BF-SIRT Newsletter 2015-02

Welcome back to the newsletter! This week we cover the big events from the Christmas holidays. One of the top news during the holidays were the Lizard Squad’s attack on Sony’s and Microsoft’s online gaming services. Other big news were how Ukrainian Hackers Leak Russian Interior Ministry Docs with ‘Evidence’ of Russian Invasion and that Scandinavian banks were hit with DDoS attacks. Krebs also made about about Who’s Attacking Whom? Realtime Attack Trackers which are interesting to have a look at.

Top 5 Security links
USBDriveby Device Can Install Backdoor, Override DNS Settings in Seconds
Ukrainian Hackers Leak Russian Interior Ministry Docs with ‘Evidence’ of Russian Invasion
Majority of 4G USB Modems, SIM Cards Exploitable
Who’s Attacking Whom? Realtime Attack Trackers
Thunderstrike — Infecting Apple MacBooks with EFI Bootkit via Thunderbolt Ports

Top 5 Business Intelligence links
Tens of millions of dollars, credit cards and intellectual property stolen by a new group of cyber criminals
Scandinavian banks hit with DDoS attacks
Social engineering will ramp up in 2015
For North Korea’s cyber army, long-term target may be telecoms, utility grids
Bots account for more than half of all 2014 web traffic, report shows