TeamRed Security News Roundup – September 21, 2018
Welcome to the latest TeamRed News Roundup, where we’ll be exploring some of the top cybersecurity stories that are making the rounds.
Xbash is a new triple-threat Malware
A new malware, allegedly produced by the Iron Group (Rocke), has arrived on the scene.
It attacks both Windows and Linux systems, and has multiple attack abilities: Ransomware, Cryptojacking, and Botnet.
Worryingly, the malware does not seem to even allow you to recover any deleted or locked data once a ransom has been paid. However, the triple threat is a cause for serious concern – especially if it is a signal of where malware is headed.
Source: The Hacker News
US State Department email breach included employee data
A recent email breach of the US State Department has put the personally identifiable information of some employees in the hands of malicious individuals.
Source: SC Magazine
Pegasus spyware spreads to 45 countries
Pegasus spyware, believed to have originated from Israel, has spread to 45 countries.
Designed for state-level actors, Pegasus allows for wide-ranging surveillance. This includes the ability for a third party to read messages, pinpoint phone locations, gather data, and even collect passwords.
Many groups have decried the potential for abuse that Pegasus brings. It’s unknown if governments that don’t put a premium on human rights feel similarly.
Source: Threat Post
WD My Cloud NAS Boxes found vulnerable
A bug in WD My Cloud NAS boxes, CVE-2018-17153, allows malicious actors to bypass normal security requirements, like the login process.
Once access has been gained, outside forces can steal, delete, or replace any files stored on the devices. A fix is coming in a “few weeks”, apparently.
Source: Tech Radar