//Blogs - 13 December 2019

AusCERT Week in Review for 13th December 2019

Greetings,

As the week comes to a close, here are some articles that may help ease you into the weekend. ...


Microsoft to help Office 365 customers track entire phishing campaigns, not just lone emails
Date: 2019-12-10
Author: ZDNet

Microsoft is launching today a new security feature in public preview.
Named "Campaign Views," this is a new feature that will be available for Office 365 Advanced Threat Protection (ATP) [...]
Until today, Office 365 ATP users could only see details about each of the individual malicious emails that reached users. Campaign Views will show details about the entire phishing campaign and all the tricks and infrastructure it uses.
The goal is to give security teams an idea of what other tricks the same attacker might be using, so they can put filters and security protections in place.

Phishing Campaign Uses Malicious Office 365 App
Date: 2019-12-11
Author: Phishlabs Blog

Most phishing campaigns attempt to take over accounts by tricking the victim into divulging their credentials. PhishLabs has uncovered a previously unseen tactic by attackers that uses a malicious Microsoft Office 365 App to gain access to a victim's account without requiring them to give up their credentials to the attackers.

Australia Post SMS scam targeting Australians
Date: 2019-12-12
Author: Stay Smart Online

With millions of parcel deliveries expected around the country, Australia Post is seeing widespread scam text (SMS) messages being sent to people, using their brand.
These fake SMS messages may tell you that your parcel is "detained", you've "missed a delivery" or there's an "important update" to your delivery - and include a link to click on for more details. As scammers use technology that imitates a caller ID, these scam texts can even appear in the same conversation thread as a legitimate Australia Post conversation.

Amazon Battles Leaky S3 Buckets with a New Security Tool
Date: 2019-12-09
Author: Bit Defender

Anyone who has been following security trends in recent years cannot fail to have noticed the preponderance of data breaches which have stemmed from unsecured Amazon S3 buckets. Many well-known organisations, including FedEx, Capital One bank, Verizon, and even US defense contractors, have left confidential and sensitive data publicly exposed by not having properly configured the security of their cloud-based storage servers.

Chrome now warns you if your password has been stolen
Date: 2019-12-12
Author: WeLiveSecurity

Google has added a new feature to its Chrome web browser that will alert users if their login credentials have been compromised in a security breach, according to the company's announcement.


Intel Processors

Intel CPU vulnerability, which could allow an attacker to extract highly-sensitive information, such as encryption keys from affected processors by altering their voltage.

Xen

Multiple privilege escalation and guest escape vulnerabilities.

Adobe

Multiple Remote code execution, privilege escalation and information disclosure vulnerabilities.


Stay safe, stay patched and have a good weekend!

Rameez Agnew