Cookie Settings

This website uses cookies and similar technologies to provide essential functionality and improve your experience. Some features, such as demo scheduling and chat support, require marketing cookies to function. By clicking "Accept All", you consent to all cookies. Alternatively, you can customize your preferences, but note that declining marketing cookies will limit certain website features.

Cyware Daily Threat Intelligence

Cyware Daily Threat Intelligence June 22, 2018 - Featured Image

Daily Threat Briefing Jun 22, 2018

Top Vulnerabilities Reported in the Last 24 Hours

AMD microcode update
AMD has recently released a microcode update for all Ubuntu users to address the well-known Spectre security flaw. Dubbed CVE-2017-5715, this flaw is being used to launch branch target injection attacks. The update is available for Ubuntu 18.04 LTS, 17.10, 16.04 LTS, and 14.04 LTS. Once installing the patch, users are advised to reboot their systems.

Cisco patches flaws
Fixes for 34 flaws have been released by Cisco. Out of the 34 vulnerabilities, 24 flaws affect FXOS software for Firepower firewalls and NX-OS software for Nexus switches. With its update, Cisco also patched DoS flaws in the SNMP feature of the Cisco Nexus 4000 Series Switch. Cisco customers are advised to upgrade to the latest security updates.

Hackers exploit Drupal flaw
The Drupal vulnerability is being exploited by hackers in order to mine Monero cryptocurrency. Dubbed CVE-2018-7602, the flaw downloads a shell script which retrieves an ELF downloader. This downloader then adds 'crontrab entry' and retrieves a Monero-mining malware. This flaw can be thwarted by implementing virtual patching, firewalls and application control.

Top Breaches Reported in the Last 24 Hours

100M records leaked
Unprotected Firebase databases--containing thousands of iOS and Android mobile applications--exposed around 100 million records. The breach occurred due to a critical Firebase flaw called HospitalGown. The flaw affects over 2300 unsecured Firebase databases & 3,000 iOS and Android Apps. Data exposed includes plaintext passwords, user IDs, location, and financial records.

Healthcare data breach
Med Associates Inc., recently suffered a data breach which resulted in the loss of PHI of more than 270,000 people. Stolen information includes patient name, date of birth, address, date of service, diagnosis codes, procedure codes, insurance information, and insurance ID number. Fortunately, no banking information was stolen.

Related Threat Briefings