Skip to content

Gotham Security Daily Threat Alerts

by on October 17, 2014

October 16, Securityweek – (International) Attackers abuse UPnP devices in DDoS attacks, Akamai warns. Researchers at Akamai Technologies reported that attackers have increasingly used the Simple Service Discovery Protocol (SSDP) that comes enabled on Universal Plug and Play (UPnP) devices to launch reflection and amplification distributed denial of service (DDoS) attacks starting in July. The researchers found that 4.1 million Internet-facing devices could be used in this type of DDoS attack. Source

October 16, Help Net Security – (International) New OpenSSL updates fix POODLE, DoS bugs. The OpenSSL Project released updates to OpenSSL that close four serious vulnerabilities, including the POODLE issue and two memory leak issues that could be used to launch denial of service (DoS) attacks against servers. Source

October 15, The Register – (International) FireEye, Microsoft, Cisco team up to take down RAT-flinging crew. A group of security and IT firms led by Novetta began a coordinated campaign to detect and remediate malware installations belonging to a cyberespionage campaign targeting policy groups, governments, financial services institutions, the education sector, and think tanks since 2010. The cyberespionage group uses several tools including Moudoor, a derivative of the Gh0st RAT remote access trojan, and the Hikiti malware used to control compromised systems. Source

October 15, Threatpost – (International) Drupal fixes highly critical SQL injection flaw. Drupal issued a patch for its popular content management system (CMS) that closes a critical SQL injection vulnerability affecting version 7.x. The vulnerability could allow an unauthenticated user to perform arbitrary SQL execution and all users were advised to update their installations as soon as possible. Source

October 16, Softpedia – (International) Botnets used in “Wolf of Wall Street” spam campaign. Researchers with Bitdefender identified a spam campaign dubbed “Wolf of Wall Street” that uses botnets to send out promotional emails encouraging penny stock investors to purchase stocks of Canada-based Confederation Minerals Ltd., which has resulted in the transaction volume of the company increasing to 1,620,000 shares from 10,000 shares within 3 days. The spam campaign is the largest recorded in 2014 and the attackers behind it stand to profit by selling stocks after inflating the prices. Source

October 15, Softpedia – (International) Cyberswim announces data breach lasting for more than three months. Cyberswim Inc., notified customers who made purchases on its Web site between May 12 and August 28 that their personal information, including payment card data, may have been compromised after officials confirmed that malicious software was installed on the company’s network, granting attackers access to the data. Cyberswim updated its Web site code and issued a password reset command to block the intruders’ access to the network. Source

From → Security

Comments are closed.

%d bloggers like this: