• Articles
    • Editorial Articles
    • Research Articles
    • WatchGuard Articles
  • Daily Security Bytes
  • The 443 Podcast
  • Threat Landscape
  • About
    • About Us
    • Contact Us
    • Contribute to Secplicity

Secplicity - Security Simplified

Powered by WatchGuard Technologies

0day Watering Holes – WSWiR Episode 96

February 21, 2014 By Corey Nachreiner

Flash and IE 0day, Watering Holes, and Router Worms

It’s Friday, Friday, gotta get your InfoSec on Friday….

Seriously though. If you are looking for a quick round-up of this week’s biggest security news, this is your show. In it, I cover what I think are the top three information and network security stories of the week, vlog style. If that sounds good, keep reading.

This week’s episode covers an advanced watering hole attack that leverages two zero day vulnerabilities, a worm that’s infecting a popular brand consumer router, and new vulnerabilities that affect devices which fall under “the Internet of things” category. If you’d like all the details, including how to protect yourself, watch the video below. Or if you prefer to read, check out the Reference section for links to those stories and more.

Quick show note. Next week I’ll be attending the annual RSA Security Conference. Though I still hope to produce a video on the road, I may have to settle for a text version of our weekly Infosec news if I get too busy. Keep an eye on the blog for the latest, and have a great weekend.

(Episode Runtime: 8:57)

Direct YouTube Link: http://www.youtube.com/watch?v=NbxXXLov6Ek

Episode References:

  • Operation Snowman Watering Hole Attacks
    • FireEye’s post on Operation Snowman – FireEye Blog
    • Websenses research on similar watering hole attack – Websense blog
    • Microsoft emergency IE advisory – Microsoft
    • Adobe’s emergency Flash alert – Adobe
  • The Moon Worm infects Linksys routers – SANS ISC Diary
    • Tech article on the worm – Threat Post
    • Researcher releases exploit code for issue – ExploitDB
    • Also, news of an Asus router attack – Ars Technica
  • IOActive finds five vulnerabilities in WeMo Home Automation Solution [PDF] – IOActive
    • US-CERT advisory on WeMo flaws – US-CERT

Extras:

  • Lots of FTP site credentials stolen, including NY Times – PCWorld
  • Tesco suffers a Data Breach – The Register
  • Iranian hack on the U.S. Navy worse than first suspected – The Verge
  • SEA hacks Forbes and steals 1 million user credentials – The Register
  • KickStarter suffers a hack and user info breach – KickStarter
  • Silkroad 2.0 robbed of a fortune of bitcoin – Forbes
  • Latest Zeus variant uses stenagrophy to hid config in a JPG – MalwareBytes
  • Well written PayPal phishing email – Help Net Security
  • New Zeus variant seems to target SalesForce – PC Advisor
  • Tinder (a dating app) flaw could allow creepers to track you real-time – IncludeSecurity

— Corey Nachreiner, CISSP (@SecAdept)

Share This:

Related

Filed Under: Security Bytes Tagged With: Adobe, drive-by download, Gh0stRat, Hacking, Infosec news, Internet Explorer, Linksys, Microsoft, Operation Snoman, Router, RSA, Software vulnerabilities, The Internet of Things, Updates and patches, watering hole attack, Wemo Home Automation, Wireless access point, Zero day exploit

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

The 443 Podcast

A weekly podcast featuring the leading white-hat hackers and security researchers. Listen Now
the 443 podcast

Threat Landscape

Filter and view Firebox Feed data by type of attack, region, country, and date range. View Now
threat landscape

Top Posts

  • Robux Ransomware
  • Grading Gartner’s Guesses
  • 0-Days for Days
  • Package Hijacking

Email Newsletter

Sign up to get the latest security news and threat analysis delivered straight to your inbox

By signing up you agree to our Privacy Policy.


The views and opinions expressed on this website are those of the authors and do not necessarily reflect the policy or position of WatchGuard Technologies.

Stay in Touch

Recent Posts

  • Grading Gartner’s Guesses
  • 200th Episode Extravaganza
  • Robux Ransomware
  • 0-Days for Days
  • Package Hijacking
View All

Search

Archives

Copyright © 2022 WatchGuard Technologies · Cookie Policy · Privacy Policy · Terms of Use