• Articles
    • Editorial Articles
    • Research Articles
    • WatchGuard Articles
  • The 443 Podcast
  • Threat Landscape
  • About
    • About Us
    • Contact Us
    • Contribute to Secplicity

Secplicity - Security Simplified

Powered by WatchGuard Technologies

The Mask APT Campaign – WSWiR Episode 95

February 14, 2014 By Corey Nachreiner

400Gb DDoS, More Bitcoin Attacks, and The Mask APT

If you’re looking for a quick synopsis of the latest information security news and advisories, our quick weekly video can provide it for you. This week’s episode was shot literally right before I had to run out to catch a plane, so please excuse the low quality webcam footage. 

Today’s episode includes a quick rundown of the week’s Microsoft and Adobe patches, news about the latest world record-breaking DDoS attack, some Bitcoin hijinks, and the details around a new cross-platform advanced attack campaign discovered by Kaspersky. Check out the video for all the details, and give the Reference section a peek for links to other infosec stories, including last minute news of a new Internet Explorer (IE) zero day attack.

Have a great weekend (and President’s Day for US readers), and be careful online.

(Episode Runtime: 8:20)

Direct YouTube Link: http://www.youtube.com/watch?v=W4JItAGJynY

Episode References:

  • Microsoft and Adobe Patch Day
    • February Patch Day summary  – WGSC
    • Surprise Internet Explorer update – WGSC
    • Consolidated Windows alert – WGSC
    • Patch for Forefront Protection for Exchange – WGSC
    • Adobe Shockwave Player update – WGSC
    • Also, Last week’s 0day Flash update if you missed it – WGSC
  • Cloudflare announces worlds larged NTP DDoS attack – Computer World
  • Major Bitcoin wallets suffer DDoS attack – Wired
  • Kaspersky’s Detailed report on “The Mask” APT [PDF]  – Securelist
    • Also a good news write-up summarizing The Mask details – Ars Technica
  • UPDATE: Operation Snowman; new zero day IE exploit found in the wild – Fireeye

Extras:

  • Latest Target breach update, how hackers got HVAC creds – Krebs on Security
  • Another Bitcoin wallet theft (Coinbase) – Gizmodo
  • Vulnerability found in popular asset tracking program – SC Magazine
  • Instagram fixed a privacy flaw after six months – Business Insider
  • Snapchat flaw leads to smoothie spam – Wired
  • Snowden used a basic web spider or crawler to get data from NSA – NY Times
  • Cryptolocker still bites; affects law firm – Tech World
  • Authorities arrest criminal Bitcoin exchangers  – Krebs on Security

— Corey Nachreiner, CISSP (@SecAdept)

Share This:

Related

Filed Under: Security Bytes Tagged With: Adobe, Chain-of-Trust attack, drive-by download, Hacking, Infosec news, kaspersky, Microsoft, POS Malware, Retailer attacks, RSA, Software vulnerabilities, Target Breach, The Mask, Updates and patches, watering hole attack, Zero day exploit

Comments

  1. Gertie says

    March 10, 2014 at 11:49 pm

    I visited several websites except the audio qualjty forr audio
    songs exiting at this website is really excellent.

    Reply
  2. wholesale Cowboys jerseys free shipping says

    July 3, 2014 at 6:38 am

    What Is cheap authentic Thunder jerseys free shipping

    Reply

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

The 443 Podcast

A weekly podcast featuring the leading white-hat hackers and security researchers. Listen Now
the 443 podcast

Threat Landscape

Filter and view Firebox Feed data by type of attack, region, country, and date range. View Now
threat landscape

Top Posts

  • Scratching the Surface of Rhysida Ransomware
  • An Interview with ChatGPT
  • TikTok is Banned, Kind Of
  • Naming APTs

Email Newsletter

Sign up to get the latest security news and threat analysis delivered straight to your inbox

By signing up you agree to our Privacy Policy.


The views and opinions expressed on this website are those of the authors and do not necessarily reflect the policy or position of WatchGuard Technologies.

Stay in Touch

Recent Posts

  • How Not to Update Software
  • Naming APTs
  • TikTok is Banned, Kind Of
  • Scratching the Surface of Rhysida Ransomware
  • An Interview with ChatGPT
View All

Search

Archives

Copyright © 2023 WatchGuard Technologies · Cookie Policy · Privacy Policy · Terms of Use