A selection of this week’s more interesting vulnerability disclosures and cyber security news. Well, it seems 2018 has really got back into the swing of nasty things occurring. I don’t doubt you noticed the huge amount of spam email this week choking servers around the world. The highest (according the to the CBL stats I saw) for a year. I did have a chat on Twitter with a few about it while it was ongoing and the view was as it appear to mostly be a phishing exercise (no malware payload to increase the size of each mail) the volume was that much greater. The storm did pass and I wonder if that was just a testing phase, especially with recent news of developments in botnets such as:
That email storm was certainly from a distributed source. Was someone playing with a new one? This then poses the question: Where does the estimate below now sit?
A particularly interesting analysis of an industrial control system attack I might have previously mentioned. Again, at this level of attack and obvious target, it doesn’t bare thinking about the consequences:
The rest of the messy news:
- ‘Professional’ hack on Norwegian health authority compromises data of three million patients Sooraj Shah reports
- Blackwallet hacked: Report There are reports tonight that Blackwallet has been the victim of a DNS hijack.
- Four Malicious Google Chrome Extensions Affect 500K Users ICEBRG Security Research team’s finding highlights an often-overlooked threat.
- Hackers Have Walked Off With About 14% of Big Digital Currencies Olga Kharif reports: In less than a decade, hackers have stolen $1.2 billion worth of Bitcoin and rival currency Ether, according to Lex Sokolin, global director of fintech strategy at Autonomous Research LLP
- Researchers Offer ‘a VirusTotal’ for ICS Free online sandbox, honeypot tool simulates a real-world industrial network environment.