List of Data Breaches, Malware, Vulnerabilities, Scams, and Issued Patches in October 2018

Share Blog post

Just like the previous month, October too witnessed a volley of cybersecurity-related incidents that affected several organizations, systems, processes and more.

Researchers uncovered several new malware families apart from exploring the latest version of the existing malware. iTranslator, GreyEnergy, MartyMcFly and Chalubo botnet are the new malware found targeting several industries in different sectors, while AZORult Trojan 3.3, Ransom.Python.PYLOCKY.B and Kraken Crypto Ransomware 2.6.0 were uncovered with enhanced capabilities. In addition, security experts also demonstrated a new attack method dubbed as the NFCdrip attack that could allow attackers to exfiltrate data from air-gapped devices via NFC frequency.  

Hackers were found exploiting authentication bypass vulnerability, remote code execution vulnerability and other critical security flaws to gain access to systems, servers and networks of organizations.

Talking about breaches, security experts discovered records of around 35 million US voters being sold on Dark Web for a price of up to $42,200.

Scammers were as usual found leveraging common social engineering techniques to trick users into revealing personal and financial data.

Here's an aggregated list of all breaches, malware, vulnerabilities, patches and scams reported in October.     

Breaches


Malware

 
Vulnerabilities


Patches


Scams



 Tags

ransompythonpylockyb
itranslator
martymcfly
greyenergy
azorult trojan 33
nfcdrip attack
kraken crypto ransomware 260
chalubo botnet

Posted on: November 05, 2018

Get the Cyware Blog delivered to your email!



More from Cyware

Stay updated on the security threat landscape and technology innovations at Cyware with our threat intelligence briefings and blogs.



Join Thousands of Other Cyware Followers!