Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.

MS-ISAC Releases Advisory on PHP Vulnerabilities

10/12/2018 06:37 PM EDT  Original release date: October 12, 2018

The Multi-State Information Sharing & Analysis Center (MS-ISAC) has released an advisory on multiple Hypertext Preprocessor (PHP) vulnerabilities. An attacker could exploit some of these vulnerabilities to take control of an affected system.  NCCIC encourages users and administrators to review MS-ISAC Advisory 2018-113 and the PHP Downloads page and apply the necessary updates.

I want my Robo-callers SHAKEN and STIRred

Finally, an end to robocalls?  35 state attorney generals tell FCC to pull the plug on robocalls.  The AGs want the FCC to adopt SHAKEN and STIR.

AA18-284A: Publicly Available Tools Seen in Cyber Incidents Worldwide

10/11/2018 11:19 AM EDT  Original release date: October 11, 2018

NCCIC Releases Joint Alert on Worldwide Malicious Activity Using Publicly Available Tools

10/11/2018 01:23 PM EDT  Original release date: October 11, 2018

This report is a collaborative research effort by the cyber security authorities of five nations: Australia, Canada, New Zealand, the United Kingdom, and the United States.  In it we highlight the use of five publicly available tools, which have been used for malicious purposes in recent cyber incidents around the world. The tools are:

  • Remote Access Trojan: JBiFrost
  • Webshell: China Chopper
  • Credential Stealer: Mimikatz
  • Lateral Movement Framework: PowerShell Empire
  • C2 Obfuscation and Exfiltration: HUC Packet Transmitter

Google+ to be Shuttered Following Data Breach

Google+ was started in November 2012.  It will be closed by August 2019.  Lack of serious use combined with a recently discovered software flaw that breached user records finally pushed G+ over the edge.  G+ is doomed to suffer the fate of its’ predecessors, Google Buzz, FriendConnect, and Orcut.  I only used G+ as a method to announce and promote my blog posts, and only because they were Google and it might hopefully improve page rank.  It was never a destination service for me.

Big Facebook data breach: 50 million accounts affected

Facebook has suffered a data breach affecting almost 50 million accounts. Another 40 million have been reset as a “precautionary step”.  New information here.



About the Author:

Cybersecurity analyst, pen-tester, trainer, and speaker. Owner of the WyzCo Group Inc. In addition to consulting on security products and services, Bob also conducts security audits, compliance audits, vulnerability assessments and penetration tests. Bob also teaches Cybersecurity Awareness Training classes. Bob works as an instruction for CompTIA’s non-profit IT-Ready Program in the Twin Cities. IT-Ready is a tuition free 8-week program designed to teach students of all ages the fundamentals of IT support to prepare them for an entry level position in Information Technology Support. Graduates of the classes take the exams to become CompTIA A+ certified. Bob is a frequent speaker at conferences such as the Minnesota Bloggers Conference, Secure360 Security Conference2016, 2017, 2018, 2019, the (ISC)2 World Congress 2016, and the ISSA International Conference 2017, and many local community organizations, including Chambers of Commerce, SCORE, and several school districts. Bob has been blogging on cybersecurity since 2006 at http://wyzguyscybersecurity.com
  Related Posts

Add a Comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.