Page 13 - Threat Intelligence 9-3-2019
P. 13

Web / Internet Threats















              Attackers use large-scale bots to launch attacks on social media platforms - Social media sites
              have become lucrative targets for criminals looking for quick monetization. More than half of logins
              (53%) on social media sites are fraudulent and 25% of all new account applications on social media
              are fraud, according to the Q3 Fraud and Abuse Report today released by Arkose Labs. It has never
              been easier to connect with people worldwide on social media, gaming platforms or on digital
              marketplaces – and it has never been easier to launch large-scale automated, organized attacks on
              businesses from across the globe. Arkose Labs analyzed over 1.2 billion transactions spanning
              account registrations, logins and payments from financial services, e-commerce, travel, social
              media, gaming and entertainment industries, in real time, to provide insights on the evolving threat
              landscape. The report found that one in 10 transactions are attacks, ranging from automated bots
              to malicious humans.
                     Source: https://www.helpnetsecurity.com/2019/08/27/attacks-on-social-media-platforms/



              Android PDF app with just 100m downloads caught sneaking malware into mobile phones - An
              Android PDF maker with more than 100 million downloads from the official Play Store has been
              caught silently installing malware on victims' phones. Kaspersky's eggheads Igor Golovin and Anton
              Kivva claim CamScanner, an application that turns images into PDFs to share and edit, contains a
              library that quietly fetches and runs spyware and other software nasties. According to the pair on
              Tuesday, the trojan, known as Necro.n, was most likely snuck into the app under the guise of an
              advertising package. Golovin and Kivva suggested the developers of CamScanner may not even be
              aware of the lurking nasty, though the duo say that the malicious code has been present and doing
              its thing long enough to draw a number of complaints in the reviews section of the Play store.
                     Source: https://www.theregister.co.uk/2019/08/28/camscanner_android_malware/



              30+ countries, 160,000 emails, $4.2m in cyber-heists… maybe it's time for the Silence hacker crew
              to change its name - The rapidly growing hacking crew dubbed Silence, has – in less than three
              years – gone from ransacking small regional banks in Eastern Europe to stealing millions from some
              of the largest international banks. A report issued this morning by Singapore-based infosec outfit
              Group-IB claims that Silence, active since 2016, is now operating in more than 30 countries, and
              has so far been able to infiltrate banks' computer networks to siphon at least $4.2m from
              compromised cash machines around the world. Group-IB, which has monitored the cyber-crooks
              since their earliest days, says that as the Russian gang grew, so did the sophistication of their work.
              Now, having survived three years, Silence is operating as an extremely sophisticated and capable
              crew.
                     Source: https://www.theregister.co.uk/2019/08/21/silence_hackers_continues_growth/







                                                    www.accumepartners.com
                                                                                                                    13
   8   9   10   11   12   13   14   15   16   17   18