Pangolin Store

TeamRed Security News Roundup – September 21, 2018

TeamRed Security News Roundup – September 21, 2018

Welcome to the latest TeamRed News Roundup, where we’ll be exploring some of the top cybersecurity stories that are making the rounds.

Xbash is a new triple-threat Malware

A new malware, allegedly produced by the Iron Group (Rocke), has arrived on the scene.

It attacks both Windows and Linux systems, and has multiple attack abilities: Ransomware, Cryptojacking, and Botnet.

Worryingly, the malware does not seem to even allow you to recover any deleted or locked data once a ransom has been paid. However, the triple threat is a cause for serious concern - especially if it is a signal of where malware is headed.

Source: The Hacker News

US State Department email breach included employee data

A recent email breach of the US State Department has put the personally identifiable information of some employees in the hands of malicious individuals.

Source: SC Magazine

Pegasus spyware spreads to 45 countries

Pegasus spyware, believed to have originated from Israel, has spread to 45 countries.

Designed for state-level actors, Pegasus allows for wide-ranging surveillance. This includes the ability for a third party to read messages, pinpoint phone locations, gather data, and even collect passwords.

Many groups have decried the potential for abuse that Pegasus brings. It's unknown if governments that don't put a premium on human rights feel similarly.

Source: Threat Post

WD My Cloud NAS Boxes found vulnerable

A bug in WD My Cloud NAS boxes, CVE-2018-17153, allows malicious actors to bypass normal security requirements, like the login process.

Once access has been gained, outside forces can steal, delete, or replace any files stored on the devices. A fix is coming in a "few weeks", apparently.

Source: Tech Radar

Join the Pangolin Community

Sign up to get notified about our latest blog posts, and get updates about Pangolin!