Info collector

FCC Promotes Best Practices for SS7 Communications

By on August 27, 2017 in Recent Vulnerabilities

Original release date: August 24, 2017 The Federal Communications Commission (FCC) has released a public notice encouraging communications service providers to voluntarily use security best practices recommended by the Communications Security, Reliability, and Interoperability Council (CSRIC), a federal advisory committee to the FCC. These best practices help prevent exploitation of Signaling System 7 (SS7) network […]

Continue Reading »

DNSSEC Key Signing Key Rollover

By on August 27, 2017 in Recent Vulnerabilities

Original release date: August 21, 2017 On October 11, 2017, the Internet Corporation for Assigned Names and Numbers (ICANN) will be changing the Root Zone Key Signing Key (KSK) used in the domain name system (DNS) Security Extensions (DNSSEC) protocol.  DNSSEC is a set of DNS protocol extensions used to digitally sign DNS information, which […]

Continue Reading »

Mozilla Releases Security Update

By on August 27, 2017 in Recent Vulnerabilities

Original release date: August 21, 2017 Mozilla has released a security update to address multiple vulnerabilities in Thunderbird. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. US-CERT encourages users and administrators to review the Mozilla Security Advisory for Thunderbird 52.3 and apply the necessary update. This product […]

Continue Reading »

SB17-233: Vulnerability Summary for the Week of August 14, 2017

By on August 27, 2017 in Recent Vulnerabilities

Original release date: August 21, 2017 The US-CERT Cyber Security Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and Technology (NIST) National Vulnerability Database (NVD) in the past week. The NVD is sponsored by the Department of Homeland Security (DHS) National Cybersecurity and Communications Integration Center […]

Continue Reading »

Drupal Releases Security Updates

By on August 27, 2017 in Recent Vulnerabilities

Original release date: August 16, 2017 Drupal has released an advisory to address several vulnerabilities in Drupal 8.x. A remote attacker could exploit one of these vulnerabilities to obtain or modify sensitive information. US-CERT encourages users and administrators to review Drupal’s Security Advisory and upgrade to version 8.3.7. This product is provided subject to this […]

Continue Reading »

Malware spam: “Voicemail Service” / “New voice message..”

By on August 25, 2017 in Latest SPAM

The jumble of numbers in this spam is a bit confusing. Attached is a malicious RAR file that leads to Locky ransomware. Subject:       New voice message 18538124076 in mailbox 185381240761 from “18538124076” From:       “Voicemail Service” [vmservice@victimdomain.tdl]Date:       Fri, August 25, 2017 12:36 pmDear user:just wanted to let you know you were just left […]

Continue Reading »

Malware spam: “Your Sage subscription invoice is ready” / noreply@sagetop.com

By on August 25, 2017 in Latest SPAM

This fake Sage invoice leads to Locky ransomware. Quite why Sage are picked on so much by the bad guys is a bit of a mystery. Subject:       Your Sage subscription invoice is readyFrom:       “noreply@sagetop.com” [noreply@sagetop.com]Date:       Thu, August 24, 2017 8:49 pmDear CustomerYour Sage subscription invoice is now ready to view.Sage subscriptions To […]

Continue Reading »

Multiple badness on metoristrontgui.info / 119.28.100.249

By on August 24, 2017 in Latest SPAM

Two massive fake “Bill” spam runs seem to be under way, one claiming to be from BT and the other being more generic. Subject:       New BT BillFrom:       “BT Business” [btbusiness@bttconnect.com]Date:       Thu, August 24, 2017 6:08 pmPriority:       NormalFrom BTNew BT BillYour bill amount is: $106.84This doesn’t include any amounts brought forward from […]

Continue Reading »

Malware spam: “Customer Service” / “Copy of Invoice xxxx”

By on August 23, 2017 in Latest SPAM

This fairly generic spam leads to the Locky ransomware: Subject:       Copy of Invoice 3206From:       “Customer Service” Date:       Wed, August 23, 2017 9:12 pmPlease download file containing your order information.If you have any further questions regarding your invoice, please call Customer Service.Please do not reply directly to this automatically generated e-mail message.Thank

Continue Reading »

Malware spam: “Voice Message Attached from 0xxxxxxxxxxx – name unavailable”

By on August 23, 2017 in Latest SPAM

This fake voice mail message leads to malware. It comes in two slightly different versions, one with a RAR file download and the other with a ZIP. Subject:       Voice Message Attached from 001396445685 – name unavailable From:       “Voice Message” Date:       Wed, August 23, 2017 10:22 am Time: Wed, 23 Aug 2017 14:52:12 […]

Continue Reading »

Top
All of these posts originated on blog.dynamoo.com, us-cert.gov and malwaredomainlist.com and are automatically reposted on colors.cbnetsecurity.com.X