19 Jul 2019
Week in review
AUSCERT Week in Review for 19th July 2019
AUSCERT Week in Review
19 July 2019
Greetings,
Oracle’s Critical Patch Update for July landed on Wednesday. Check out
our bulletins to see if you’re running anything in need of a fix.
Credential stuffing even made it into prominent webcomic xkcd this week,
in a very easy-to-follow way (https://xkcd.com/2176/)
Here are some of the week’s noteworthy security stories (in no particular
order):
NCSC Issues Alert About Active DNS Hijacking Attacks
Author: Ionut Ilascu
Date: 2019-07-15
Excerpt:
“Following recent reports about mass-scale attacks aimed at modifying
Domain Name System records, UK’s National Cyber Security Centre (NCSC)
released an advisory with mitigation options for organizations to defend
against this type of threat.”
FBI Releases Master Decryption Keys for GandCrab Ransomware
Author: Lawrence Abrams
Date: 2019-07-17
Excerpt:
“In an FBI Flash Alert, the FBI has released the master decryption keys
for the Gandcrab Ransomware versions 4, 5, 5.0.4, 5.1, and 5.2. Using
these keys, any individual or organization can create and release their
very own GandCrab decryptor.”
Home Affairs could tap telcos for MAC and IP addresses, port numbers
Author: Ry Crozier
Excerpt:
“The Department of Home Affairs has raised the prospect of forcing Australian
telcos to capture an expanded range of user data including MAC addresses,
IP addresses and port numbers under mandatory data retention laws.”
Oracle’s July 2019 CPU Includes 319 Fixes
Author: Ionut Arghire
Date: 2019-07-17
Excerpt:
“Oracle this week published its July 2019 Critical Patch Update (CPU),
which brings a total of 319 security fixes across numerous product families.
While fewer than 200 of these vulnerabilities can be exploited remotely
without authentication, over 50 of them are rated Critical severity,
almost all of them featuring a CVSS score of 9.8.”