Page 13 - Threat Intelligence 11-5-2019
P. 13

Web / Internet Threats















        American Cancer Society Website Visitors Should Check Their Bank Statements. Magecart hackers
        compromised the online shop of the American Cancer Society and may have had access to all online payments
        made by visitors. The e-skimming attack was caught early, but it’s not known how much data was intercepted.
        An e-skimming group named Magecart inserted malicious code into the cancer society’s Cancer.org shop. The
        sole purpose of the intrusion was to intercept credit card payments, with personal data most likely ending up
        on the dark web.
                Source: https://hotforsecurity.bitdefender.com/blog/american-cancer-society-website-visitors-should-
                check-their-bank-statements-21712.html



        Ransomware Attack Causes School 'District-Wide Shutdown'. A ransomware attack hitting Las Cruces Public
        Schools forced the district to shut down the entire computer system to contain the infection. Exchanging
        information with schools is impaired as email and other forms of computer-based communication is no longer
        possible at this moment. The district activated the crisis response team and is working to restore critical
        services. It is unclear at this point how long the systems will be down.

                Source:        https://www.bleepingcomputer.com/news/security/ransomware-attack-causes-school-
                district-wide-shutdown/



        Georgia hit by massive cyber-attack. Court websites containing case materials and personal data have also
        been attacked. In many cases, website home pages were replaced with an image of former President Mikheil
        Saakashvili, and the caption "I'll be back". The origin of the attack is not yet known. BBC Caucasus
        correspondent Rayhan Demytrie said people on social media were speculating that Russia might be behind it.
        She added that she had been told by cyber-security experts that Georgian government websites were "poorly
        protected and vulnerable to attack".
                Source: https://www.bbc.com/news/technology-50207192



        Raccoon info stealer already infected 100,000+ worldwide. Security experts at Cybereason have spotted a
        new information stealer, dubbed Raccoon, that is infecting hundreds of millions of victims worldwide. The
        malware was designed to steal victims’ credit card data, email credentials, cryptocurrency wallets, and other
        sensitive data. The malware is offered with a malware-as-a-service (MaaS) model that allowed the threat to
        rapidly gain popularity in the cybercriminal ecosystem..
                Source: https://securityaffairs.co/wordpress/93028/malware/raccoon-info-stealer-maas.html












                                                    www.accumepartners.com
                                                                                                                    13
   8   9   10   11   12   13   14   15   16   17   18