List of Data Breaches, Malware, Vulnerabilities, Scams, and Issued Patches in May 2018
May has witnessed several new variants of malware, vulnerabilities and respective patches issued to fix them. There have been an ample number of data breaches affecting major organizations and popular brands, while scammers have designed new techniques to trick people into sharing their personal information.
Most of the new RATs (Remote Access Trojans), botnets and malware were designed to harvest sensitive personal and financial information. Several critical vulnerabilities--including new variants of the Spectre flaw--were discovered by security researchers. Unsecured databases have once again resulted in theft of personally identifiable information (PII) belonging to thousands of users. Meanwhile, scammers have leveraged the craze around the FIFA World Cup and the newly released GDPR to launch online scams.
On the brighter side, patches and mitigation steps have been released for most of the vulnerabilities and malware. Users are thoroughly advised to follow standard security procedures to avoid loss of information, money, or becoming a victim of a malware attack.
Malware
SS7 routing-protocol breach of US cellular carrier exposed customer data
Windows 'Double Kill' Attack Code Found in RIG Exploit Kit
New Nocturnal Stealer malware lets hackers harvest data for a small price and little effort
Hackers launch 'Double-Spend' attack on Bitcoin Gold to steal over $18 million
New Backup Cryptomix Ransomware Variant Actively Infecting Users
New MnuBot banking trojan uses unusual tricks to hide behind MSSQL Traffic
Sonic and ultrasonic attacks damage hard drives and crash OSes
US warns two North Korean malware strains targeting critical infrastructure for past 9 years
U.S. Thieves Exploring ATM Jackpotting Attacks
BackSwap Trojan exploits standard browser features to empty bank accounts
New crypto-mining malware uses Amazon’s cloud to hijack computers
MalHide Malware uses the compromised system as an eMail relay
BackSwap malware: New banking Trojan uses unique techniques to drain your bank account
New Confucius malware campaign has links to Patchwork cybergang
Pre-installed malware found on hundreds of cheap Android phones and tablets
Malware Found in the Firmware of 141 Low-Cost Android Devices
Phorpiex – A decade of spamming from the shadows
Malicious Edge and Chrome Extension Used to Deliver Backdoor
VPNFilter infects over half a million routers worldwide, raises concerns over 'imminent' attack
Hackers Find New Method of Installing Backdoored Plugins on WordPress Sites
CryptON Ransomware Installed Using Hacked Remote Desktop Services
Spam Botnet Tracked Down to Malicious PHP Script Found on 5,000 Hacked Sites
Malware Distributed via .slk Files
New Mac cryptominer uses XMRig
Malicious PHP Script Infects 2,400 Websites in the Past Week
Vega Stealer Malware Swoops Financial Data Straight from Chrome and Firefox Browsers
New Malicious Monero Miner Crashes Computers When Attempting to Remove it
Nasty cryptomining malware WinstarNssmMiner crashes your computer when you try to remove it
Hacked Drupal Sites Deliver Miners, RATs, Scams
Android malware harvesting personal data of North Korean defectors
Roaming Mantis dabbles in mining and phishing multilingually
The Satori Botnet Is Mass-Scanning for Exposed Ethereum Mining Rigs
"Wicked" Variant of Mirai Botnet Emerges
New Telegrab malware targets Telegram desktop sessions, Steam credentials
StalinLocker threatens to delete victims' files if they don't enter a code in 10 minutes
North Korean Hackers Are Spreading Spyware On Google Play -- And Targeting Defectors Via Facebook
New Bip Dharma Ransomware Variant Released
Brutal cryptocurrency mining malware crashes your PC when discovered
RIG EK Still Makes Waves, This Time with a Stealthy Backdoor
RIG EK campaign delivers researcher-phobic backdoor trojan Grobios
Malicious Package Found on the Ubuntu Snap Store
