List of Data Breaches, Malware, Vulnerabilities, Scams, and Issued Patches in July 2018
Botnets • Jul 31, 2018
Just like the previous month, July also witnessed a flurry of new malware variants, newly discovered vulnerabilities and attack methods used by threat actors. In addition to these, a copious number of breach incidents were also reported in this one month span, affecting renowned organizations, major businesses and institutions. News about scams related to phony prizes and sales, fake support calls were also reported in large amount.
New versions of Red Alert Trojan, GandCrab and Proton malware were found being used by cyber criminals to execute their malicious and phishing works. Several critical vulnerabilities--including a new variant of the Spectre flaw named SpectreRSB--were also discovered impacting various processes, systems and networks of several organizations. On the other hand, a major attack on Singapore's government health database resulted in the exposure of personal information of about 1.5 million people. Talking about scams, scammers have devised a technique named harpoon cannon method to target bitcoin whales who have thousands of coins in their crypto-wallets.
Despite all these cyber threats, patches and mitigation steps have been released for most of the vulnerabilities and malware.
Here's a detailed list of all the cyber threats, attacks, vulnerabilities, breaches, scams and security patches that were reported in July 2018.
Malware
MacOS Malware Targets Crypto Community on Slack, Discord
Bitcoin Malware Found Keeping an Eye on 2.3 Million Bitcoin Addresses
OSX.Dummy: New MacOS malware targets cryptocurrency investors on Slack and Discord
Hackers can hijack data over LTE using 'aLTEr' attack
Nozelesn Ransomware Reportedly Using Spam to Target Poland
New macro-less technique to distribute malware
Advanced Battery Saver app for Android has malware that can steal your data
Hit game Fortnite is dangerous – 'cos cheats are rife with malware
Facebook Bug Impacts up to 800k Accounts; Block Settings Modified
Linux targeted by illicit cryptocurrency miners
Smoking Guns – Smoke Loader learned new tricks
Malicious Macro Hijacks Desktop Shortcuts to Deliver Backdoor
Download Bomb Trick Returns in Chrome —Also Affects Firefox, Opera, Vivaldi and Brave
Two Zero-Day Exploits Found After Someone Uploaded 'Unarmed' PoC to VirusTotal
GandCrab V4 Released With the New .KRAB Extension for Encrypted Files
Using Google and Facebook to Distribute Malware in Phishing Campaigns
Crooks leverage obfuscated Coinhive shortlink in a large crypto-mining operation
Bot infects connected devices with miner linked to Chinese money scam site
An Invasive Spyware Attack on Military Mobile Devices
Fake Adult Sites Pushing Unwanted Extensions, Miners, and Adware
Macro-based malware campaign replaces desktop and Quick Launch shortcuts to install backdoor
Most LokiBot samples in the wild are "hijacked" versions of the original malware
Necurs update reminds us that the botnet cannot be ignored
Updated Rakhni malware strain can be ransomware or a cryptominer
T he Pirate Bay makes cryptocurrency mining a feature, not a bug
Anubis Strikes Again: Mobile Malware Continues to Plague Users in Official App Stores
Microsoft Blocks Embedding SettingContent-ms Files in Office 365 Docs
China Shutdowns Cryptojacking Operation That Infiltrated 3.9 Million Personal Computers
Internet Transit Providers Disconnect Infamous "BGP Hijack Factory"
Malicious PowerShell Detection via Machine Learning
BankBot Anubis targets Android users with fake apps to capture keystrokes, steal login details
New Variant of Spectre Security Flaw Discovered: Uses Speculative Execution to Overflow Buffers
Hide 'N Seek IoT Botnet Can Infect Database Servers
D-Link security certificates are being used to sign industry espionage malware
China-linked TEMP.Periscope targets Cambodia before upcoming general elections
Ghostbusters 2: how to deal with Spectre, the sequel
A Wordpress SPAMbot Wants You to Bet on the 2018 FIFA World Cup
Google Play Users Risk a Yellow Card With Android/FoulGoal.A
6-Year-Old Dorkbot Banking Malware Resurfaces as Big Threat
This GPS Spoofing Hack Can Really Mess Up Your Google Maps Trips
Windows Malware Carries Valid Digital Signatures
The Chinese Government Likely Knew about Spectre and Meltdown Bugs Before the U.S.
