Top Weekly Cyber News: September 8-14, 2019

Hi folks! You may find below the latest news about global incidents, threats and attacks handpicked by our super XM Cyber team of experts.
Security Affairs – Hackers stole payment data from Garmin South Africa shopping portal
September 14
Garmin, the multinational company focused on GPS technology for automotive, aviation, marine, outdoor, and sport activities is victim of a data breach. [More]

Security Affairs – InnfiRAT Trojan steals funds from Bitcoin and Litecoin wallets
September 14
Researchers at Zscaler have spotted a new malware dubbed InnfiRAT that infects victims’ systems to steal cryptocurrency wallet data. [More]

Security Affairs – Poland to establish Cyberspace Defence Force by 2024
September 13
Poland announced it will launch a cyberspace defense force by 2024 composed of around 2,000 soldiers with a deep knowledge in cybersecurity. [More]

Information Security Buzz – Instagram Confirmed Security Vulnerability – Commentary
September 13
Instagram’s parent company Facebook has confirmed that a newly discovered security vulnerability may have put data at risk, leaving users open to attack by threat actors. [More]

ThreatPost – Astaroth Spy Trojan Uses Facebook, YouTube Profiles to Cover Tracks
September 13
At every turn, the info-stealer uses legitimate services to get around normal email, endpoint and network defenses. Facebook and YouTube profiles are at the heart of an ongoing phishing campaign spreading the Astaroth trojan, bent on the eventual exfiltration of sensitive information. [More]

ThreatPost – North Korean Spear-Phishing Attack Targets U.S. Firms
September 13
Researchers have uncovered an ongoing, sophisticated malware campaign aiming at U.S.-based targets with an interest in nuclear deterrence, North Korea’s nuclear submarine program and North Korean economic sanctions. [More]

Hit Infraestructures – DHS Flags Cybersecurity Vulnerabilities in Philips Patient Monitors
September 13
The Department of Homeland Security has issued an advisory about cybersecurity vulnerabilities in the wireless local area network modules of Philips IntelliVue portable patient monitors. [More]

ThreatPost – Cybercriminals Adding Sophistication to BEC Threats
September 13
New tactics aimed at business executives and users are being used to reap greater reward from email based fraud, which continues to rise, researchers said. [More]


BAS vs. Pen Testing



Find and fix the exposures that put your critical assets at risk with ultra-efficient remediation.

See what attackers see, so you can stop them from doing what attackers do.