Go to listing page

List of Data Breaches, Malware, Vulnerabilities, Scams, and Issued Patches in May 2018

Threat Intelligence

List of Data Breaches, Malware, Vulnerabilities, Scams, and Issued Patches in May 2018

Share Blog Post

May has witnessed several new variants of malware, vulnerabilities and respective patches issued to fix them. There have been an ample number of data breaches affecting major organizations and popular brands, while scammers have designed new techniques to trick people into sharing their personal information.

Most of the new RATs (Remote Access Trojans), botnets and malware were designed to harvest sensitive personal and financial information. Several critical vulnerabilities--including new variants of the Spectre flaw--were discovered by security researchers. Unsecured databases have once again resulted in theft of personally identifiable information (PII) belonging to thousands of users. Meanwhile, scammers have leveraged the craze around the FIFA World Cup and the newly released GDPR to launch online scams.

On the brighter side, patches and mitigation steps have been released for most of the vulnerabilities and malware. Users are thoroughly advised to follow standard security procedures to avoid loss of information, money, or becoming a victim of a malware attack.

Malware

DreamBot Campaign Dreams Big

SS7 routing-protocol breach of US cellular carrier exposed customer data

Windows 'Double Kill' Attack Code Found in RIG Exploit Kit

New Nocturnal Stealer malware lets hackers harvest data for a small price and little effort

Hackers launch 'Double-Spend' attack on Bitcoin Gold to steal over $18 million

New Backup Cryptomix Ransomware Variant Actively Infecting Users

New MnuBot banking trojan uses unusual tricks to hide behind MSSQL Traffic

Sonic and ultrasonic attacks damage hard drives and crash OSes

US warns two North Korean malware strains targeting critical infrastructure for past 9 years

U.S. Thieves Exploring ATM Jackpotting Attacks

BackSwap Trojan exploits standard browser features to empty bank accounts

New crypto-mining malware uses Amazon’s cloud to hijack computers

MalHide Malware uses the compromised system as an eMail relay

BackSwap malware: New banking Trojan uses unique techniques to drain your bank account

New Confucius malware campaign has links to Patchwork cybergang

Pre-installed malware found on hundreds of cheap Android phones and tablets

Malware Found in the Firmware of 141 Low-Cost Android Devices

Phorpiex – A decade of spamming from the shadows

Malicious Edge and Chrome Extension Used to Deliver Backdoor

VPNFilter infects over half a million routers worldwide, raises concerns over 'imminent' attack

Hackers Find New Method of Installing Backdoored Plugins on WordPress Sites

CryptON Ransomware Installed Using Hacked Remote Desktop Services

Spam Botnet Tracked Down to Malicious PHP Script Found on 5,000 Hacked Sites

Malware Distributed via .slk Files

New Mac cryptominer uses XMRig

Malicious PHP Script Infects 2,400 Websites in the Past Week

Vega Stealer Malware Swoops Financial Data Straight from Chrome and Firefox Browsers

Roaming Mantis malware rapidly evolves beyond Android, preys on victims with new phishing, cryptomining attacks

New Malicious Monero Miner Crashes Computers When Attempting to Remove it

Nasty cryptomining malware WinstarNssmMiner crashes your computer when you try to remove it

Hacked Drupal Sites Deliver Miners, RATs, Scams

Android malware harvesting personal data of North Korean defectors

Roaming Mantis dabbles in mining and phishing multilingually

The Satori Botnet Is Mass-Scanning for Exposed Ethereum Mining Rigs

"Wicked" Variant of Mirai Botnet Emerges

New Telegrab malware targets Telegram desktop sessions, Steam credentials

StalinLocker threatens to delete victims' files if they don't enter a code in 10 minutes

North Korean Hackers Are Spreading Spyware On Google Play -- And Targeting Defectors Via Facebook

New Bip Dharma Ransomware Variant Released

Brutal cryptocurrency mining malware crashes your PC when discovered

RIG EK Still Makes Waves, This Time with a Stealthy Backdoor

New PRB-Backdoor malware detected that can steal browsing history, steal passwords and log keystrokes

