BF-SIRT Newsletter 2016-24

The top stories from this week consist of stories such as CrowdStrikes analysis and identification of two Russian intelligence adversaries present in the American Democratic National Committee (DNC) network, and a black market is selling access to government servers for 6$.

You can also read a story about the zero-day flaw in Adobe Flash being actively exploited by the cyberespionage group ScarCruft, and how a German university student used typosquatting in programming language package managers to get code run on military and government machines.

Top 5 Security links
North Korea mounts long-running attack on South Korea
Support forum company suffers data breach of 45 million accounts
the iMesh data breach, leaking information on 51 million accounts
White hats have found more than 100 vulnerabilities in Pentagon infrastructure
SS7 allows Facebook account compromise using phone number

Top 5 Business Intelligence links
Symantec acquiring BlueCoat
Mossack Fonseca worker arrested in Switzerland
Microsoft secretly adds snooping codes in Visual Studio 2015, claim debugging feature
How to prevent data from leaving with a departing employee
Companies pay out billions to fake CEO email scams