Mexico's central bank continues its investigation into a possible cyberattack against payment systems. Connections between the central bank and three financial institutions—two banks and a brokerage—appear to have been disrupted in a cyber incident.
SamSam ransomware continues its malign spread, rapidly propagating copies of itself across targeted enterprises.
Distil Networks' 2018 Bad Bot Report is out. The company's research finds that account takeover attempts jump by roughly 300% in the wake of a major, publicly announced breach.
Hackers are actively scanning for vulnerable Oracle WebLogic Servers, patched earlier this month. The patch proved incomplete, and the vulnerability was weaponized with unusual speed.
The recently patched Drupal vulnerability CVE-2018-7602 was also swiftly weaponized, and is being actively exploited in the wild.
Researchers at Computest report proof-of-concept hacking of in-vehicle infotainment systems in the Volkswagen Golf GTE and the Audi A3 Sportback. Exploitation could permit hackers to track the car.
Moscow-based security firm Gleg, which BoingBoing breathlessly calls a "cyber arms dealer," offers a subscription under which customers receive zero-days for healthcare-related software. The annual charge is $4000.
Motherboard points out that the zero-days are marketed for use in conjunction with penetration-testing, specifically with Immunity's Canvas tool. This isn't a black market operation, but it does highlight the very different perspectives circulating concerning disclosure of vulnerability research results. Gleg's Yuriy Gurkin gave the company's perspective on proper practice in an email to Motherboard: "To disclose is not an obligation."
Hirschmann has patched flaws Positive Technologies discovered in Hirschmann's ICS switches.