Skip to content

Gotham Security Daily Threat Alerts

by on March 5, 2014

March 3, Softpedia – (International) Meetup down for days due to DDoS attack allegedly ordered by a competitor. Social networking portal Meetup was hit by a distributed denial of service (DDoS) attack beginning February 27 that took the portal’s Web site offline for several days. An attacker contacted the company, claimed responsibility, and demanded a payment to end the attack. Source: http://news.softpedia.com/news/Meetup-com-Down-for-Days-Due-to-DDOS-Attack-Allegedly-Ordered-by-a-Competitor-430290.shtml

March 1, Softpedia – (International) Uroburos: Espionage rootkit allegedly created by Russian intelligence agency. Researchers at G Data analyzed a sophisticated rootkit dubbed Uroburos that can compromise Windows systems in order to execute commands, steal files, capture traffic, and add new modules to itself. The researchers believe the rootkit was created by a Russian intelligence agency and has been in operation since 2011. Source: http://news.softpedia.com/news/Uroburos-Espionage-Rootkit-Allegedly-Created-by-Russian-Intelligence-Agency-430030.shtml

February 28, IDG News Service – (International) Gameover malware tougher to kill with new rootkit component. Sophos researchers reported that a new variant of the Gameover banking malware that steals online banking credentials includes a kernel-level rootkit called Necurs that can make the malware more difficult to remove from   infected systems. Source: http://www.networkworld.com/news/2014/022814-gameover-malware-tougher-to-kill-279308.html

March 4, Dark Reading – (International) Researchers create legal botnet abusing free cloud service offers. Researchers presenting at the RSA Conference the week of February 24 demonstrated how they were able to create a botnet by abusing trial accounts for several platform-as-a-service (PaaS) and infrastructure-as-a-service (IaaS) offers. The botnet was created by automating PaaS and IaaS trial sign-up processes and could be used to perform massive port scans, Bitcoin mining, and to manipulate sweepstakes, among other tasks. Source: http://www.darkreading.com/researchers-create-legal-botnet-abusing/240166428

March 4, Help Net Security – (International) 300,000 routers compromised in DNS hijacking campaign. Researchers with Team Cymru found that around 300,000 small office/home office routers have been compromised and had their DNS settings changed to two IP addresses in the U.K. in order to allow them to perform man-in-the-middle (MitM) attacks. The researchers found that the attack dates to at least mid-December 2013 and has mostly affected routers in Europe and Asia. Source: http://www.net-security.org/secworld.php?id=16473

March 4, Softpedia – (International) 19 security fixes included in latest Chrome 33 update. Google released an update for its Chrome browser, Chrome version 33.0.1750, which addresses 19 security issues. Source: http://news.softpedia.com/news/19-Security-Fixes-Included-in-Chrome-33-0-1750-146-Update-430494.shtml

March 3, Softpedia – (International) Flaw in Yahoo! Suggestions allowed hackers to delete 1.5 million posts and comments. A security researcher identified and reported an Insecure Direct Object Reference Vulnerability (IDORV) in Yahoo’s Suggestions Web site that could have allowed attackers to escalate their privileges and delete large amounts of posts and comments. Yahoo addressed the issue within 2 days. Source: http://news.softpedia.com/news/Flaw-in-Yahoo-Suggestions-Allowed-Hackers-to-Delete-1-5-Million-Posts-and-Comments-430303.shtml

March 3, Threatpost – (International) Four vulnerabilities found in Oracle Demantra. Researchers at Portcullis identified four vulnerabilities in Oracle’s Demantra business software that could allow attackers to steal sensitive information, carry out phishing attacks, modify application content, or perform other attacks. Source: http://threatpost.com/four-vulnerabilities-found-in-oracle-demantra/104574

From → Uncategorized

Comments are closed.

%d bloggers like this: