Cyware Daily Threat Intelligence February 23, 2018

Top Malware Reported in the Last 24 Hours
Cryptocurrency mining scripts
By exploiting a Microsoft Word feature, hackers are delivering cryptojacking scripts on victims’ computers to mine cryptocurrency. Hackers are delivering malicious videos via spam emails and tricking users into clicking on them to view the video. Thus, hackers gains complete control of the system by executing malicious code into the targeting system.

Drive-by download attack
Several Chinese websites are being targeted by drive-by download attacks, that are compromised to load external content via scripts and iframe overlays. The campaign is found installing a Coinhive clone. The attack also redirects users to a server hosting a few exploits.

Top Vulnerabilities Reported in the Last 24 Hours
OpenBSD releases Meltdown patch
OpenBSD released a mitigation for the Meltdown security vulnerability in the form of a Version 11 code update. The impact the fix will have on performance is not determined yet. A testing will soon be conducted for OpenBSD users.

Intel releases Microcode updates
Intel has started releasing microcode updates to its OEM partners in order to mitigate the Meltdown and Spectre flaws. The new firmware updates apply to Intel's 6th, 7th, and 8th generation Core product lines, also known as Skylake, Kaby Lake, and Coffee Lake.

Trend Micro patches flaws
Researchers have tracked down over 12 vulnerabilities, with severity ranging from low to critical, in Trend Micro’s Micro Encryption for Email Gateway, (TMEEG). Security updates have been released in version 5.5 Build 1129 to plug 10 of these 12 security bugs.

Top Breaches Reported in the Last 24 Hours
UVA patients’ data exposed
Nearly 2000 patients have lost private health information, including medical records and addresses, after an unnamed third party gained access to the University of Virginia (UVA) Health System. Hacker placed malware on a physician's laptop enabling that person to see what the doctor was viewing.

Subscribers' password stolen
Harper’s Magazine released a warning to all subscribers that their passwords may have been stolen. However, when subscribers went to change the password in the given link, they could not do so as Buysub’s website was down.



Tags


    • Share this blog:
    To enhance your experience on our website, we use cookies to help us understand how you interact with our website. By continuing navigating through Cyware’s website and its products, you are accepting the placement and use of cookies. You can also choose to disable your web browser’s ability to accept cookies and how they are set. For more information, please see our Privacy Policy.