Cryptomining Malware Targeting Unpatched Server Vulnerabilities, says Check Point
Malicious package containing Bytecoin cryptocurrency miner found on the Ubuntu Snap Store
NigelThorn malware exploits Google Chrome zero-day
Botnets 'competing' to attack vulnerable GPON fiber routers
Gandcrab Ransomware Walks its Way onto Compromised Sites
Maikspy Spyware Poses as Adult Game, Targets Windows and Android Users
SynAck targeted ransomware uses the Doppelgänging technique
Internet Shortcut used in Necurs malspam campaign
Fake Flash Updates with a side of Domain Shadowing
Somebody Tried to Hide a Backdoor in a Popular JavaScript npm Package
A Remote Hack Hijacks Android Phones Via Electric Leaks in Their Memory
Never Ending Woes for Drupal, Now Hello Kitty Malware Targets Drupal for Cryptocurrency Mining
BLACKHEART ransomware uses legit AnyDesk tool as an unwitting accomplice
Thanatos Ransomware Emerges as First to Demand Bitcoin Cash to Pad Hacker Cryptocurrency Accounts
New MassMiner malware exploits multiple vulnerabilities in web servers to mine cryptocurrency
Necurs Spam Botnet operators adopt a new technique to avoid detection – Cyber Defense Magazine
Legitimate Application AnyDesk Bundled with New Ransomware Variant
Updated GravityRAT Malware Adds Advanced AV Detection
Vulnerabilities
Dozens of Vulnerabilities Discovered in DoD's Enterprise Travel System
Git repository vulnerability leads to remote code execution attacks
ActiveX Zero-Day Discovered in Recent North Korean Hacks
Remote Code Execution Vulnerability Disclosed in Windows JScript Component
Researchers discover vulnerabilities in smart assistants’ voice commands
Jira bug exposed private server keys at major companies, researcher finds
Malicious Git Repository Can Lead to Code Execution on Remote Systems
EOS Node Remote Code Execution Vulnerability
Critical RCE Flaw Discovered in Blockchain-Based EOS Smart Contract System
Flaws in IBM QRadar Allow Remote Command Execution
Flaw in Schneider PLC Programming Tool Allows Remote Attacks
Exploit for PDF vulnerability CVE-2018-4990 exists in the wild
BMW racing to patch 14 security vulnerabilities found in its cars
A Basic Z-Wave Hack Exposes Up To 100 Million Smart Home Devices
Schneider Electric Patches XML Vulnerability In Software
Backdoors in D-Link's backyard
Microsoft, Google Poke Another Hole in Intel Chips; Fresh Flaw Found
Penetration tester pokes six holes in Dell EMC's RecoverPoint products
Comcast website bug leaks Xfinity customer data
GPON Vulnerabilities Exploited for Mexico-based Mirai-like Scanning Activities
New Mirai Variant Adds Three Exploits
Experts Propose a New Variation of the Spectre Attack to Recover Data from System Management Mode
DrayTek Router Zero-Day Under Attack
A bug in Keeper password manager leads to sparring over "zero-knowledge" claim
Nethammer—Exploiting DRAM Rowhammer Bug Through Network Requests
Hardcoded Password Found in Cisco Enterprise Software, Again
Critical Code Execution Flaws Patched in Advantech WebAccess
Up To 100 Million Apple iPhones at Risk Due to 'ZipperDown' Flaw
SaaS SDKS Impacted by Java Vulnerability
Hackers could exploit well-known UPnP protocol flaw to launch new, powerful DDoS attacks
Researchers reveal critical PGP and S/MIME bugs that could expose encrypted emails in plain text
PDF exploit built to combine zero-day Windows and Adobe Reader bugs
Open-source vulnerabilities plague enterprise codebase systems
CVE-2018-8174 and Forcing Internet Explorer Exploits
Severe DoS Flaw Discovered in Siemens SIMATIC PLCs
Uninstall PGP: EFF Warns of Exploit that May Reveal Plaintext of Encrypted Emails
ICS-CERT Dings Silex, GE for Wireless Cybersecurity Vulnerabilities
Many Vulnerabilities Found in OPC UA Industrial Protocol
Zero-day flaw exploited in targeted attacks is fixed by Microsoft
Misinterpretation of Intel Docs Leads to Flaw in Hypervisors, OSs
"Jack-in-the-Box" Vulnerability When Unpacking Images
Hacker Kevin Mitnick shows how to bypass 2FA
