Monthly Archives: November 2018

Marriott’s Starwood hotels data breach

• Post author:Frank Crast
• Post published:November 30, 2018
• Post category:Data Breach

Marriott Hotels issued a statement that a breach at its subsidiary Starwood Hotels reservation system exposed personal data on nearly 500 million customers.

Continue Reading Marriott’s Starwood hotels data breach

DNSpionage campaign threat targets Middle East

• Post author:Frank Crast
• Post published:November 29, 2018
• Post category:Cryptography/Cybersecurity Attacks/Network Security
• Post comments:0 Comments

Cisco's Talos security group has discovered a new cyber campaign dubbed "DNSpionage" that targets organizations in the Middle East. The cyber attacks have impacted .gov domains in Lebanon and the United Arab Emirates (UAE),…

Continue Reading DNSpionage campaign threat targets Middle East

Data leaks at ElasticSearch and Atrium Health

• Post author:Frank Crast
• Post published:November 28, 2018
• Post category:Data Breach/Data Privacy

Two notable data loss incidents were reported on Wednesday, to include ElasticSearch data leak and Atrium Health data breach.

Continue Reading Data leaks at ElasticSearch and Atrium Health

Samba security updates

• Post author:Frank Crast
• Post published:November 28, 2018
• Post category:Security Updates & Patches/Vulnerabilities & Exploits

Samba has released security updates to address multiple vulnerabilities.

Continue Reading Samba security updates

Worm uses removable drives to install BLADABINDI backdoor

• Post author:Frank Crast
• Post published:November 27, 2018
• Post category:Malware

Last week, a worm was used to spread via removable drives and install a fileless version of the BLADABINDI backdoor. BLADABINDI is notable as a remote access tool (RAT) used for multiple backdoor capabilities and used for keylogging and DDoS threats.

Continue Reading Worm uses removable drives to install BLADABINDI backdoor

Germany Publishes New Broadband Router Security Guidelines

• Post author:Frank Crast
• Post published:November 26, 2018
• Post category:Network Security/Standards & Guidelines

The German government Federal Office for Information Security published technical security guidelines for broadband routers commonly used in Small Office and Home Office (SOHO) environments. The new guideline provides recommendations to manufacturers on designing and implementing routing products with "adequate state-of-the -art security features."

Continue Reading Germany Publishes New Broadband Router Security Guidelines

VMware Workstation and Fusion security updates

• Post author:Frank Crast
• Post published:November 23, 2018
• Post category:Security Updates & Patches/Vulnerabilities & Exploits
• Post comments:0 Comments

VMware issued a critical update for Workstation and Fusion products.

Continue Reading VMware Workstation and Fusion security updates

Amazon “technical error” leads to customer email leak

• Post author:Frank Crast
• Post published:November 21, 2018
• Post category:Data Breach/Messaging Security
• Post comments:0 Comments

Amazon has been sending out emails to some of their customers notifying them of a "technical error" that led to the leaking of their email.

Continue Reading Amazon “technical error” leads to customer email leak

VMware security updates for VDP (VMSA-2018-0029)

• Post author:Frank Crast
• Post published:November 21, 2018
• Post category:Security Updates & Patches/Vulnerabilities & Exploits

VMware issued security updates for vSphere Data Protection (VDP) to address multiple security vulnerabilities, one of them rated critical.

Continue Reading VMware security updates for VDP (VMSA-2018-0029)

Adobe Flash Player security update (APSB18-44)

• Post author:Frank Crast
• Post published:November 21, 2018
• Post category:Security Updates & Patches/Vulnerabilities & Exploits
• Post comments:0 Comments

Adobe has released a security update (APSB18-44) for Adobe Flash Player for Windows, macOS, Linux and Chrome OS.

Continue Reading Adobe Flash Player security update (APSB18-44)