BF-SIRT Newsletter 2015-39

The top stories from this week consist of information on how Apple brings down malware-infected apps from store, as well as how Google Details Plans to Disable SSLv3 and RC4.
You can also read about how Global cyber-insurance market predicted to growth to £4.8bn by 2020, and how Skype is the latest in a series of high-profile web outages.

Top 5 Security links
Apple brings down malware-infected apps from store
Google Details Plans to Disable SSLv3 and RC4
Russian military attacked, possibly by Chinese cyber group
XCodeGhost iOS infection toll rises from 39 to a WHOPPING 4,000 apps
Criminal services for sale on the dark web grow

Top 5 Business Intelligence links
Global cyber-insurance market predicted to growth to £4.8bn by 2020
Skype is the latest in a series of high-profile web outages
Inside Target Corp., Days After 2013 Breach
India withdraws draft encryption policy following controversy
FireEye: The face of hacking is changing – and it’s getting uglier

BF-SIRT Newsletter 2015-38

The top stories from this week consist of information on how U.S. Department of Energy was successfully compromised 159 times in 4 years, as well as how Cyber-crime empties pockets of UK businesses about £2.8bn per year.
You can also read about how Let’s Encrypt project issues its first free SSL/TLS certificate, and how Malvertising affected websites with millions of monthly visits for three weeks.

Top 5 Security links
U.S. Department of Energy was successfully compromised 159 times in 4 years
Cyber-crime empties pockets of UK businesses about £2.8bn per year
Tor security improves as .onion becomes a special-use domain name
Corebot cleverly written botnet malware with growth potential
Dutch Police Arrest Alleged CoinVault Ransomware Authors

Top 5 Business Intelligence links
Let’s Encrypt project issues its first free SSL/TLS certificate
Malvertising affected websites with millions of monthly visits for three weeks
Android 5 bug allows attackers to easily unlock password-protected devices
Under DDoS attack? Look for something worse
Why background screening is vital for IT security

BF-SIRT Newsletter 2015-37

The top stories from this week consist of information on how Zimperium unleashes Android Stagefright exploit code on world, as well as how Mozilla admits bug-tracker breach led to attacks against Firefox users.
You can also read about a new survey that shows data breaches hitting pharma industry, and how half of iPhones on corporate networks run outdated iOS versions.

Top 5 Security links
Zimperium unleashes Android Stagefright exploit code on world
Mozilla admits bug-tracker breach led to attacks against Firefox users
Hackers spread malware via Yahoo ads
Fiat Chrysler voluntarily recalls 7,810 SUVs over software issues
Arrests Tied to Citadel, Dridex Malware

Top 5 Business Intelligence links
Survey reveals data breaches hitting pharma industry
Half of iPhones on corporate networks run outdated iOS versions
Ashley Madison still a top lure for scammers and crooks
Fake recruiters on LinkedIn are targeting infosec pros
Credentials stored in Ashley Madison’s source code might have helped attackers

Basefarm SIRT Posts
Patch Tuesday September 2015

Patch Tuesday September 2015

Yet another patch Tuesday has come upon us.
Microsoft released patches that address 12 different issues, 5 of which are critical. Adobe on the other hand has released a security update for their ShockWave application.

Microsoft
Adobe

BF-SIRT Newsletter 2015-36

The top stories from this week consist of information of how Six people have been caught over using LizardSquad Attack Tool, as well as how Intel says GPU malware is no reason to panic, yet.

You can also read how Social Engineering and Hacks Lead to Millions Lost to Wire Fraud according to the FBI, and how to investigate and prosecute Cyber Crime .

Top 5 Security links
Six Nabbed for Using LizardSquad Attack Tool
Intel says GPU malware is no reason to panic, yet
Adware installer gives itself permission to access Mac users’ keychain
Russian-speaking hackers breach 97 websites, many of them dating ones
‘KeyRaider’ iOS malware targets jailbroken devices

Top 5 Business Intelligence links
FBI: Social Engineering, Hacks Lead to Millions Lost to Wire Fraud
Investigating and Prosecuting Cyber Crime: Forensic Dependencies and Barriers to Justice
Who’s afraid of shadow IT?
China and Russia are using hacked data to target U.S. spies, officials say
Cyberarmies rising?