Cyware Daily Threat Intelligence June 22, 2018

Top Vulnerabilities Reported in the Last 24 Hours
AMD microcode update
AMD has recently released a microcode update for all Ubuntu users to address the well-known Spectre security flaw. Dubbed CVE-2017-5715, this flaw is being used to launch branch target injection attacks. The update is available for Ubuntu 18.04 LTS, 17.10, 16.04 LTS, and 14.04 LTS. Once installing the patch, users are advised to reboot their systems.

Cisco patches flaws
Fixes for 34 flaws have been released by Cisco. Out of the 34 vulnerabilities, 24 flaws affect FXOS software for Firepower firewalls and NX-OS software for Nexus switches. With its update, Cisco also patched DoS flaws in the SNMP feature of the Cisco Nexus 4000 Series Switch. Cisco customers are advised to upgrade to the latest security updates.

Hackers exploit Drupal flaw
The Drupal vulnerability is being exploited by hackers in order to mine Monero cryptocurrency. Dubbed CVE-2018-7602, the flaw downloads a shell script which retrieves an ELF downloader. This downloader then adds ‘crontrab entry’ and retrieves a Monero-mining malware. This flaw can be thwarted by implementing virtual patching, firewalls and application control.

Top Breaches Reported in the Last 24 Hours
100M records leaked
Unprotected Firebase databases--containing thousands of iOS and Android mobile applications--exposed around 100 million records. The breach occurred due to a critical Firebase flaw called HospitalGown. The flaw affects over 2300 unsecured Firebase databases & 3,000 iOS and Android Apps. Data exposed includes plaintext passwords, user IDs, location, and financial records.

Healthcare data breach
Med Associates Inc., recently suffered a data breach which resulted in the loss of PHI of more than 270,000 people. Stolen information includes patient name, date of birth, address, date of service, diagnosis codes, procedure codes, insurance information, and insurance ID number. Fortunately, no banking information was stolen.





  • Share this blog:
To enhance your experience on our website, we use cookies to help us understand how you interact with our website. By continuing navigating through Cyware’s website and its products, you are accepting the placement and use of cookies. You can also choose to disable your web browser’s ability to accept cookies and how they are set. For more information, please see our Privacy Policy.