Latest News Articles

				
--- TLP:WHITE ---
(https://first.org/tlp/)

########################################################
#### CSIRT-IE End of Week Report ####
########################################################

Date   : Friday 09-08-2019 10:00 ; Friday 16-08-2019 10:00

=====================================
= News =
=====================================
− Unsolicited Blank Emails Could Portend BEC Attacks
Agari warns organizations to be on the lookout for reconnaissance 
efforts

https://www.infosecurity-magazine.com/news/unsolicited-blank-emails-
portend/

− Coinbase explains background to June zero-day Firefox attack
A recent, highly targeted attack on cryptocurrency exchange Coinbase 
offers a glimpse into how sophisticated phishing attacks can be.

https://nakedsecurity.sophos.com/2019/08/14/coinbase-explains-background
-to-june-zero-day-firefox-attack

− Not very Suprema: Biometric access biz bares 27 million records and 
plaintext admin creds
Biostar 2 goes supernova after Israeli duo's probings Two infosec 
researchers found 27 million personal data records, including a million 
people's fingerprints, exposed to the public along with plaintext admin 
credentials for the Suprema Biostar 2 system they were associated with.…

https://www.theregister.co.uk/2019/08/14/biostar_2_suprema_database_exposed_
27m_records/

− British Airways Criticized for Exposing Passenger Flight Details
British Airways (BA) has been criticized for allowing hackers easy 
access to customer flight information. The issue was exposed Tuesday by 
researchers who discovered "a vulnerability affecting British Airways' 
e-ticketing system that exposes passengers' personally identifiable 
information (PII)."

https://www.securityweek.com/british-airways-criticized-exposing-
passenger-flight-details

− UN Probing 35 North Korean Cyberattacks in 17 Countries  

https://www.securityweek.com/un-probing-35-north-korean-cyberattacks-17-
countries

− Phishing Campaign Uses Google Drive to Bypass Email Gateways
A highly targeted phishing campaign was recently observed while 
bypassing a Microsoft email gateway using documents shared via the 
Google Drive service to target the staff of a company from the energy 
industry.

https://www.bleepingcomputer.com/news/security/phishing-campaign-uses-
google-drive-to-bypass-email-gateways/

=====================================
= Vulnerabilities =
=====================================

− Microsoft Releases Security Updates to Address Remote Code Execution 
Vulnerabilities
Original release date: August 14, 2019 Microsoft has released security 
updates to address two remote code execution vulnerabilities, 
CVE-2019-1181 and CVE-2019-1182, in the following operating systems: 
Windows 7 SP1 Windows Server 2008 R2 SP1 Windows Server 2012 Windows 
8.1 Windows Server 2012 R2 Windows 10 Windows Server 2016 Windows Server 
2019 An attacker could exploit these vulnerabilities to take control of 
an affected system. Similar to CVE-2019-0708—dubbed BlueKeep—these ...

https://www.us-cert.gov/ncas/current-activity/2019/08/14/microsoft-
releases-security-updates-address-remote-code-execution

− Ransomware Soars 365% Year-on-Year in Q2
Malwarebytes warns of continued threat to organizations

https://www.infosecurity-magazine.com/news/ransomware-soars-365-
yearonyear-in/

− Android Security: A Peek Behind the Scenes
Android phones can come with built-in malware and backdoors due to 
insufficient verification and vetting. Millions of smartphones were 
infected this way.

https://www.bleepingcomputer.com/news/security/android-security-a-
peek-behind-the-scenes/

− Adobe Patches 118 Vulnerabilities Across Eight Products
Adobe’s Patch Tuesday updates for August 2019 resolve 118 
vulnerabilities across the company’s After Effects, Character Animator, 
Premiere Pro, Prelude, Creative Cloud, Acrobat and Reader, Experience 
Manager, and Photoshop products. read more

https://www.securityweek.com/adobe-patches-118-vulnerabilities-
across-eight-products

− New Bluetooth Vulnerability Lets Attackers Spy On Encrypted 
Connections
Over a billion Bluetooth-enabled devices, including smartphones, 
laptops, smart IoT devices, and industrial devices, have been found 
vulnerable to a high severity vulnerability that could allow attackers 
to spy on data transmitted between the two devices. The vulnerability, 
assigned as CVE-2019-9506, resides in the way 'encryption key 
negotiation protocol' lets two Bluetooth BR/EDR devices

https://thehackernews.com/2019/08/bluetooth-knob-vulnerability.html


=====================================
= Community News =
=====================================

− 350,000 Irish office workers use unsecure remote working devices
An estimated 350,000 Irish office workers (27%) have used unencrypted 
mobile devices to access or store company data, according to joint 
research from Datapac and Sophos. A survey of 500 participants examined 
the security concerns associated with remote working and increased 
mobility.

https://www.techcentral.ie/350000-irish-office-workers-use-unsecure-
remote-working-devices/

− Hacked devices can be turned into acoustic weapons
Security researcher Matt Wixey found that many gadgets aren't protected 
from being turned into hearing-damaging weapons. Or melting.

https://nakedsecurity.sophos.com/2019/08/13/hacked-devices-can-be-
turned-into-acoustic-weapons/

--- TLP:WHITE ---