InfoSec Overnights 24 January 2019


Hi, I’m Paul Torgersen, it’s Thursday,
January 24th, 2019 and this is a look at the information security news from overnight. From TechCrunch.com:
More than 24 million financial and banking documents, representing tens of thousands
of loans and mortgages has been found on an unsecured ElasticSearch database. The database is owned by Ascension who confirmed
the server configuration error but said their overall systems are unaffected. They have taken the server off line. From SCMagazine.com:
A newly discovered family of ransomware has prompted a warning from researchers due to
its apparent modular capabilities and its sophisticated coding and anti-analysis techniques. Nicknamed Anatova, the ransomware has been
detected in at least several hundred machines around the world, with the US being the hardest
hit. You’ll want to read the McAfee blog post
linked in the article. From ThreatPost.com:
A massive adware campaign has so far impacted up to a million Mac users, using a tricky
steganography technique to hide malware in image files. The malware is a Trojan disguised as a Flash
upgrade that then downloads additional payloads, most notably Adware. As a result, end users may notice their machines
running slower than normal and be tricked into purchasing applications that they do
not need. Details and links on Threat Post. From CSOOnline.com:
Researchers warn of an increase in the number of multi-vector and multi-platform automated
attacks against cloud infrastructure over the past few months. These often combine cryptomining, ransomware
and botnet malware all in one. One of the most commonly used malware tools
is the XBash worm, which infects both Windows and Linux servers and deploys additional payloads
depending on which Operating System is running. Last today from ZDNet.com:
Trojan malware attacks against business targets have rocketed in the last year, as cyber criminals
alter their tactics away from short-term gain and in-your-face ransomware attacks towards
more subtle, long-term campaigns with the aim of stealing banking and personal data
and even intellectual property. Trojan and backdoor attacks have risen to
become the most detected against businesses, both having more than doubled in the last
year. You’ll want to read the Malwarebytes report
that is linked in the ZDNet article. That’s all for me today. Have a great rest of your day and until tomorrow,
be safe out there.

, , , , , , , , , , , , , , ,

Post navigation

Leave a Reply

Your email address will not be published. Required fields are marked *