Cyber snippets

Cyber snippets
The summaries below are a snapshot of the cybersecurity news, updates, risks and threat actor activities to improve the awareness for the sector.

If you have a vulnerability, information, article, good practice or item of value, please feel free to share. Any feedback, suggestions or additions please email Greg Sawyer, CAUDIT Director Cybersecurity Program.
Email: greg.sawyer@caudit.edu.au

Sections

  1. Older cyber snippets

Latest cyber snippets

Date
Category
Summary
Notes
Link/ source
05 August 2021
System and cloud (including patches)
SonicWall devices targeted with ransomware utilising stolen credentials.
ACSC
05 August 2021
Cyber good practice, articles, guides and updates
Vulnerability Spotlight 3: Ripple20. Ripple20 is a series of vulnerabilities discovered in a TCP/IP library that is used by millions of devices, particularly within IoT and industrial control applications.
NZ NCSC
05 August 2021
Cyber good practice, articles, guides and updates
Behind the scenes: A day in the life of a cybersecurity expert.

05 August 2021
Legislation/ standards
The ACSC is asking Australian critical infrastructure providers and operators to take part in a confidential survey to help identify operational technologies used by their organisation.

05 August 2021
Cyber good practice, articles, guides and updates
The National Security Agency (NSA) and the Cybersecurity and Infrastructure Security Agency (CISA) have published today a 59-page technical report containing guidance for hardening Kubernetes clusters.

05 August 2021
Phishing/ Malware/ Ransomware
LemonDuck botnet evolves to allow hands-on-keyboard intrusions.

05 August 2021
Phishing/ Malware/ Ransomware
In a new phishing scam that leverages the PayPal brand, attackers are using automated scripts and live chat as a way of compromising devices and bypassing secure email gateways.

05 August 2021
System and cloud (including patches)
Diving Deep: Analyzing 2021 Patch Tuesday and Out-of-Band Vulnerability Disclosures.

05 August 2021
Cyber good practice, articles, guides and updates
The cybersecurity jobs crisis is getting worse, and companies are making basic mistakes with hiring.

04 August 2021
Phishing/ Malware/ Ransomware
Ransomware has seen a significant uptick so far in 2021, with global attack volume increasing by 151 percent for the first six months of the year as compared with the year-ago half. Meanwhile, the FBI has warned that there are now 100 different strains circulating around the world.

04 August 2021
Phishing/ Malware/ Ransomware
An update to the stealer-as-a-service platform hides in pirated software, pilfers crypto-coins and installs a software dropper for downloads of more malware. Raccoon Stealer has pivoted from inbox-based infections to ones that leverage Google Search.

04 August 2021
Phishing/ Malware/ Ransomware
An alarming majority of malware (75 percent) is going undetected by “traditional malware solutions,” according to a new report. And nearly three-quarters of threats detected in the last quarter were zero-day malware — an all-time high.

04 August 2021
Phishing/ Malware/ Ransomware
The average price of access to a compromised company's network is only $1,000, with credentials for virtual private networks (VPNs) and remote desktop protocol (RDP) servers the most common types of access sold.

04 August 2021
System and cloud (including patches)
Windows 11 FAQ: Here's everything you need to know:
  • Security updates will continue to arrive monthly, on the second Tuesday of each month.

04 August 2021
Legislation/ standards
With ransomware attacks increasing, legislations have been mooted as a way to bar companies from paying up and further fuelling such activities, but such policies can be difficult to enforce and may result in more dire consequences.

04 August 2021
Cyber good practice, articles, guides and updates
Businesses face risks of supply chain attacks even after they have done their due diligence in assessing their third-party suppliers' security posture before establishing a partnership.

04 August 2021
Cyber good practice, articles, guides and updates
Google Chrome will no longer show whether a site you are visiting is secure and only show when you visit an insecure website. For years, Google has been making a concerted effort to push websites into using HTTPS to provide a more secure browsing experience.

04 August 2021
Nation State
Hackers linked to the Chinese government invaded major telecom companies "across Southeast Asia," says reporting firm Cybereason, and the tools they used will sound familiar.

04 August 2021
Cyber good practice, articles, guides and updates
Cryptocurrency is unlikely to ever become legal tender in Australia, a Reserve Bank of Australia (RBA) executive has concluded during a Parliamentary hearing exploring competition, data privacy and fintech innovation issues.

04 August 2021
Phishing/ Malware/ Ransomware
An interview with BlackMatter: A new ransomware group that’s learning from the mistakes of DarkSide and REvil.

04 August 2021
System and cloud (including patches)
Microsoft to enable PUA protection for Windows 10 users this month.

04 August 2021
Cyber good practice, articles, guides and updates
American politicians are “pretty impressed” with the Australian government’s aggressive crackdown on big-tech platforms, a senior US congressman has offered while admitting that right now “we’re at a moment where the US learns a lot more from Australia than the reverse”.

04 August 2021
Cyber good practice, articles, guides and updates
49% of organizations attribute their more complex IT environments to the increase in remote workers due to COVID-19 work-from-home mandates.

04 August 2021
Cyber good practice, articles, guides and updates
The Rapid Evolution and Growing Threat of DDoS Attacks by Akamai.

03 August 2021
Cyber good practice, articles, guides and updates
5 Ways to Defend Against Spyware Attack on Your Smartphone.

03 August 2021
Phishing/ Malware/ Ransomware
 DoppelPaymer ransomware group has rebranded its ransomware as Grief aka Pay. In early May, researchers noted that the group’s malicious activities stopped but its leak site was active.

03 August 2021
Cyber good practice, articles, guides and updates
A new survey of enterprise IT security leaders showed almost 80 percent believe remote workers are at more risk for phishing attacks now because they’re isolated from their organizations’ security teams.

03 August 2021
Phishing/ Malware/ Ransomware
Microsoft's Security Intelligence team has issued an alert to Office 365 users and admins to be on the lookout for a "crafty" phishing email with spoofed sender addresses.