BF-SIRT Newsletter 2015-35

The top stories from this week consist of information of how Sphinx, a new Zeus variant is for sale on the Black Market, as well as how Agora Dark Web Marketplace shuts down due to security concerns.
You can also read how more than 80% of healthcare IT leaders say their systems have been compromised, and about malvertising campaigns has increased 325 percent.

Top 5 Security links
Sphinx: New Zeus Variant for Sale on the Black Market
Agora Dark Web Marketplace Shuts Down Due to Security Concerns
University Of Virginia BreachTargeted Two Individuals With China Links
Carders fleece $4.2 million from Victoria’s MyKi transport agency
Plenty of fish, and exploits too, on dating website

Top 5 Business Intelligence links
More than 80% of healthcare IT leaders say their systems have been compromised
Malvertising campaigns increase 325 percent
Virtualization doubles the cost of security breach
Combatting human error in cybersecurity
Samsung smart fridge leaves Gmail logins open to attack

BF-SIRT Newsletter 2015-34

The top stories from this week consist of information of how China arrests 15,000 for Internet-related crimes, as well as how Uber will Quadruple Security Staff by 2016
You can also read how Microsoft issues emergency patch for IE flaw exploited in the wild, as well as how ID Thieves, Blackmailers Have Lots To Gain In Ashley Madison Breach.

Top 5 Security links
China arrests 15,000 for Internet-related crimes
Uber to Quadruple Security Staff by 2016
Italian teen finds two zero-day vulnerabilities in OS X
Using BitTorrent Vulnerabilities to Launch Distributed Reflective DoS Attacks
University of Virginia announces breach, says attack came from China

Top 5 Business Intelligence links
Microsoft issues emergency patch for IE flaw exploited in the wild
ID Thieves, Blackmailers Have Lots To Gain In Ashley Madison Breach
Report: Dark web marketplaces complete up to $500K in transactions daily
The unstoppable rise of DDoS attacks
Kaspersky Lab denies allegations it induced false positive AV detections

BF-SIRT Newsletter 2015-33

Welcome back to the newsletter after the summer holiday! The top stories from this week consist of stories such as how an Insider trading ring hacked into newswire services and raked in $100M based on stolen info, as well as information on how fraudsters stole nearly $47 million from Ubiquiti Networks.

Amongst the top stories you can also find information on how Blacklists miss 90% of malware blogged IP love, as well as how the Patched Android ‘Serialization’ Vulnerability Affects 55 Percent of Devices.

Top 5 Security links
Insider trading ring hacked into newswire services, raked in $100M based on stolen info
Fraudsters steal nearly $47 million from Ubiquiti Networks
Asprox botnet, a long-running nuisance, disappears
Darkhotel spying crew boosts attacks with Hacking Team exploit
Inside The Aftermath Of The Saudi Aramco Breach

Top 5 Business Intelligence links
Mozilla Patches Bug Used in Active Attacks
Patched Android ‘Serialization’ Vulnerability Affects 55 Percent of Devices
China Read Emails of Top U.S. Officials
IoT devices: The good, the bad and the ugly
Blacklists miss 90% of malware blogged IP love

Basefarm SIRT Posts
Patch Tuesday August 2015

Patch Tuesday August 2015

Yet another patch Tuesday has come upon us.
Microsoft released patches that address 14 different issues, 4 of which are critical. Adobe on the other hand has patched more than 30 vulnerabilities in their Flash product.

Microsoft
Adobe