RIG EK campaign delivers researcher-phobic backdoor trojan Grobios

Malicious Package Found on the Ubuntu Snap Store

Cryptomining Malware Targeting Unpatched Server Vulnerabilities, says Check Point

Malicious package containing Bytecoin cryptocurrency miner found on the Ubuntu Snap Store

NigelThorn malware exploits Google Chrome zero-day

Botnets 'competing' to attack vulnerable GPON fiber routers

Gandcrab Ransomware Walks its Way onto Compromised Sites

Maikspy Spyware Poses as Adult Game, Targets Windows and Android Users

SynAck targeted ransomware uses the Doppelgänging technique

Internet Shortcut used in Necurs malspam campaign

Fake Flash Updates with a side of Domain Shadowing

Somebody Tried to Hide a Backdoor in a Popular JavaScript npm Package

A Remote Hack Hijacks Android Phones Via Electric Leaks in Their Memory

Never Ending Woes for Drupal, Now Hello Kitty Malware Targets Drupal for Cryptocurrency Mining

BLACKHEART ransomware uses legit AnyDesk tool as an unwitting accomplice

Thanatos Ransomware Emerges as First to Demand Bitcoin Cash to Pad Hacker Cryptocurrency Accounts

New MassMiner malware exploits multiple vulnerabilities in web servers to mine cryptocurrency

Necurs Spam Botnet operators adopt a new technique to avoid detection – Cyber Defense Magazine

Legitimate Application AnyDesk Bundled with New Ransomware Variant

Updated GravityRAT Malware Adds Advanced AV Detection

Vulnerabilities

Dozens of Vulnerabilities Discovered in DoD's Enterprise Travel System

Git repository vulnerability leads to remote code execution attacks

ActiveX Zero-Day Discovered in Recent North Korean Hacks

Remote Code Execution Vulnerability Disclosed in Windows JScript Component

Researchers discover vulnerabilities in smart assistants’ voice commands

Jira bug exposed private server keys at major companies, researcher finds

Malicious Git Repository Can Lead to Code Execution on Remote Systems

EOS Node Remote Code Execution Vulnerability

Critical RCE Flaw Discovered in Blockchain-Based EOS Smart Contract System

Flaws in IBM QRadar Allow Remote Command Execution

Flaw in Schneider PLC Programming Tool Allows Remote Attacks

Exploit for PDF vulnerability CVE-2018-4990 exists in the wild

BMW racing to patch 14 security vulnerabilities found in its cars

A Basic Z-Wave Hack Exposes Up To 100 Million Smart Home Devices

Schneider Electric Patches XML Vulnerability In Software

Backdoors in D-Link's backyard

Microsoft, Google Poke Another Hole in Intel Chips; Fresh Flaw Found

Penetration tester pokes six holes in Dell EMC's RecoverPoint products

Comcast website bug leaks Xfinity customer data

GPON Vulnerabilities Exploited for Mexico-based Mirai-like Scanning Activities

New Mirai Variant Adds Three Exploits

Experts Propose a New Variation of the Spectre Attack to Recover Data from System Management Mode

DrayTek Router Zero-Day Under Attack

A bug in Keeper password manager leads to sparring over "zero-knowledge" claim

Nethammer—Exploiting DRAM Rowhammer Bug Through Network Requests

Hardcoded Password Found in Cisco Enterprise Software, Again

Critical Code Execution Flaws Patched in Advantech WebAccess

Up To 100 Million Apple iPhones at Risk Due to 'ZipperDown' Flaw

SaaS SDKS Impacted by Java Vulnerability

Hackers could exploit well-known UPnP protocol flaw to launch new, powerful DDoS attacks

Researchers reveal critical PGP and S/MIME bugs that could expose encrypted emails in plain text

