Originally published at: https://cloudsek.com/threatintel/stock-market-glitch-not-cyberattack-euronext-vladimir-putin-dismisses-us-charges-as-russophobia-and-more/
Round Up of Major Breaches and Scams
Euronext Says Stock Market Glitch Was Not a Cyber Attack
Trading ground to a halt for around three hours early Monday in Amsterdam, Brussels, Dublin, Lisbon and Paris, and the French market closed late, before issuing a statement that most trades made after 5:30 local time (1530 GMT) would be annulled. âIt was not a cyber attack,â a Euronext spokesman insisted. âIt was a technical problem that has been resolved at the middleware level, one of the systems that ensures the persistance of data,â he told AFP.
Russia Dismisses Hacking Allegations as âRussophobiaâ
President Vladimir Putinâs spokesman Dmitry Peskov described US charges against six Russian intelligence officers as ârampant Russophobia which, of course, have nothing to do with reality.â The US Justice Department, which announced the charges against the GRU agents Monday, also said Russian intelligence was behind the âNotPetyaâ malware attack that infected computers of businesses worldwide, causing nearly $1 billion in losses to three US companies alone.
âMuddyWaterâ spies suspected in attacks against Middle East governments, telecoms
One of the most prolific cyber-espionage groups linked to Iran has used old tricks â and perhaps a new hacking tool â in dozens of attempts to breach government and telecommunications operators in the Middle East in recent months, security researchers said Wednesday. The hacking attempts have hit organizations in Iraq, Kuwait, Turkey and the United Arab Emirates, according to researchers at security provider Symantec.
Round Up of Major Malware and Ransomware Incidents
LockBit uses automated attack tools to identify tasty targets
Earlier this year, we analyzed the inner workings of LockBit, a ransomware family that emerged a year ago and quickly became another player in the targeted extortion business alongside Maze and REvil. LockBit has been quickly maturing, as we observed in April, using some novel ways to escalate privileges by bypassing Windows User Account Control (UAC). A series of recent attacks detected by Sophos provided us with the opportunity to dive deeper into LockBitâs tools, techniques and practices.
Montréal Public Transport Agency Discloses Ransomware Attack
A public transport agency operating in MontrĂ©al announced that a ransomware attack had affected its website and other systems. In its statement, STM noted that individuals could still contact customer service. It did clarify that its representatives werenât able to access the agencyâs computer system at the time of writing, however, and were therefore unable to provide information about bus routes and schedules.
Round Up of Major Vulnerabilities and Patches
Chinese Hackers Target Cisco Discovery Protocol Vulnerability
An advisory published by the NSA on Tuesday lists 25 vulnerabilities that have been exploited or targeted by threat actors believed to be sponsored by Beijing. The list includes several vulnerabilities that were not known to have been targeted, including CVE-2020-3118, which impacts Cisco products. CVE-2020-3118 is one of the five vulnerabilities in the Cisco Discovery Protocol (CDP) implementation of IOS XR software that were disclosed in February by IoT security firm Armis.
IoT Security Foundation Launches Vulnerability Reporting Platform
Launched alongside a new report into coordinated vulnerability disclosure, the Consumer Internet of Things Vulnerability Disclosure Platform (VulnerableThings.com) is catered to both security researchers and manufacturers, seeking to ensure coordinated vulnerability disclosure management and reporting. The platform provides automated communications and vulnerability management, and helps organizations get the support they need throughout the entire vulnerability reporting and response process.
Chrome Update Patches Actively Exploited FreeType Vulnerability
The actively exploited vulnerability is tracked as CVE-2020-15999 and it has been described as a heap buffer overflow bug affecting FreeType, a popular software library for rendering fonts. In addition to Chrome and Chrome OS, FreeType is used in Linux and UNIX distributions, Android, iOS, ReactOS, and Ghostscript, which means the font engine is present on over a billion devices, according to its developers.