online
platforms. What follows is a closer look at the accused, and what this
incident may mean for consumers and businesses.

https://krebsonsecurity.com/2019/07/capital-one-data-theft-impacts-106m-
people/

− Silk Road Admin Sentenced to 78 Months in Prison On Drug Trafficking 
Charges
An Irish national has been jailed for six-and-a-half years for his role 
as one of the administrators and forum moderators who helped run 
now-defunct dark web marketplace "Silk Road." Gary Davis, 31, of 
Wicklow, Ireland, was known as 'Libertas' on the Silk Road website, 
then-largest underground black marketplace on the Internet used by 
thousands of people to buy and sell drugs and other

https://thehackernews.com/2019/07/silk-road-dark-web-admin.html

− Ireland is at international crossroads and in the crosshairs for cyber 
attack - Irish Examiner
In the real world, our defences are adequate for about as long as we are 
lucky enough to be left alone, writes Gerard Howlin. Ships, being big, 
attract attention. The squall between Paul Kehoe, the minister of state 
responsible for defence and the Defence Forces for which he is 
politically responsible, is a totem for something else.

https://www.irishexaminer.com/breakingnews/views/columnists/
gerard-howlin/ireland-is-at-international-crossroads-and-in-the-
crosshairs-for-cyber-attack-940515.html

− Russian Phishing: Swiss-based Email Provider ProtonMail Hit By Cyber 
Attack
Reporters investigating Russian military intelligence have been targeted 
by highly sophisticated cyber attacks through their encrypted email 
accounts, with evidence suggesting Moscow was responsible, the email 
service provider ProtonMail and journalists said on Saturday.

https://blog.knowbe4.com/russian-espionage-swiss-based-email-provider-
protonmail-hit-by-cyberattack

− Nation-State Actors Go All-In on Mobile Malware
Even though mobile data security is less mature than its desktop 
equivalent, the quality of the information on offer is top-tier. APTs, 
including a range of nation-state groups operating in China, North 
Korea, Pakistan and Russia, are shifting their malware development focus 
to target mobile users....

https://threatpost.com/nation-state-actors-go-all-in-on-mobile-malware
/146771/

=====================================
= Vulnerabilities =
=====================================

− Massive Botnet Attack Used More Than 400,000 IoT Devices
A massive botnet attack earlier this year utilized more than 400,000 
connected devices over the course of 13 days, according to researchers 
at the security firm Imperva. See Also: 10 Incredible Ways You Can Be 
Hacked Through Email & How To Stop The Bad Guys The attack, which 
occurred between March....

https://www.databreachtoday.co.uk/massive-botnet-attack-used-more-than-400000-
iot-devices-a-12841

− Retefe banking trojan: A sneak peek into the banking trojan’s attack 
campaigns
The Retefe banking trojan has impacted several major browsers including 
Google Chrome, Internet Explorer, and Mozilla Firefox. The trojan has 
targeted several UK and Swiss banks including NatWest, Barclays, HSBC, 
Santander, UlsterBank, Sainsbury's Bank, Tesco Bank, UBS, Zuger 
Kantonalbank, and Banque Piguet Galland, among others.

https://cyware.com/news/retefe-banking-trojan-a-sneak-peek-into-the-
banking-trojans-attack-campaigns-1161c3d7

− Hackers use SystemBC Malware to Hide C&C Server Communication by 
Deploying Proxies on Infected Computer
IT Security news and articles about information security, 
vulnerabilities, exploits, patches, releases, software, features, hacks, 
laws, spam, viruses, malware, breaches. Hackers use SystemBC Malware to 
Hide C&C Server Communication by Deploying Proxies on Infected Computer.

https://gbhackers.com/systembc-malware-windows-computer/

=====================================
= Community News =
=====================================

− Google Blocks Websites Certified by DarkMatter After Reports
Alphabet's Google has blacklisted websites approved by a United Arab 
Emirates-based security company after Reuters reports tied the firm to 
a state hacking operation. While Google did not provide a reason for the 
move, and did not respond to requests for comment, it cited the same 
decision taken by....

https://gadgets.ndtv.com/internet/news/google-blocks-websites-
certified-by-darkmatter-after-reports-2079193

− Trend Micro report exposes criminal uses of Twitter
Cybercriminals are abusing Twitter via tech support scams, command-and-
control operations and data exfiltration, cybersecurity researchers have 
shown in a new According to Trend Micro ’s report, cybercriminals have 
been using fake Twitter accounts, imitating those of legitimate vendors, 
to create credible-looking tech support scams.

https://www.technologydecisions.com.au/content/security/news/trend-micro
-report-exposes-criminal-uses-of-twitter-734057626
   
− British Army to train cyber spies to combat hackers and digital 
propaganda
The British Army will adapt to better tackle the threat of cyber 
warfare, including hackers, digital propaganda and misinformation, the 
Ministry of Defence (MoD) has said. A unit called the Sixth Division 
will be reintroduced as part of plans to "rebalance the Field Army… [to] 
defeat adversaries....

https://news.sky.com/story/british-army-to-train-cyber-spies-to-combat-
hackers-and-digital-propaganda-11774552

− New Malware: The Landscape of New & Evolving Cyber Threats in 2019 - 
Hashed Out by The SSL Store™ - Hashed Out by The SSL Store™
Malware. Frequently in headlines accompanying words like “data breach,” 
“cyberattack” and “ransomware,” malware is a word that has rapidly 
become commonplace in our digital world. The uphill battle of dealing 
with new malware, or malicious software, is about as palatable to 
infosec professionals as....

https://www.thesslstore.com/blog/new-malware-the-landscape-of-new-
evolving-cyber-threats-in-2019/

--- TLP:WHITE ---