Security BSides London 2019, Stuart McMurray's 'Offensive Pcap' →
IBM: From Bad To Worse, Ransomeware Destructive Malware Attacks Have Doubled
via Camille Singleton, writing at SecurityIntelligence, details a report (you will need to create an IBMID. Saving grace: it's free) issued by IBM's XForce, illuminating the rapid increase of Wiper-type destructuve ransomeware attacks. Read It and Weep.
"Destructive malware that disables access to data or destroys system functions has been expanding across geographies and industries over the past few years. Organizations previously thought safe from this form of cyber aggression increasingly find themselves affected, either directly or indirectly." via the IBM XSS IRIS Report" Combating Destructive Malware - Lessons From The Front Lines"
Low-Hanging, The Fruits Are
via Threatpost author Lindsey O'Donnell, come this remarkably lucid, well crafted interview piece dissecting the nature of low-hanging fruits, where the fruits under scrutiny are in fact cities themselves, specifically - Atlanta. Ensconced (if you will) in the Peach State... Most certainly Today's Must Read.
LinkedIn Jobs, The Malign Effect
Fake Jobs, leading to malware infections, that is. Microsoft Corporation (Nasdaq: MSFT) and it's LinkedIn unit must focus on protecting their product, which of course, are LinkedIn members. Read all about it at Proofpoint and via Graham Cluley writing at BitDefender. H/T
"Since the middle of 2018, Proofpoint has been tracking campaigns abusing legitimate messaging services, offering fake jobs, and repeatedly following up via email to ultimately deliver the More_eggs backdoor." - via the Proofpoint Threat Insight Team, wrtiting at the comapny's blog with the post entitled "Fake Jobs: Campaigns Delivering More_eggs Backdoor via Fake Job Offers"
If At First You Do Not Succeed... Try, Try Again: Russian VPNFilter Malware
Sean Gallagher, writing at Ars Technica, regales us with the tale of VPNFilter - The Multi-Tool of Russian Cyber-Miscreants. Today's Must Read!
US District Court Judge To State of Georgia: Bad, Bad, Double-Bad
via Cyrus Farivar, writing at Ars Technica, of the apparent displeasure noted by United States District Court Judge Amy Totenberg, whilst Her Honor viewed the shenanigans being perpertrated by the State of Georgia's voting commision. Suprised? Don't be.. The centuries lomg tradition of election manipulations is coming to the fore, as the aft begins sinking under it's own weight of corruption, down south, that is. That said, the North, West and East aren't exactly doing that much better. Read Cyrus's superb reportage and weep for free, unfettered elections.
Yes, Virgina, Malicious Advertising Growth in Numbers and Viciousness Is Startling →
Dan Goodin, writing at our beloved Ars Technica, reports on the startling large numbers of malicious advertising exploits and the subsequent malevolence of same. Unfortunately, Today's Must Read.
Deoxyribonucleic Acid, Malware Edition →
via the illustrative writing of John Timmer at ArsTechnica, we learn of the latest malware infect vector - encoded malware within the genomic strands of Deoxyribonucleic Acid (DNA). Has the Fear set in?
Dok'd
MAC users take note, there's evil malware in the wild - and - according to Checkpoint's Ofer Caspi of the highly competent Checkpoint Malware Research Team, the bits in question are not just pernicous, but tenacious as well, and, interestingly, specifically targeting Mac users. Dubbed OSX/Dok it's time to update your virus prophylaxis on your MAC, forthwith.
The OSX/Dok malware is distributed via a phishing campaign, which is usually not a new or surprising attack vector, however this time it targets specifically macOS users, who are mostly perceived as malware-proof. This phishing campaign is combined with a MiTM attack, allowing complete access to all victim communication, even if it’s SSL encrypted. - via Checkpoint's Ofer Caspi - Checkpoint Malware Research Team
Pokémon, The Pikachu Infect →
News, via Dan Goodin, writing at ArsTechnica, tells the tale of a newly discovered Pokémon Go impostor application on the Google Play store. Oops...
Researchers from antivirus provider Eset report finding at least three such apps in the Google-hosted marketplace. - via Dan Goodin writing at ArsTechnica
Fifty Percent
HelpNet Security tells the tale of malicous web advertising, calcualting a stunning figure: Fifty percent of all web advertising is now evil. Is it any wonder that ad blockers now number in the most popular applications used on both mobile and desktop systems?
"Unauthorized Code" In Juniper Firewalls, The Decryption Litany →
via the inimitable Dan Goodin and writing at Ars Technica, wherein the good Mr. Goodin, in a display of remarkable restraint, tells the tale of the discovery of code (in this case not 'authorized') making itself at home in Juniper network componentry. In this case, firewall network componentry. Ooops
La Chronique de Dork
Ryan De Souza, writing at HackRead, provides a Chronicle of Dorkbot, maleware most pernicious; and it's announced temporary disruption. Better, I suppose, disrupted, than the alternative.