Tageszusammenfassung - 03.09.2019
End-of-Day report
Timeframe: Montag 02-09-2019 18:00 - Dienstag 03-09-2019 18:00 Handler: Robert Waldner Co-Handler: Stephan RichterNews
Nemty Ransomware Gets Distribution from RIG Exploit Kit
The operators of Nemty ransomware appear to have struck a distribution deal to target systems with outdated technology that can still be infected by exploit kits. https://www.bleepingcomputer.com/news/security/nemty-ransomware-gets-distribution-from-rig-exploit-kit/Fake BleachBit Website Built to Distribute AZORult Info Stealer
Cybercriminals are taking advantage of the popularity of the BleachBit disk cleaning tool to spread Azorult information stealer. For this purpose, they created a static web page that purports to be the official website for the utility. https://www.bleepingcomputer.com/news/security/fake-bleachbit-website-built-to-distribute-azorult-info-stealer/Credential Management and Enforcement for ICS/SCADA environments
In the world of Operational Technology (OT), Industrial Control Systems (ICS) comprise the majority of the segment. Where ICS assets are dispersed and require centralized data acquisition and control, Supervisory Control and Data Acquisition (SCADA) systems are used. https://resources.infosecinstitute.com/credential-management-and-enforcement-for-ics-scada-environments/Ratgeber vom Hersteller: So erkennt man gehackte Cisco-Geräte
Der Netzwerkausrüster Cisco hat vier Guides für verschiedene Software veröffentlicht, die helfen sollen, Hinweise auf mögliche Kompromittierungen zu finden. https://heise.de/-4512704Meet Domen, a New and Sophisticated Social Engineering Toolkit
A new social engineering toolkit has been discovered. The operational premise has been used many times, but the execution of that premise is new and described by security researchers "a beautiful piece of work". https://www.securityweek.com/meet-domen-new-and-sophisticated-social-engineering-toolkithttps://blog.malwarebytes.com/cybercrime/social-engineering-cybercrime/2019/09/new-social-engineering-toolkit-draws-inspiration-from-previous-web-campaigns/