External Threat Summary for October 2018

 

Data Exposure | Dark Web

Millions of voter records found for sale on underground markets ahead of midterm elections.

As the US midterm elections close in, the underground markets appear to be flush with voter databases available for affordable prices.

Read More


Search Engine Optimization (SEO) Poisoning

Microsoft Bing served malicious content in advertisement.

You launch Edge on your new PC, search for “download Chrome,” and click the first result headed to “google.com” on Bing. You’re now on a phishing website pushing malware, disguised to look like the Chrome download page.

Read More


Cyber Social Media Threat

Facebook removed Iran-linked accounts targeting United States and United Kingdom.

Facebook Head of Cybersecurity Policy Nathaniel Gleicher said today the company removed 82 pages, groups, and accounts for coordinated inauthentic behavior. The accounts originated in Iran and targeted people in the US and UK.

Read More


Rouge Mobile Application

ESET discover more banking trojans on official Google Play store.

The malicious apps have all been removed from the official Android store but not before the apps were installed by almost 30,000 users.

Read More


Data Leak

Pocket iNet accidentally exposes sensitive data.

A Washington State internet provider, Pocket iNet, left an AWS S3 server exposed online without a password.

Read More


Data Breach

Morrisons liable for data breach exposing 100,000 employees’ data.

Supermarket giant Morrisons has been told by the Court of Appeal that it is liable for the actions of a malicious insider who breached data on 100,000 employees, setting up a potential hefty class action pay-out.

Read More


Data Breach

Yale University hit with second lawsuit over decade-old data breach.

Despite its reputation as having the top law school in the country, Yale University is facing a second lawsuit after the personal information of more than 100,000 students was stolen by hackers in a data breach, according to GazetteXtra.

Read More


Cyber Social Media Threat

Twitter takes down bot network distributing pro-Saudi messages mentioning Khashoggi.

Twitter suspended a network of suspected Twitter bots on Thursday that pushed pro-Saudi Arabia talking points about the disappearance of journalist Jamal Khashoggi in the past week.

Read More


Cyber Social Media Threat

Twitter releases data store of posts connected to Russian ‘troll factory’.

Twitter is making publicly available archives of Tweets and media that they believe resulted from potentially state-backed information operations of their service.

Read More


Search Engine Optimization (SEO) Poisoning

SEO Poisoning Campaign Targeting U.S. Midterm Election Keywords

A new SEO poisoning campaign has been discovered that is targeting keywords associated with the U.S. midterm elections. Users who are enticed to visit these pages will then be redirected to a variety of scam sites, adult sites, and sites pushing unwanted software.

Read More


Data Leak

Tea Party super PAC group inadvertently leaked 527,000 voters’ information.

527,000 individuals were publicly exposed in a misconfigured Amazon S3 bucket belonging to the Tea Party Patriots Citizens Fund (TPPCF), a Republican super PAC involved in campaigns including the 2016 presidential election, the Stand for the Second student walkout, and endorsing congressional candidates like Alabama’s Roy Moore and New Jersey’s Jay Webber.

Read More


Business Email Compromise

Texas school district targeted in business email compromise attack, looses $600,000.

The Henderson, Texas school district was hit with a business email compromise (BEC) attack resulting in a $600,000 loss for the district.

Read More


Data Exposure

Facebook states 30 million users were affected by ‘View As’ vulnerability.

Attackers exploited a vulnerability in Facebook’s code that existed between July 2017 and September 2018. The vulnerability was the result of a complex interaction of three distinct software bugs and it impacted “View As,” a feature that lets people see what their own profile looks like to someone else

Read More


Insider Threat | Dark Web

French police officer arrested for selling police data on the dark web.

Police officer also advertised a system to track the location of buyers’ gang rivals or spouses based on the telephone numbers.

Read More


Cyber Social Media Threat | Account Takeover | Dark Web

Hackers selling stolen Spotify and Fortnite accounts on Instagram.

As hacking and gaming communities continue to intersect, some hackers are selling access to botnets and likely stolen Fortnite, Spotify, and other online accounts on Instagram.

Read More

 

Don’t be the next news story. Contact us now to start protecting your organization from external threats.