Cyware Weekly Cyber Threat Intelligence December 17 - 21, 2018

Weekly Threat Briefing • December 21, 2018
Weekly Threat Briefing • December 21, 2018
The Good
With Christmas around the corner, let’s gear up for the festive weekend with the most interesting cybersecurity news of the week. Let’s first take a look at all the good events that occurred in the past week. South Korea’s Financial Supervisory Services and SK telecom together have developed an AI to prevent voice phishing attacks. Google engineers are working on blocking the ‘Back button’ hijacking of browser history. Meanwhile, Cybersecurity and Infrastructure Security Agency Act has been passed.
The Bad
Over the past week, several data breaches and massive cyber attacks have occurred. Brazilian IT firm Tivit was hit by a massive cyber attack. Facebook data breach exposed 6.8 million users’ photos. Twitter suffered a data breach and suspects state-sponsored hackers to be behind the attack. Meanwhile, Nasa suffered a data breach affecting its employees’ personal information.
New Threats
Several vulnerabilities, malware, and ransomware were discovered over the past week. Magecart’s card skimming tool was up for sale in the Dark Web. Researchers uncovered computer chip vulnerabilities that could lead to failures in modern electronics. GrandCrab ransomware was spotted using fileless techniques. Shamoon malware returns with a new variant. New malware built for SEO injection spotted targeting WordPress. Meanwhile, Microsoft releases an emergency patch for zero-day in Internet Explorer.