Page 13 - Threat Intelligence 11-5-2019
P. 13
Web / Internet Threats
American Cancer Society Website Visitors Should Check Their Bank Statements. Magecart hackers
compromised the online shop of the American Cancer Society and may have had access to all online payments
made by visitors. The e-skimming attack was caught early, but it’s not known how much data was intercepted.
An e-skimming group named Magecart inserted malicious code into the cancer society’s Cancer.org shop. The
sole purpose of the intrusion was to intercept credit card payments, with personal data most likely ending up
on the dark web.
Source: https://hotforsecurity.bitdefender.com/blog/american-cancer-society-website-visitors-should-
check-their-bank-statements-21712.html
Ransomware Attack Causes School 'District-Wide Shutdown'. A ransomware attack hitting Las Cruces Public
Schools forced the district to shut down the entire computer system to contain the infection. Exchanging
information with schools is impaired as email and other forms of computer-based communication is no longer
possible at this moment. The district activated the crisis response team and is working to restore critical
services. It is unclear at this point how long the systems will be down.
Source: https://www.bleepingcomputer.com/news/security/ransomware-attack-causes-school-
district-wide-shutdown/
Georgia hit by massive cyber-attack. Court websites containing case materials and personal data have also
been attacked. In many cases, website home pages were replaced with an image of former President Mikheil
Saakashvili, and the caption "I'll be back". The origin of the attack is not yet known. BBC Caucasus
correspondent Rayhan Demytrie said people on social media were speculating that Russia might be behind it.
She added that she had been told by cyber-security experts that Georgian government websites were "poorly
protected and vulnerable to attack".
Source: https://www.bbc.com/news/technology-50207192
Raccoon info stealer already infected 100,000+ worldwide. Security experts at Cybereason have spotted a
new information stealer, dubbed Raccoon, that is infecting hundreds of millions of victims worldwide. The
malware was designed to steal victims’ credit card data, email credentials, cryptocurrency wallets, and other
sensitive data. The malware is offered with a malware-as-a-service (MaaS) model that allowed the threat to
rapidly gain popularity in the cybercriminal ecosystem..
Source: https://securityaffairs.co/wordpress/93028/malware/raccoon-info-stealer-maas.html
www.accumepartners.com
13