From Security Weekly WikiJump to navigationJump to search
- Iran and Russia Seek to Influence Election in Final Days, U.S. Officials Warn Iran is behind threatening, spoofed emails sent to voters, the officials said, but there was no indication that any votes themselves had been altered.
- Spammers and scammers using U.S. election to turn profit online, Facebook says Fraudsters from Albania to Vietnam are posting about U.S. politics and the upcoming presidential election to build fake audiences, maximise clicks and make money online, Facebook Inc said on Wednesday. https://about.fb.com/wp-content/uploads/2020/10/Inauthentic-Behavior-Report-October-2020.pdf
- Russia’s Clandestine Chemical Weapons Programme and the GRU’s Unit 29155 - bellingcat On October 15, 2020, the European Union imposed sanctions on six senior Russian officials and a leading Russian research institute over the alleged use of a nerve agent from the Novichok family in the poisoning of opposition leader Alexey Navalny. Russia dismissed as baseless the EU’s allegations that it had not complied with its obligations,
- Russian Vehicle Registration Leak Reveals Additional GRU Hackers - bellingcat A leaked database reveals the identities of dozens of hackers who registered vehicles to a non-existent address used by GRU operatives
- Removing Coordinated Inauthentic Behavior - About Facebook Today we removed three separate networks for violating our policy against coordinated inauthentic behavior – two targeted the US, among other countries, and one originated in and targeted audiences in Myanmar.
- Several hospitals targeted in new wave of ransomware attacks Several hospitals across the United States have been targeted in a ransomware attack in what appears to be an escalation and expansion of similar attacks previously launched on other hospitals and medical facilities
- What happened over the summer? They're not sure, but the data clearly shows RYUK has returned. But does that mean UNC1878 has returned? Maybe, but DON'T ATTRIBUTE BASED ON MALWARE FAMILY ALONE. AGAIN FOR THE FOLKS IN BACK....DON'T. ATTRIBUTE. ON. MALWARE. FAMILY. ALONE.
- Is The Cybersecurity Industry Selling Lemons? Apparently Lots Of Important CISOs Think it Is And what do these highly qualified professionals think about the cybersecurity products their industries have been buying? I’d like to say this is a shock, but the answer is not a lot.
- Amazon Fired Employee for Leaking Customer Emails The employee leaked customer email addresses to an unnamed third party, according to disclosure emails obtained by Motherboard.
- Zero-hour auto purge (ZAP) - Office 365 Admins can learn about how zero-hour auto purge (ZAP) can retroactively move delivered messages in an Exchange Online mailbox to the Junk Email folder or quarantine that are retroactively found to be spam or phishing.
- In a first, researchers extract secret key used to encrypt Intel CPU code Hackers can now reverse-engineer updates or write their own custom firmware.
- An implant dropper dubbed #ComRATv4 recently attributed by @CISAgov and @FBI to Russian sponsored APT, Turla. It was likely used to target ministries of foreign affairs and national parliament. @CNMF_CyberAlert continues to disclose #malware samples on: https://www.virustotal.com/en/user/CYBERCOM_Malware_Alert/ https://pbs.twimg.com/media/Elgz43rWMAMbwLx.jpg