Threat Roundup for September 27 to October 4

Talos publishings a glimpse into the most prevalent threats They’ve observed between Sep. 27 to Oct 4. As with previous roundups, this post isn’t meant to be an in-depth analysis. Instead, this post will summarize the threats They’ve observed by highlighting key behavioural characteristics, indicators of compromise, and discussing how their customers are automatically protected from these threats.

Source: Threat Roundup for September 27 to October 4

Advertisements

New 0-Day Flaw Affecting Most Android Phones Being Exploited in the Wild

Another day, another revelation of a critical unpatched zero-day vulnerability, this time in the world’s most widely used mobile operating system, Android. What’s more? The Android zero-day vulnerability has also been found to be exploited in the wild by the Israeli surveillance vendor NSO Group—infamous for selling zero-day exploits to governments—or one of its customers.

Source: New 0-Day Flaw Affecting Most Android Phones Being Exploited in the Wild

Threat Roundup for September 20 to September 27

Talos is publishing a glimpse into the most prevalent threats they’ve observed between Sep. 20 to Sep 27. As with previous roundups, this post isn’t meant to be an in-depth analysis. Instead, this post summarizes the threats they’ve observed by highlighting key behavioural characteristics, indicators of compromise, and discussing how their customers are automatically protected from these threats.

Source: Threat Roundup for September 20 to September 27

Hacker Releases ‘Unpatchable’ Jailbreak For All iOS Devices, iPhone 4s to iPhone X – USB Access Required!!!

An iOS hacker and cybersecurity researcher today publicly released what he claimed to be a “permanent unpatchable bootrom exploit,” in other words, an epic jailbreak that works on all iOS devices ranging from iPhone 4s (A5 chip) to iPhone 8 and iPhone X (A11 chip).

Source: Hacker Releases ‘Unpatchable’ Jailbreak For All iOS Devices, iPhone 4s to iPhone X

Russian APT Map Reveals 22,000 Connections Between 2000 Malware Samples

Though Russia still has an undiversified and stagnant economy, it was one of the early countries in the world to realize the value of remotely conducted cyber intrusions. In recent years, many Russia hacking groups have emerged as one of the most sophisticated nation-state actors in cyberspace, producing highly specialized hacking techniques and toolkits for cyber espionage.

Source: Russian APT Map Reveals 22,000 Connections Between 2000 Malware Samples

Microsoft Releases Emergency Patches for IE 0-Day and Windows Defender Flaw

It’s not a Patch Tuesday, but Microsoft is rolling out emergency out-of-band security patches for two new vulnerabilities, one of which is a critical Internet Explorer zero-day that cyber criminals are actively exploiting in the wild.

Source: Microsoft Releases Emergency Patches for IE 0-Day and Windows Defender Flaw

Threat Roundup for September 6 to September 13

Talos is publishing a glimpse into the most prevalent threats we’ve observed between Sep. 6. to Sep 13. As with previous roundups, this post isn’t meant to be an in-depth analysis. Instead, this post will summarize the threats we’ve observed by highlighting key behavioural characteristics, indicators of compromise, and discussing how our customers are automatically protected from these threats.

Source: Threat Roundup for September 6 to September 13

Netscout Warns of Increased APT Activity Targeting Airlines

A new threat report from Netscout identifies an increased level of APT activity targeting the airline and airport industries.

Their findings highlight that APT groups from China, Iran and Russia are targeting this sector to gather intelligence data from airports, airlines and aeroplane manufacturers.

The types of intelligence data and outcomes are:

  • Logistics about materials and trade;
  • Logistics of people and passengers, including travel origins and destinations of VIPs;
  • Passenger information and data;
  • Business information and data;
  • Intellectual property;
  • Smuggling of goods, including gemstones, endangered species and luxury items;
  • Sabotage, Destruction and Terrorism.

More Detail: Air APT