New Ransomware Rumored to Spread SMB Exploit
New Ransomware Technique Uses Your Real Passwords to Trick You
Support for Python Packages Added to GitHub Security Alerts
Operation Roman Holiday – Hunting the Russian APT28
Researchers Mount Successful GPS Spoofing Attack Against Road Navigation Systems
Magniber ransomware improves, expands within Asia
'007' code helps stop Spectre exploits before they exist
Blackgear Cyberespionage Campaign Resurfaces, Abuses Social Media for C&C Communication
The return of Fantomas, or how we deciphered Cryakl
King Ouroboros Ransomware Dev Vents to Researchers on Twitter
Malware Team Up: Malspam Pushing Emotet + Trickbot
Re-designed Gmail Poses New Potential Security Threat to 1.4 Billion Users
Vaccine Available for GandCrab Ransomware v4.1.2
Router Crapfest: Malware Author Builds 18,000-Strong Botnet in a Day
New malicious email detection method that outperforms 60 antivirus engines
TA505 Abusing SettingContent-ms within PDF files to Distribute FlawedAmmyy RAT
This robotic vacuum's camera could let hackers spy on you
Droppers Is How Android Malware Keeps Sneaking Into the Play Store
Cybercriminals Revamp Old Ransomware to Steal Bitcoins
Unit 42 Finds New Mirai and Gafgyt IoT/Linux Botnet Campaigns
D-Link, Dasan Routers Under Attack In Yet Another Assault
Beware the botnet lurking unseen on your computer
Source Code for Exobot Android Banking Trojan Leaked Online
Shrug ransomware victim? Here's how to retrieve your locked files for free
Academics Announce New Protections Against Spectre and Rowhammer Attacks
Security Researchers Issue Warning on a New Wave of Attacks led by Mirai and Gafgyt
Red Alert 2.0: Android Trojan targets security-seekers
Spectre rises from the dead to bite Intel in the return stack buffer
Kronos Reborn with at least three distinctive campaigns
Hackers Hiding Web Shell Logins in Fake HTTP Error Pages
Hide ‘N Seek Botnet Targets Smart Homes
New strain of Mac malware Proton found after two years
SmartTVs, mobile devices susceptible to Satori Mirai variant
Parasite HTTP RAT cooks up a stew of stealthy tricks
Advanced Mobile Malware Campaign in India uses Malicious MDM
Criminal mastermind injects malicious script into Ethereum tracker. Their message? '1337'
Pinterest Browser Extension Injects Unwanted Code into 5K Websites
CactusTorch Fileless Threat Abuses .NET to Infect Victims
New Encrypted Downloader Leverages Old-School Macro Malware to Gain Backdoor Access
Researchers Unearth Malvertising Campaign Delivering Millions of Bad Ads
Hidden Devil in the Development Life Cycle: Google Play Apps Infected with Windows Executable Files
Vulnerabilities
Tech-support scammers revive bug that sends Chrome users into a panic
Millions of Websites Using HTTP Maybe Labelled “Not Secure” with July Google Chrome Update
Flaws Expose Siemens Central Plant Clocks to Attacks
You Can Bypass Authentication on HPE iLO4 Servers With 29 "A" Characters
Google admits third-party app developers read your Gmail emails
DrupalGangster: An old threat actor trying to cash-in off the latest Drupal vulnerability
Canonical 'unlikely' to fix bug that allows hackers to bypass Ubuntu's lock screen
CredSSP Flaw Exposes Pepperl+Fuchs HMI Devices to Attacks
Multiple Antenna House Vulnerabilities
Arch Linux PDF reader package poisoned
You'll scream when you see how easy it is to pwn unpatched HPE servers
Computerinsel Photoline Multiple Vulnerabilities
Multiple Bugs Found in QNAP Q'Center Web Console
The Security Hole in Apple's New Security Feature
Hackers Can Chain Multiple Flaws to Attack WAGO HMI Devices
The Aurora Power Grid Vulnerability and the BlackEnergy Trojan
Cryptomining campaign targeting web servers vulnerable to Drupalgeddon 2.0 nets $11,000
Compromised JavaScript Package Caught Stealing npm Credentials
Cortana security flaw means your PC may be compromised
VPNFilter-affected Devices Still Riddled with 19 Vulnerabilities
Flaws Expose Siemens Protection Relays to DoS Attacks
GitHub to Pythonistas: Let us save you from vulnerable code
Russian National Vulnerability Database Operation Raises Suspicions
Reprise Software Refuses to Patch RLM Issue
Cisco Finds Serious Flaws in Policy Suite, SD-WAN Products
Dark Web 'RDP Shops' Offer Access to Vulnerable Systems for as Little as $3
