Just like the previous month, October too witnessed a volley of cybersecurity-related incidents that affected several organizations, systems, processes and more.
Researchers uncovered several new malware families apart from exploring the latest version of the existing malware. iTranslator, GreyEnergy, MartyMcFly and Chalubo botnet are the new malware found targeting several industries in different sectors, while AZORult Trojan 3.3, Ransom.Python.PYLOCKY.B and Kraken Crypto Ransomware 2.6.0 were uncovered with enhanced capabilities. In addition, security experts also demonstrated a new attack method dubbed as the NFCdrip attack that could allow attackers to exfiltrate data from air-gapped devices via NFC frequency.
Hackers were found exploiting authentication bypass vulnerability, remote code execution vulnerability and other critical security flaws to gain access to systems, servers and networks of organizations.
Talking about breaches, security experts discovered records of around 35 million US voters being sold on Dark Web for a price of up to $42,200.
Scammers were as usual found leveraging common social engineering techniques to trick users into revealing personal and financial data.
Here's an aggregated list of all breaches, malware, vulnerabilities, patches and scams reported in October.
Breaches
Malware
Vulnerabilities
Patches
Scams
Tags
- Share this blog:
Categories
- Research
- Threat Actor
- Executive Viewpoint
- Cyber Analysis
- Live Updates
- Malware
- Analysts Corner
- New Feature
- Breach, Incident
- Vulnerability
- Strategy
Recent Blogs
- How the Hub and Spoke model in CTIX trumps traditional Threat Intelligence Platforms
- List of Data Breaches, Malware, Vulnerabilities, Scams, and Issued Patches in February 2019
- Cyware Confidence Score: Search the needle in the Intel haystack!
- Knock Knock, Who’s there? Threat Intel!
- Deciphering Incident Response: Part I (Process)
- List of Data Breaches, Malware, Vulnerabilities, Scams, and Issued Patches in January 2019
- Deciphering the ATT&CK Navigator: Part 1 - What and why ATT&CK?
Monthly Threat Briefing
- Cyware Monthly Cyber Threat Intelligence February 2019
- Cyware Monthly Cyber Threat Intelligence January 2019
- Cyware Monthly Cyber Threat Intelligence December 2018
- Cyware Monthly Cyber Threat Intelligence November 2018
- Cyware Monthly Cyber Threat Intelligence October 2018
- Cyware Monthly Cyber Threat Intelligence September 2018
- Cyware Monthly Cyber Threat Intelligence August 2018
Weekly Threat Briefing
- Cyware Weekly Threat Intelligence, March 11-15, 2019
- Cyware Weekly Threat Intelligence, March 4-8, 2019
- Cyware Weekly Cyber Threat Intelligence February 25 - March 01, 2019
- Cyware Weekly Cyber Threat Intelligence February 18-22, 2019
- Cyware Weekly Cyber Threat Intelligence February 11-15, 2019
- Cyware Weekly Cyber Threat Intelligence February 4-8, 2019
- Cyware Weekly Cyber Threat Intelligence January 28 - February 01, 2019
Daily Threat Briefing
- Cyware Daily Threat Intelligence, March 21, 2019
- Cyware Daily Threat Intelligence, March 20, 2019
- Cyware Daily Threat Intelligence, March 19, 2019
- Cyware Daily Threat Intelligence, March 18, 2019
- Cyware Daily Threat Intelligence, March 15, 2019
- Cyware Daily Threat Intelligence, March 14, 2019
- Cyware Daily Threat Intelligence, March 13, 2019
To enhance your experience on our website, we use cookies to help us understand how you interact with our website. By continuing navigating through Cyware’s website and its products, you are accepting the placement and use of cookies. You can also choose to disable your web browser’s ability to accept cookies and how they are set. For more information, please see our Privacy Policy.