Researchers say a breathalyzer has flaws, casting doubt on countless convictions
Analysis of CVE-2018-8174 VBScript 0day and APT actor related to Office targeted attack
Internet Explorer hid a zero-day vulnerability
Windows CLI Apps Vulnerable to New Ctrl-Inject Process Injection Attack
Analysis of CVE-2018-8174 VBScript 0day and APT actor related to Office targeted attack
New Exploit Hacks LinkedIn 2-factor Auth
‘Spectre-NG’ — the latest family of chip vulnerabilities; expect more to come
Critical Windows bug fixed today is actively being exploited to hack users
Phishers Use New Method to Bypass Office 365 Safe Links
Unpatched Flaws Expose Lantech Industrial Device Servers to Attacks
Multiple flaws in TP-Link EAP controller could give hackers free-rein
A Critical Security Flaw in Popular Industrial Software Put Power Plants at Risk
Privilege Escalation Bug Lurked in Linux Kernel for 8 Years
Exploit in the Wild: Drupalgeddon2 – Analysis of CVE-2018-7600
DHS warns on cyber vulnerability with BD’s Pyxis drug-dispensing devices
Over a Million Vulnerable Fiber Routers Found Prone to Easy Hacking
Google Project Zero hacker discloses a Zero-Day in Windows Lockdown Policy
KRACK Vulnerability Puts Medical Devices At Risk
Breaches
China Hacking Taiwanese Military Hospital Websites to Obtain Military Intelligence
SpamCannibal blacklist service reanimated by squatters, claims every IP address is spammy
Honda India accidentally exposes personal data of over 50,000 customers in cloud configuration error
Mexico Foiled a $110 Million Bank Heist, Then Kept It a Secret
Details of 6000 supermarket customers at risk after hack
Two Canadian banks warn hackers may have stolen personal data of nearly 90,000 customers
Ghostery sends out GDPR-themed emails, ends up exposing hundreds of user email addresses
Coca-Cola suffers breach after ex-employee steals hard drive with 8000 workers' data
AgentRun's misconfigured S3 bucket exposes PII insurance companies' customers
T-Mobile bug temporarily let anyone access sensitive customer data using just their phone number
D.C. government data breach exposed nurses’ Social Security numbers
Insurance startup leaks sensitive customer health data
Hacker Makes Over $18 Million in Double-Spend Attack on Bitcoin Gold Network
Baltimore-based LifeBridge Health breach impacts half a million patients
Database leak exposes personal records of nearly 1 million South Africans
3.2 Million Files Revealed on AWS S3 Bucket
State government hacked twice in three days
Corporation Service Company breach exposes PII on 5,678 customers
Allied Physicians hit with SamSam ransomware
Hackers exploit Verge blockchain vulnerabilities to steal over $1.7M — again
Speech recognition software firm breach exposes thousands of patient records
Comcast website bug caught leaking Xfinity customers' sensitive information, home addresses
Hackers steal PII and payment info of thousands of California residents in company breach
Data of Over 200 Million People Sold on Underground Hacking Forum
More than 200 million Japanese users' data put up for sale on underground hacking forum
Misconfigured CalAmp Server Enabled Vehicle Takeover
Cell Phone Tracking Firm Exposed Millions of Americans' Real-time Locations
L.A. County reveals 'possible breach' of personal data from social services hotline
CBC warns past, current staff personal data may be at risk after break-in, theft of computer
Rash of Italian Cyberattacks Target State Governments
Indian Cricket Board Exposes Personal Data of Thousands of Players
Newly Discovered Leak Exposed More Than 3 Million Facebook Users’ Data
World’s Largest ID Database Exposed by Indian Government Errors
The Oregon Clinic patient PHI exposed via email breach
Exclusive: Cyber attack claims player details from World Rugby
Rail Europe had a three-month long credit card breach
Family Planning NSW hit by ransom demand in cyber-attack
Police Dept Loses 10 Months of Work to Ransomware. Gets Infected a Second Time!
