Skip to content

Gotham Security Daily Threat Alerts

by on September 27, 2013

September 26, Softpedia: (International) Icefog cybercriminals launch hit and run attacks against high-profile organizations. Kaspersky released a report on an advanced persistent threat (APT) cyberespionage campaign dubbed Icefog that has been targeting a variety of organizations since 2011. The campaign targets military contractors, telecoms, maritime and shipbuilding organizations, satellite operators, media, governments, and high-tech companies mainly in Japan and South Korea but with some targets in the U.S. and several European and Asian countries. Source:

September 26, Softpedia: (International) New malware Napolar steals information, launches DDoS attacks. Researchers from Avast and ESET analyzed a new piece of malware dubbed Napolar, whose author is Solarbot, that is capable of stealing information and launching distributed denial of service (DDoS) attacks. The malware is being sold for $200 and is being distributed to targets through Facebook. Source:

September 26, (International) Microsoft uncovers Sefnit trojan return after Groupon click-fraud scam. Researchers at Microsoft discovered a new version of the Sefnit click fraud trojan being used as a botnet to defraud Groupon and other popular Web sites. Source:

September 26, Softpedia: (International) Patches released to fix 4 XSS vulnerabilities in IP.Board 3.4.5 and IP.Gallery 5.0.5. Invision Power Services released patches to address four cross-site scripting (XSS) vulnerabilities in IP.Board 3.3.4, IP.Board 3.4.5, IP.Gallery 4.2.1, and IP.Gallery 5.0.5. Source:

September 26, ZDNet: (International) Google Hangouts/GTalk glitch sends chats to wrong recipients. Some users of Google Hangouts and GTalk reported experiencing an issue September 26 where messages were being delivered to unintended recipients. Google reported that they were investigating the issues. Source:

September 25, Threatpost: (International) Javascript issue plagues Mailbox app for iOS. A security researcher found that the Mailbox app for iOS automatically executes any Javascript contained in an HTML email, presenting a security issue that could be taken advantage of to a variety of attacks. Source:

From → Security

Comments are closed.

%d bloggers like this: