Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.

MS-ISAC Releases Advisory on PHP Vulnerabilities

10/12/2018 06:37 PM EDT  Original release date: October 12, 2018

The Multi-State Information Sharing & Analysis Center (MS-ISAC) has released an advisory on multiple Hypertext Preprocessor (PHP) vulnerabilities. An attacker could exploit some of these vulnerabilities to take control of an affected system.  NCCIC encourages users and administrators to review MS-ISAC Advisory 2018-113 and the PHP Downloads page and apply the necessary updates.

I want my Robo-callers SHAKEN and STIRred

Finally, an end to robocalls?  35 state attorney generals tell FCC to pull the plug on robocalls.  The AGs want the FCC to adopt SHAKEN and STIR.

AA18-284A: Publicly Available Tools Seen in Cyber Incidents Worldwide

10/11/2018 11:19 AM EDT  Original release date: October 11, 2018

NCCIC Releases Joint Alert on Worldwide Malicious Activity Using Publicly Available Tools

10/11/2018 01:23 PM EDT  Original release date: October 11, 2018

This report is a collaborative research effort by the cyber security authorities of five nations: Australia, Canada, New Zealand, the United Kingdom, and the United States.  In it we highlight the use of five publicly available tools, which have been used for malicious purposes in recent cyber incidents around the world. The tools are:

  • Remote Access Trojan: JBiFrost
  • Webshell: China Chopper
  • Credential Stealer: Mimikatz
  • Lateral Movement Framework: PowerShell Empire
  • C2 Obfuscation and Exfiltration: HUC Packet Transmitter

Google+ to be Shuttered Following Data Breach

Google+ was started in November 2012.  It will be closed by August 2019.  Lack of serious use combined with a recently discovered software flaw that breached user records finally pushed G+ over the edge.  G+ is doomed to suffer the fate of its’ predecessors, Google Buzz, FriendConnect, and Orcut.  I only used G+ as a method to announce and promote my blog posts, and only because they were Google and it might hopefully improve page rank.  It was never a destination service for me.

Big Facebook data breach: 50 million accounts affected

Facebook has suffered a data breach affecting almost 50 million accounts. Another 40 million have been reset as a “precautionary step”.  New information here.



About the Author:

Cybersecurity analyst, pen-tester, trainer, and speaker. Serving small business owners in the St Paul, Minneapolis, and western Wisconsin area since 2001. Cybersecurity and hacking have been a passion of mine since I entered the computer and networking business in 2000. I hold several cybersecurity certifications including Certified Information Systems Security Professional (CISSP), Certified Advanced Security Pratitioner (CASP), and Certified Ethical Hacker (CEH). Other computer industry certifications include A+, Network+ and Microsoft Certified System Engineer (MCSE). As Cybersecurity Analyst at The WyzCo Group, I help our clients experience high levels of security on their computers, networks, and websites. In addition to consulting on security products and services, we also conduct security audits, vulnerability assessments and full penetration tests. We also work with companies and organizations that need to certify compliance with regulations such as PCI-DSS (credit card processing), HIPAA/HITECH (medical records), and GLBA. We also provide Cybersecurity Awareness Training for clients and their employees. I am a frequent speakers at cybersecurity conferences such as the Minnesota Bloggers Conference, Secure360 Security Conference, the (ISC)2 World Congress, and the ISSA International Conference, and many local community organizations, Chambers of Commerce, SCORE, and several school districts. I have been blogging on cybersecurity since 2008.
  Related Posts

Add a Comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.