Vigilante Hacks Government-Linked Cyberespionage Group
UK cell giant EE left a critical code system exposed with a default password
DDoS attack hits Eighth Amendment referendum crowdfunding website
Anonymous Hackers Hijack Russian Government Website, Issuing 'Last Warning'
16,500 Student Loan Borrowers’ Information Exposed in Data Leak
Malaysia election: Politicians claim phones hacked; probe shows spam calls from unknown bot attacks
Alaska election website was hacked on Election Day in 2016: report
Hackers Deface Canon Security Cameras in Japan
Android App With 10 Million Downloads Left Users’ Photos and Audio Messages Exposed to Public
FLEETCOR Technologies gift card systems breached
Cryptojacking Campaign Exploits Drupal Bug, Over 400 Websites Attacked
Greek, Turkish hackers trade retaliatory cyberattacks amid worsened relations
Paris Hilton Hacked, Private Photos, Hundreds of Thousands of Dollars Stolen
4chan hackers tried changing voting results of NASA student challenge
Major Bank Loses 12 Million Customers' Data in the Most Embarrassing Way Possible
GitHub Accidentally Recorded Some Plaintext Passwords in Its Internal Logs
Hackers get $10,000 in bitcoin after attack on Leominster schools
Scams
You’ll soon be able to freeze your credit for free — but that won’t be the end of identity theft
Scammers Scoring Goals Even Before FIFA World Cup Starts
GDPR Provides Scammers with a New Golden Opportunity
Latest Bitcoin Scam: Demanding Crypto to Return Lost Dog
'Be vigilant' warns CEO after losing R300k in email scam
IRS Warns About New Scam Targeting Tax Professionals
Watch out for the 'update your password' scam
Proofpoint uncovers new cryptocurrency scam
Phishing Email Ironically Provides a List of Scammers You Should Avoid
New ‘virtual kidnapping’ scam targeting Chinese students makes use of data shared online
Royal Wedding Name Generator Poses Online Security Threat
Fake Malwarebytes helpline scammer caught in the act
Telephone Scam targeting Chinese students in Australia
FCC slaps robocaller with record $120M fine, but it’s like ’emptying the ocean with a teaspoon’
New Phishing Scam uses AES Encryption and Goes After Apple IDs
Netflix phish claims your membership is on hold
Early alert systems for identity theft
Don’t get taken by this blackmail scam
ProtonMail warns all users to beware of phishing scam
This Social Security strategy can help protect you against identity theft
Nigeria's Internet fraudsters zero in on corporate email accounts
The very concerning lottery scam targeting Facebook users
Fraudsters tell victims: you’ve been caught driving using a mobile
Irish Netflix users warned of 'convincing' scam email phishing for credit card details
Bitcoin hijackers found at least one sucker for scam Chrome extension
Patches
CentOS Linux 7 Receives Important Kernel Security Update That Patches Six Flaws
Valve Patches Security Bug That Existed in Steam Client for the Past Ten Years
This month's Windows and Office security patches: Bugs and solutions
Google Patches reCAPTCHA Bypass
Electron patches patch after security researcher bypassed said patch
Remotely exploitable flaw patched in Dell EMC RecoverPoint
RHEL and CentOS Linux 7 Receive Mitigations for Spectre Variant 4 Vulnerability
VMware Patches Fusion, Workstation Vulnerabilities
Dell Patches Vulnerability in Pre-installed SupportAssist Utility
Critical Flaws Patched in Phoenix Contact Industrial Switches
Two Vulnerabilities Patched in BIND DNS Software
Microsoft Releases KB4100347, KB4134660, and KB4134661
Rockwell Automation Patches Flaws in Simulation, Licensing Tools
Chrome update for desktop operating systems repairs critical sandbox escape bug
LG resolves keyboard vulnerabilities which allow remote code execution attacks
Siemens Patches DoS Flaws in Medium Voltage Converters
Google Releases Additional Meltdown Mitigations for Android
Patch your Windows 10 PC, now! Hackers are exploiting a zero-day flaw
Microsoft Patch Tuesday for May Includes Updates for Actively-Exploited Vulnerabilities
Unofficial Patch Released for Zero-Days Affecting Dasan Routers
Sierra Wireless Patches Critical Vulns in Range of Wireless Routers
Adobe Patches Critical Bugs In Flash Player, Creative Cloud
Google Fixes Pixel XL Charging Bug, 56 Bugs with May 2018 Android Security Patch
Logitech Patches Several Flaws in Harmony Hub
Lenovo Patches Arbitrary Code Execution Flaw
In Android P, Google is fixing flaw that let apps secretly track users for years
Backdoored Module Removed from npm Registry
Windows 10 Meltdown Patch Has 'Fatal Flaw,' Update Now
Microsoft patches Docker remote code execution bug
Schneider Electric Patches Critical RCE Vulnerability
Latest Kali Linux Ethical Hacking OS Release Adds Spectre & Meltdown Mitigations
Four versions of PHP programming language updated to fix multiple bugs