PDF exploit built to combine zero-day Windows and Adobe Reader bugs

Open-source vulnerabilities plague enterprise codebase systems

CVE-2018-8174 and Forcing Internet Explorer Exploits

Severe DoS Flaw Discovered in Siemens SIMATIC PLCs

Uninstall PGP: EFF Warns of Exploit that May Reveal Plaintext of Encrypted Emails

Malicious Traffic in Port 7001 Surges as Cryptominers Target Patched 2017 Oracle WebLogic Vulnerability

ICS-CERT Dings Silex, GE for Wireless Cybersecurity Vulnerabilities

Many Vulnerabilities Found in OPC UA Industrial Protocol

Zero-day flaw exploited in targeted attacks is fixed by Microsoft

Misinterpretation of Intel Docs Leads to Flaw in Hypervisors, OSs

"Jack-in-the-Box" Vulnerability When Unpacking Images

Hacker Kevin Mitnick shows how to bypass 2FA

Researchers say a breathalyzer has flaws, casting doubt on countless convictions

Analysis of CVE-2018-8174 VBScript 0day and APT actor related to Office targeted attack

Internet Explorer hid a zero-day vulnerability

Windows CLI Apps Vulnerable to New Ctrl-Inject Process Injection Attack

Analysis of CVE-2018-8174 VBScript 0day and APT actor related to Office targeted attack

New Exploit Hacks LinkedIn 2-factor Auth

‘Spectre-NG’ — the latest family of chip vulnerabilities; expect more to come

Critical Windows bug fixed today is actively being exploited to hack users

Phishers Use New Method to Bypass Office 365 Safe Links

Unpatched Flaws Expose Lantech Industrial Device Servers to Attacks

Multiple flaws in TP-Link EAP controller could give hackers free-rein

A Critical Security Flaw in Popular Industrial Software Put Power Plants at Risk

Privilege Escalation Bug Lurked in Linux Kernel for 8 Years

Exploit in the Wild: Drupalgeddon2 – Analysis of CVE-2018-7600

DHS warns on cyber vulnerability with BD’s Pyxis drug-dispensing devices

Over a Million Vulnerable Fiber Routers Found Prone to Easy Hacking

Google Project Zero hacker discloses a Zero-Day in Windows Lockdown Policy

KRACK Vulnerability Puts Medical Devices At Risk

Breaches

China Hacking Taiwanese Military Hospital Websites to Obtain Military Intelligence

SpamCannibal blacklist service reanimated by squatters, claims every IP address is spammy

Honda India accidentally exposes personal data of over 50,000 customers in cloud configuration error

Russia-linked 'hacker-for-hire' Karim Baratov gets 5 years in prison for massive Yahoo security breach

Mexico Foiled a $110 Million Bank Heist, Then Kept It a Secret

Details of 6000 supermarket customers at risk after hack

Two Canadian banks warn hackers may have stolen personal data of nearly 90,000 customers

Cryptocurrency trading app Taylor loses over $1.3 million worth of Ether in 'highly advanced and coordinated attack?'

Ghostery sends out GDPR-themed emails, ends up exposing hundreds of user email addresses

Insurance startup AgentRun accidentally leaks customers' personal and health information in cloud configuration error

Coca-Cola suffers breach after ex-employee steals hard drive with 8000 workers' data

AgentRun's misconfigured S3 bucket exposes PII insurance companies' customers

T-Mobile bug temporarily let anyone access sensitive customer data using just their phone number

D.C. government data breach exposed nurses’ Social Security numbers

Insurance startup leaks sensitive customer health data

Hacker Makes Over $18 Million in Double-Spend Attack on Bitcoin Gold Network

Baltimore-based LifeBridge Health breach impacts half a million patients

Database leak exposes personal records of nearly 1 million South Africans

3.2 Million Files Revealed on AWS S3 Bucket

State government hacked twice in three days

Corporation Service Company breach exposes PII on 5,678 customers

Pakistani military allegedly hacked phones belonging to US, UK, and Australian officials and diplomats

Allied Physicians hit with SamSam ransomware

Hackers exploit Verge blockchain vulnerabilities to steal over $1.7M — again

Speech recognition software firm breach exposes thousands of patient records

Comcast website bug caught leaking Xfinity customers' sensitive information, home addresses

