Latest News Articles



--- TLP:WHITE ---
(https://first.org/tlp/)

########################################################
#### CSIRT-IE End of Day Report ####
########################################################

Date   : Friday 30-08-2019 10:00 ; Friday 06-09-2019 10:00

=====================================
= News =
=====================================
− Over 328,000 Users Hit by Foxit Data Breach
PDF solutions provider Foxit last week informed customers that it had 
recently detected unauthorized access to data associated with its 
“My Account” service.

https://www.securityweek.com/over-328000-users-hit-foxit-data-breach/


− UK cyber security chief's warning after Twitter boss's account hacked 
- Isle of Wight County Press
Attackers will find ways around security measures if the target is 
“juicy” enough, a senior director from the National Cyber Security Centre 
(NCSC) has warned in the wake of Twitter boss Jack Dorsey’s account 
being compromised. Last week, an account on the social network belonging
 to Mr Dorsey was hacked, sending racist and vulgar tweets to his 4.

https://www.countypress.co.uk/news/national/17883630.uk-cyber-security-
chiefs-warning-twitter-bosss-account-hacked/ 


− Huawei accuses US authorities of cyber attacks - Irish Examiner
Chinese tech giant Huawei has accused US authorities of trying to coerce
employees to gather information on the company and of trying to break 
into its information systems. The company, which the US says is a 
security threat, said on Wednesday that American officials were using 
“unscrupulous means” to disrupt its business.

https://www.irishexaminer.com/breakingnews/technow/huawei-accuses-us-
authorities-of-cyber-attacks-948214.html 


=====================================
= Vulnerabilities =
=====================================
− Debian: DSA-4511-1: nghttp2 security update
Two vulnerabilities were discovered in the HTTP/2 code of the nghttp2 
HTTP server, which could result in denial of service. For the old stable
distribution (stretch), these problems have been fixed

https://linuxsecurity.com/advisories/debian/debian-dsa-4511-1-nghttp2-
security-update-17-08-06/


− Major Security Flaw Found in Google Chrome, Patch Must Be Installed ASAP
A security flaw in Google Chrome allows an attacker to eventually take 
control a vulnerable host, and parent company Google recommends users to
deploy a patch as soon as possible. The bug was discovered by the Center
for Internet Security, who writes that governments might be the primary
target of any potential attack.

https://news.softpedia.com/news/major-security-flaw-found-in-google-
chrome-patch-must-be-installed-asap-527229.shtml


− WordPress sites are being backdoored with rogue admin users
A malvertising campaign has evolved to give hackers control of entire 
sites.

https://nakedsecurity.sophos.com/2019/09/02/wordpress-sites-are-being-
backdoored-with-rogue-admin-users/


− USN-4118-1: Linux kernel (AWS) vulnerabilities
linux-aws vulnerabilities A security issue affects these releases of 
Ubuntu and its derivatives: Ubuntu 18.04 LTS Ubuntu 16.04 LTS Summary 
Several security issues were fixed in the Linux kernel. 

https://usn.ubuntu.com/4118-1/


− CB TAU Threat Intelligence Notification: State-Sponsored Espionage 
Group Targeting Multiple Verticals with 'Crosswalk' | Carbon Black
Scott Knight FireEye recently reported on APT41, a Chinese state-
sponsored espionage group. The group has been documented as targeting 
healthcare, high-tech, and telecommunications companies for traditional 
corporate espionage purposes.

https://www.carbonblack.com/2019/09/04/cb-tau-threat-intelligence-
notification-state-sponsored-espionage-group-targeting-multiple-
verticals-with-crosswalk/


=====================================
= Community News =
=====================================
− Seeking Indicators of Behavior
For many cybercrime investigators, it's all about finding indicators of 
compromise - evidence a crime has been committed. Sam Curry of 
Cybereason describes the value of making a shift to cataloging 
indicators of behavior.

https://www.databreachtoday.in/seeking-indicators-behavior-a-13019/


− Google security crew sheds light on long-running super-stealthy iOS 
spyware operation
Project Zero dissects years-long surveillance campaign Updated Google's 
Project Zero says more than a dozen iOS flaws that Apple patched back 
in February had been under attack for years.

https://www.theregister.co.uk/2019/08/30/google_iphone_exploit_chain/


− NCSC and the National Insider Threat Task Force Launch National 
Insider Threat Awareness Month in September 2019
NCSC and the National Insider Threat Task Force Launch National Insider 
Threat Awareness Month in September 2019.

https://www.dni.gov/index.php/ncsc-newsroom/item/2037-ncsc-and-the-
national-insider-threat-task-force-launch-national-insider-threat-
awareness-month-in-september-2019/

--- TLP:WHITE ---