The various threat intelligence stories in this iteration of the Weekly Threat Briefing discuss the following topics: APT, Capitol One, Data breach, LockBit, Phishing, RAT, TAIDOOR, and Vulnerabilities. The IOCs related to these stories are attached to the Weekly Threat Briefing and can be used to check your logs for potential malicious activity.
Figure 1 - IOC Summary Charts. These charts summarize the IOCs attached to this magazine and provide a glimpse of the threats discussed.
Trending Cyber News and Threat Intelligence
Fake Security Advisory Used in Clever cPanel Phishing Attack
(published: August 8, 2020)
User of cPanel, an administrative software, are being targeted by a phishing scam. Pretending to be a security alert, users are receiving emails urging the users of an urgent update sent from a legitimate looking email. The email prompts the user to enter their credentials to install the “security update”.Recommendation: Make sure all emails are coming from the legitimate source. If you have received a similar email recently, immediately change your password, and any other account that may have the same password.Tags: cPanel, Phishing, Scam
Bugs in HDL Automation Expose IoT Devices to Remote Hijacking
(published: August 8, 2020)
During this year's DEF CON conference, security researcher Barak Sternberg has shown how vulnerabilities in IoT devices could be compromised. When a user registers a new account on the mobile application, another account is automatically created for applying the settings, which can have its password changed without changing the password of the main account. Additionally, an endpoint was found to be vulnerable to SQL inje ..
Support the originator by clicking the read the rest link below.