Popular teen-monitoring app leaks thousands of user’s data, passwords in cloud misconfiguration error

Hackers steal PII and payment info of thousands of California residents in company breach

Data of Over 200 Million People Sold on Underground Hacking Forum

LA County data leak: 3.2 million files containing sensitive details of callers to crisis and abuse hotline exposed

More than 200 million Japanese users' data put up for sale on underground hacking forum

Misconfigured CalAmp Server Enabled Vehicle Takeover

Tidal Investigating 'Potential Data Breach' After Reports of Late Royalty Payments and Inflated Streams

Tracking Firm LocationSmart Leaked Location Data for Customers of All Major U.S. Mobile Carriers Without Consent in Real Time Via Its

Cell Phone Tracking Firm Exposed Millions of Americans' Real-time Locations

L.A. County reveals 'possible breach' of personal data from social services hotline

CBC warns past, current staff personal data may be at risk after break-in, theft of computer

Rash of Italian Cyberattacks Target State Governments

Ontario PC candidate resigns after private 407 freeway confirms ‘internal theft' of data on 60,000 customers

Indian Cricket Board Exposes Personal Data of Thousands of Players

Newly Discovered Leak Exposed More Than 3 Million Facebook Users’ Data

World’s Largest ID Database Exposed by Indian Government Errors

The Oregon Clinic patient PHI exposed via email breach

Exclusive: Cyber attack claims player details from World Rugby

Rail Europe had a three-month long credit card breach

Family Planning NSW hit by ransom demand in cyber-attack

Police Dept Loses 10 Months of Work to Ransomware. Gets Infected a Second Time!

Vigilante Hacks Government-Linked Cyberespionage Group

UK cell giant EE left a critical code system exposed with a default password

DDoS attack hits Eighth Amendment referendum crowdfunding website

Anonymous Hackers Hijack Russian Government Website, Issuing 'Last Warning'

16,500 Student Loan Borrowers’ Information Exposed in Data Leak

Malaysia election: Politicians claim phones hacked; probe shows spam calls from unknown bot attacks

Alaska election website was hacked on Election Day in 2016: report

Hackers Deface Canon Security Cameras in Japan

Android App With 10 Million Downloads Left Users’ Photos and Audio Messages Exposed to Public

FLEETCOR Technologies gift card systems breached

Cryptojacking Campaign Exploits Drupal Bug, Over 400 Websites Attacked

Greek, Turkish hackers trade retaliatory cyberattacks amid worsened relations

Paris Hilton Hacked, Private Photos, Hundreds of Thousands of Dollars Stolen

Twitter urges its 336 million users to change passwords after discovering bug in password storage system

4chan hackers tried changing voting results of NASA student challenge

Major Bank Loses 12 Million Customers' Data in the Most Embarrassing Way Possible

GitHub Accidentally Recorded Some Plaintext Passwords in Its Internal Logs

Hackers get $10,000 in bitcoin after attack on Leominster schools

Scams

You’ll soon be able to freeze your credit for free — but that won’t be the end of identity theft

Scammers Scoring Goals Even Before FIFA World Cup Starts

GDPR Provides Scammers with a New Golden Opportunity

Latest Bitcoin Scam: Demanding Crypto to Return Lost Dog

'Be vigilant' warns CEO after losing R300k in email scam

IRS Warns About New Scam Targeting Tax Professionals

Watch out for the 'update your password' scam

Proofpoint uncovers new cryptocurrency scam

Phishing Email Ironically Provides a List of Scammers You Should Avoid

New ‘virtual kidnapping’ scam targeting Chinese students makes use of data shared online

Royal Wedding Name Generator Poses Online Security Threat

Fake Malwarebytes helpline scammer caught in the act

Telephone Scam targeting Chinese students in Australia

FCC slaps robocaller with record $120M fine, but it’s like ’emptying the ocean with a teaspoon’

