Vulnerabilities and Indicators of Compromise


                    ➢ Weekly Vulnerability Summary from US-CERT
                    ➢ Talos weekly alerts
                    ➢ Another Lazarus Injector
                    ➢ Zendesk Security Breach May Impact Orgs Like Uber, Slack, and FCC
                    ➢ The State of Stalkerware in 2019
                    ➢ PHISHING USERS USING EVILGINX AND BYPASSING 2FA
                    ➢ Virus Bulletin 2019: Japanese Attacks Highlight Savvy APT Strategy
                    ➢ MITRE ATT&CK™ APT3 Assessment
                    ➢ More than 60% of spam activities originate from US, Russia, Ukraine: Data61
                    ➢ New Bug Found in NSA’s Ghidra Tool
                    ➢ Frequent VBA Macros used in Office Malware
                    ➢ Over A Billion Malicious Ad Impressions Exploit WebKit Flaw to Target Apple Users
                    ➢ Kimsuky's 'Smoke Screen' Reported by North Korea File Name PART 3
                    ➢ How to break PDF Encryption














































                                                       “America’s treasure troves of public and private data, IP, and critical
                                               infrastructure continues to be pilfered, annihilated, and disrupted, while an

                                                 organizational culture of ‘Participation Trophy Winners” managed by tech
                                                          neophyte executives continue to lose one battle after the next.”

                                                  ― James Scott, Sr. Fellow, Institute for Critical Infrastructure Technology