Cyware Daily Threat Intelligence June 28, 2018

Microsoft June patches
Microsoft released its June patches fixing SMBv1 and RDP Windows vulnerabilities. With this patch, Windows 7 owners with older, 2002-era Pentium III machines have their patching privileges revoked. The patches also fixed additional flaws including the Servicing Stack and a new “Compatibility update”.

Hyper-Threading issue in Intel CPUs
The Hyper-Threading issue impacts Intel CPUs, allowing side-channel attacks to extract signing keys with near-perfect accuracy. Even though the issue is difficult to exploit, as cyber criminals would need to infect a machine that has an application installed, exploiting it can leak sensitive data.

Update for GNU patch
An update for Red Hat Enterprise Linux 6.5 Advanced Update Support patch program is now available for installation. The patch fixes the input validation vulnerability discovered in GNU Patch version 2.7.6. Users are advised to install patches immediately. Exactis exposes data
Personal information of around 340 million people and businesses were exposed by Exactis, a marketing firm operating from Florida. Leaked information included phone numbers, home and email addresses, interests, age, and gender of their children. Fortunately, no credit card information and Social Security numbers were leaked.

Admin login credentials leaked
BetVictor, a British betting site, allegedly left several administrative logins and passwords (in plaintext) exposed through a search feature on its site. Users could gain access to the credentials by clicking anywhere in the website and searching for the word “admin.” The site fixed the issue.

ProtonMail hit by DDoS
ProtonMail reported that it has been affected by DDoS attack tied to a hacker group from Russia. The attack impacted both ProtonMail and ProtonVPN. No data was leaked in the attacks. The attack prolonged for 10 minuted and recorded 500 Gbps.