New Phishing Scam uses AES Encryption and Goes After Apple IDs

Netflix phish claims your membership is on hold

Early alert systems for identity theft

Don’t get taken by this blackmail scam

ProtonMail warns all users to beware of phishing scam

This Social Security strategy can help protect you against identity theft

Nigeria's Internet fraudsters zero in on corporate email accounts

The very concerning lottery scam targeting Facebook users

Fraudsters tell victims: you’ve been caught driving using a mobile

Irish Netflix users warned of 'convincing' scam email phishing for credit card details

Bitcoin hijackers found at least one sucker for scam Chrome extension

Patches

CentOS Linux 7 Receives Important Kernel Security Update That Patches Six Flaws

Valve Patches Security Bug That Existed in Steam Client for the Past Ten Years

This month's Windows and Office security patches: Bugs and solutions

Google Patches reCAPTCHA Bypass

Electron patches patch after security researcher bypassed said patch

Remotely exploitable flaw patched in Dell EMC RecoverPoint

RHEL and CentOS Linux 7 Receive Mitigations for Spectre Variant 4 Vulnerability

VMware Patches Fusion, Workstation Vulnerabilities

Dell Patches Vulnerability in Pre-installed SupportAssist Utility

Critical Flaws Patched in Phoenix Contact Industrial Switches

Two Vulnerabilities Patched in BIND DNS Software

Microsoft Releases KB4100347, KB4134660, and KB4134661

Rockwell Automation Patches Flaws in Simulation, Licensing Tools

Chrome update for desktop operating systems repairs critical sandbox escape bug

LG resolves keyboard vulnerabilities which allow remote code execution attacks

Siemens Patches DoS Flaws in Medium Voltage Converters

Google Releases Additional Meltdown Mitigations for Android

Patch your Windows 10 PC, now! Hackers are exploiting a zero-day flaw

Microsoft Patch Tuesday for May Includes Updates for Actively-Exploited Vulnerabilities

Unofficial Patch Released for Zero-Days Affecting Dasan Routers

Sierra Wireless Patches Critical Vulns in Range of Wireless Routers

Adobe Patches Critical Bugs In Flash Player, Creative Cloud

Google Fixes Pixel XL Charging Bug, 56 Bugs with May 2018 Android Security Patch

Logitech Patches Several Flaws in Harmony Hub

Lenovo Patches Arbitrary Code Execution Flaw

In Android P, Google is fixing flaw that let apps secretly track users for years

Backdoored Module Removed from npm Registry

Windows 10 Meltdown Patch Has 'Fatal Flaw,' Update Now

Microsoft patches Docker remote code execution bug

Schneider Electric Patches Critical RCE Vulnerability

Latest Kali Linux Ethical Hacking OS Release Adds Spectre & Meltdown Mitigations

Four versions of PHP programming language updated to fix multiple bugs

Tags

php programming language

vpnfilter malware

cryptomining botnets

botnets

coca cola

spectre variant

crypton ransomware

linux os

Posted on: June 06, 2018

More from Cyware

Stay updated on the security threat landscape and technology innovations at Cyware with our threat intelligence briefings and blogs.

The Virtual Cyber Fusion Suite

csap

Situational Awareness Platform

ctix

Threat Intelligence eXchange

csol

Security Orchestration Gateway

cftr

Fusion & Threat Response

Explore Industry Briefs

Cyware for Enterprise

Cyware for Enterprise

Adopt next-gen security with threat intelligence analysis, security automation...

Cyware for ISACs/ISAOs

Cyware for ISACs/ISAOs

Anticipate, prevent, and respond to threats through bi-directional threat in...

Cyware for Managed Security Service Providers

Cyware for Managed Security Service...

Automate security monitoring and response for your clients.

Cyware for Computer Emergency Response Teams (CERTs)

Cyware for Computer Emergency Respo...

Protect your constituents through automated threat intelligence sharing and re...

Explore Solutions

Capabilities

Resource Library

Use Cases

Learn More About Cyware Solutions!