LifeBridge potentially the information of 500,000 patients after malware infected their electronic medical records. The company has told patients to look for services appearing on their record that they did not receive since fraudsters could seek reimbursement for false procedures.
Reported by LifeBridge
Roaming Mantis is a mobile malware which relies on DNS hijacking to install unwanted software on victim computers directly them to malicious applications. The bread and butter of the malware is to steal credentials, however, changing to support 27 languages, crypto mining, and redirections to phishing sites.
Reported by Threatpost
To garner support for mandatory device backdoors the FBI may have inflated the number of devices that they stated were unhackable. While reported estimates were around 7,000 with the large number of third-party services it is more likely closer to 1000 to 2000.
Reported by EFF
The phone tracking app TeenSafe leaked 10K passwords to Apple ID from an improperly securing their databases on Amazon cloud. Privacy advocates point out that TeenSafe explicitly asks users to disable multifactor authentication and does not require that parents get consent from their children.
Reported by ZDnet
Cyber Shield 18 just ended where National Guardsmen took up defenses to protect against mock cyber attacks. Over 800 participants were involved in the exercise which pitted a red team against the blue team.
Reported by the US Army
There has been an increase in the Mirai botnet variants that Fortinet researchers are calling Wicked. The commonality between the family is targeting Internet of things type devices to use them for malware proxies and crypto mining.
Reported by Fortinet
2,500 accounts University accounts campus-wide, 1,800 of those are student accounts, have had their credentials stolen when they were redirected to a malicious site. Users are being urged to change any passwords that might be similar across other platforms.
Reported by WIVB
Criminals accidentally disclosed two Zero-day vulnerabilities that they were working on by uploading it to a malware scanning engine. The Zero days relied upon an Adobe vulnerability and then subsequent windows vulnerability to deploy their payload. Due to the fortunate mistake, Microsoft and Adobe have been able to patch the exploits.
Reported by Bleeping Computer
A Russian Troll farm targeted American teen girls to generate “likes” for their content creation. The app “Facemusic” would trick the victims into downloading an application where it would then like content across multiple sites. While the boost on sites like Facebook might be minimal, smaller sites could have stories boosted significantly.
Reported by Daily Beast
The head of Mexico’s central bank has stated around $15 million in suspicious transfers occurred. There is still not much known about the five institutions impacted.
Reported by ABC