February 9, SecurityWeek – (International) Cross-platform backdoor adwind hits 443,000 users: Kaspersky. Security researchers from Kaspersky Lab reported that a remote access trojan (RAT) dubbed Adwind RAT had infected approximately 443,000 victims by 2015 and targets Windows, Linux, Mac OS X, and other platforms that run Java, to log keystrokes and steal virtual private network (VPN) certificates, cryptocurrency wallet keys, passwords and other data from web forms, among other malicious actions via spear-phishing campaigns. The trojan also uses command and control (C&C) servers to execute commands and relies on free Dynamic Domain Name System (DNS) providers. Source
February 9, Softpedia – (International) Download firmware 1.1.00.20 for NETGEAR’s D6200 modem router. NETGEAR released new firmware version 1.100.20 for its D6200 modem router that removes a flaw that disabled wireless connections when the region was assigned as WW in flash, fixes the unit’s currentsetting.htm page to show the correct information in the region field, and removes a debug file (/tmp/yuziven1) and fixes unterminated tries when checkfw fails. Source
February 8, SecurityWeek – (International) Advantech failed to patch serious flaws in SCADA. The Zero Day Initiative (ZDI) published advisories that stated several unpatched vulnerabilities were affecting Advantech’s WebAccess 8.0 industrial automation SCADA/HMI products after researchers found unrestricted file upload, path traversal, improper access control, cross-site scripting (XSS), and SQL injections, among other vulnerabilities, that were reported to be patched, but were improperly patched. The unpatched flaws can be exploited by a remote, authenticated attacker to execute arbitrary code on a victim’s system. Source