Numneung Koedkietpong

Article2: Thousands of Google Calendars Possibly Leaking Private Information Online

September 19, 2019 by Numneung Koedkietpong Leave a Comment

I found this interesting because it is related to our assignment of “reconnasaince”. The article states the vulnerabilities of public share of google calendars. Avinash Jain, a security researcher from India said that it is convenient for organizations to share public calendars; however, these contain plenty of sensitive information such as event names, event details, location, or even meeting links which anyone can use Google search hacking query to gain this public information. In addition, hackers will use phishing technique in order to send a fake invitation link via google calendar to steal private information.

Source: https://thehackernews.com/2019/09/google-calendar-search.html

The Hottest Malware Hits of the Summer 2019

September 11, 2019 by Numneung Koedkietpong 1 Comment

This article summarizes the popular malware hits during July and August 2019. These malware hits use several and advance techniques such as Changing hashes via file obfuscation to evade AVs, Using encrypted communication with C2 servers to foil EDRs, and Using feature manipulation and tampering to trick AI, machine-learning engines, and sandboxes. The following malware and ransomware attacks are listed;
– Fileless Attacks and Living-Off-The-Land (LOTL)
– (Jack-in-the-box)2
– Astaroth Malware
– Sodinokibi Exploits
– GermanWiper Ransomware
– MegaCortex Ransomware
– Silence APT Spreads Malware
– Turla Attacks

Source: https://thehackernews.com/2019/09/its-been-summer-of-ransomware-hold-ups.html