Unpatched Remote Code Execution in Reprise License Manager
Foxit PDF Reader JavaScript Remote Code Execution Vulns
Half a Billion Smart Devices Vulnerable to Decade-old DNS Rebinding Attacks
SSRF Flaw Exposed Information From Google's Internal Network
Critical Start Uncovers Security Vulnerability In VMware NSX SD-WAN By Velocloud
Who watches Sony's watcher? Boffins poke holes in surveillance kit
If at first you, er, make things worse, you're probably Microsoft: Bug patch needed patching
Apache OpenWhisk critical information leak vulnerability exposed
Vulnerability in OpenSSL affects FlashCopy Manager
Recently Patched Oracle WebLogic Flaw Exploited in the Wild
Malware Author Building "Death" Botnet Using Old AVTech Flaw
Browser Extension Bug Leads to Post Injection
Juniper makes a meal of Spectre/Meltdown
Bluetooth Flaw Could Allow Nearby Attacker to Grab Your Private Data
Swann's home security camera recordings could be hijacked
Developer Finds Pizza Hut Security Flaw Which Affected Hundreds of Websites
Hacking campaign uses old Microsoft Office flaws to create backdoors, steal files
Flaw in Apache OpenWhisk Serverless platform could let hackers replace victims code with their own
Multiple Vulnerabilities in Samsung SmartThings Hub
SCADA vulnerabilities in ICS architectures
Bluetooth Risk Assessment Ongoing After Discovery of Ten Year Old Flaw
IBM Cloud Functions is affected by two function runtimevulnerabilities - IBM PSIRT Blog
Critical Vulnerability In IBM Cloud Functions Serverless Platform
Patches
Vulnerabilities Patched in VMware ESXi, Workstation, Fusion
Google Releases July 2018's Android Security Patch to Fix 70 Vulnerabilities
Huawei enterprise and broadcast products have a crypto bug. Fix it now!
Thunderbird gets its EFAIL patch
Year-Old Critical Vulnerabilities Patched in ISP Broadband Gear
Apple Patches KRACK Flaws in Boot Camp
Intel Patches Security Flaws in Processor Diagnostic Tool
WordPress Arbitrary File Deletion Vulnerability Plugged With Patch 4.9.7
Adobe Patch Tuesday Is Out With Fixes for Flash Player, Acrobat, Reader, More
Microsoft, Intel and Adobe drive IT admins to tears with bug fix overload
WordPress issues out of band security and maintenance update
Nintendo reportedly closes 'unpatchable' flaw in new Switch units
Power Grid Protection Firm SEL Patches Severe Software Flaws
Microsoft Rolls Out Patches for "Lazy FP State Restore" Bug Affecting Intel CPUs
Intel Announces Spectre Patch Release Schedule For Newly Discovered Side-Channel Exploit
Cisco Patches High-Severity Bug in VoIP Phones
Oracle to release fixes for 334 vulnerability patches
Cisco Patches High Risk Flaws in StarOS, IP Phone
So long and thanks for all the fixes: ERPScan left out of credits on Oracle bug-bash list
ABB to Patch Code Execution Flaw in HMI Tool
Cisco patches critical vulnerabilities in Policy Suite
Adobe Patches Vulnerability Affecting Internal Systems
Microsoft Addresses Serious Vulnerability in Translator Hub
Big bad Bluetooth blunder bug battered – check for security fixes
Information Disclosure, DoS Flaws Patched in Apache Tomcat
Etherscan rushes to plug vulnerabilities following strange hacking attempts overnight
Sony Patches Remotely Exploitable Vulnerabilities in Network Cameras
Oracle fixes Solaris vulnerability could allow kernel level privilege escalation
AVEVA Patches Critical Flaws in HMI/SCADA Tools Following Schneider Merger
Windows 10 Cumulative Updates Released
Breaches
Tasmanian electoral body caught up in Typeform data breach
Perth-based Cyanweb Solutions hit by "criminal hacking", website data and backups lost
Mysterious Algonquin College cyber attack could affect thousands
Costa Coffee job applicants' details exposed in cyber attack on recruitment website
NHS data breach affects 150,000 patients in England
Microsoft Plugs Data Leaks in SharePoint Online Update
Fortnum & Mason: 23,000 Affected by Data Hack
Irish Retailer Reveals It Was Affected by International Data Breach
Top-ranked Australian university hit by Chinese hackers
'Domain Factory' confirms January 2018 data breach
Hackers Reportedly Stole 600 Gallons of Gas From Detroit Gas Station
Spooks Spooked by Data Breach: Running App Exposes MI6 and GCHQ Workers’ Whereabouts
Timehop Breach Hits 21 Million Users Due to a Lack of 2FA on Cloud Services
