EternalBlue Exploit Used in Retefe Banking Trojan Campaign
Banking Trojan Retefe is adopting new WannaCry tricks, adding an EternalBlue module to propagate the malware. Source: www.threatpost.com
Vulnerabilities
2016 SEC Hack May Have Benefited Insider Trading
The U.S. Securities and Exchange Commission said this week that hackers managed to infiltrate one of its systems last year, something that likely facilitated insider trading. Source: www.threatpost.com
Samba Update Patches Two SMB-Related MiTM Bugs
Samba released three security updates, including two related to SMB connections that could be abused by an attacker already on the network to hijack connections and manipulate traffic or data sent from a client. Source: www.threatpost.com
Threatpost News Wrap, September 24, 207
The Equifax data breach saga so far, a Google HTTPS warnings paper, cryptocurrency mining at the Pirate Bay, and bringing machine learning to passwords are all discussed. Source: www.threatpost.com
Iranian APT33 Targets US Firms with Destructive Malware
APT33 targets petrochemical, aerospace and energy sector firms based in U.S., Saudi Arabia and South Korea with destructive malware linked to StoneDrill. Source: www.threatpost.com
Joomla Patches Eight-Year-Old LDAP Injection Vulnerability
Joomla on Tuesday patched a critical LDAP injection vulnerability that had lingered in the content management system for eight years. Attackers could use this bug to steal admin login credentials. Source: www.threatpost.com
iOS 11 Update includes Patches for Eight Vulnerabilities
Apple released a number of patches, including a security update for iOS 11, which is available today. Source: www.threatpost.com
Risks Limited With Latest Apache Bug, Optionsbleed
The risks surrounding the latest Apache bug, called Optionsbleed, are limited given it can only be attacked under certain conditions. Apache, and many Linux distributions, have patched the flaw. Source: www.threatpost.com
Vulnerabilities in mobile networks opens bitcoin wallets to hackers
Vulnerabilities in mobile networks opens bitcoin wallets to hackers Positive Technologies shows how hackers can gain access to bitcoin wallets using architecture flaws in SS7 Cryptocurrencies offer unprecedented transaction speeds and remittance security, but this is compromised by the weak security of digital wallets storing them. Positive Technologies has demonstrated an attack on a user account of Coinbase — one of the largest bitcoin exchanges in the world, which manages…
VMware Patches Bug That Allows Guest to Execute Code on Host
Users who run four different types of VMware products, ESXi, vCenter Server, Fusion and Workstation, are being encouraged to update to address a series of vulnerabilities, one critical. Source: https://threatpost.com