Cyber terrorists target Nigerian govt agencies, banks
Two Democratic campaigns hit with DDoS attacks in recent months
Popular crypto service MyEtherWallet hit by attack after Hola VPN gets hacked
Blizzard Faces Another Cyber Attack; Targeted in Weekend-long DDoS Attacks
Malware at nine B&B Hospitality Group restaurants in New York targeted payment info
A Hacker Sold U.S. Military Drone Documents On The Dark Web For Just $200
Hackers Breach Popular Software Site VSDC; Download Links Changed to Redirect Users to Malware
Cryptocurrency Service Bancor Robbed of Billions
Ukraine Security Service Stops VPNFilter Attack at Chlorine Station
MedEvolve FTP server left open to web, patient data compromised
Facebook Privacy Loophole Allowed Personal Data of 'Closed' Group Members to be Downloaded
Passwords for Tens of Thousands of Dahua Devices Cached in IoT Search Engine
Verizon's unsecured Amazon S3 server exposes up to 14 million customer records
Kenya: Two Kenyan Banks Lose $0.86 Million to Hackers in a Month
Thousands of Mega Logins Dumped Online, Exposing User Files
Telefonica Breach Leaves Data on Millions Exposed
IoT search engine ZoomEye 'dumbs down' Dahua DVR hijackings by spewing passwords
Thousands of patient records held for ransom in Ontario home care data breach, attackers claim
Four Healthcare IT Companies Warn PHO Put 800K Patients' Data at Risk
Fraudsters spoof university email addresses in six figure supply fraud
Blood test biz LabCorp pulls plug on systems over hacker fears
Thousands of US Voters' Data Exposed by Robocall Firm
Ubisoft Games Hit by Massive DDoS Attacks
Security breach at Zec, database hacked
Cyber security is being tightened at Australian airports after an identity card data hack
Hackers Breach Russian Bank and Steal $1 Million Due to Outdated Router
Adult Site Blackmail Spammers made Over $50K in One Week
Human Resources Firm ComplyRight Breached — Krebs on Security
Attackers used phony Microsoft site to target 2018 political candidates
Flaws in Health and Fitness Wearables Help Hackers Poach Personal Data of Users
‘Big Red Flag’: Automakers’ Trade Secrets Exposed in Data Leak
Attacks on Oracle WebLogic Servers Detected After Publication of PoC Code
Russian Hackers Penetrated Networks of U.S. Electric Utilities: WSJ
Hackers Breached Virginia Bank Twice in Eight Months, Stole $2.4M
Ransomware-based breach of Alaskan medical billing vendor impacts Fairbanks municipality
Ransomware Infection Cripples Shipping Giant COSCO's American Network
Singapore securities investor database breached in 2013
LifeLock Bug Exposed Millions of Customer Email Addresses
Multiple Ransomware Attacks Cut Off Police Access to Crime Database in Riverside, Ohio
A Hacker Allegedly Stole Millions by Hijacking Phone Numbers
KickICO Platform Loses $7.7 Million in Recent Hack
Scams
The oldest man in the United States was robbed of his entire bank account
Harpoon Cannon Method: How Scammers Catch Bitcoin Whales
Online fraudsters target UAE Facebook users for data
New U.S. Medicare cards prompt warnings about phone scams
Gas pump credit card skimmers set to steal ahead of July 4th travel, Secret Service warns
What to do if you receive this 'Medicare' email
Someone Is Playing Pranks on GTA Gamers by Fake-Announcing GTA 6
Scammers Are Exploiting a Browser-Hijacking Google Chrome Bug (Again)
Argos text scam tricks customers through fake refund message
Tech-support scammers know EVERYTHING about my computer, Dell customer says
Sextortion Scam Uses Recipient’s Hacked Passwords — Krebs on Security
Kodak Bitcoin mining 'scam' evaporates
A Multichannel Fight Against Fraud
Beware of new, slick 419 scams, expert warns
‘Sweet-talking’ swindler arrested for duping women out of HK$2.6 million
City of Alamogordo victim of $250,000 email scam
Cyber criminals bait users with fake gift cards
Vigilant consumers can keep cyber fraud at bay
US makes an example of Indian call center scam artists with stiff sentences
Watch Out for this New PayPal Text Message Scam
Customer fraud is now the number one economic crime in Australia
Someone is using a cancelled TV show's verified Twitter account to promote a cryptocurrency scam
Hire-a-hitman website is a scam and its owner has made a killing
Click on this iOS phishing scam and you’ll be connected to “Apple Care”
