June 23, Softpedia; Austin Daily Dot – (International) Hackers breach US company and unwittingly expose 154 million voter records. Security researchers from MacKeeper discovered that a CouchDB database containing details on over 154 million U.S voters was compromised after a hacker took down L2’s, a company that builds, manages, and sells access to U.S. voter records, firewall. The database contained 1-year-old information and was taken down, and authorities were unsure of the identity of the hacker. Source
June 23, Softpedia – (International) Criminals set up fake companies to hijack and sell IPv4 addresses. Security researchers from Check Point reported that cyber criminals were leveraging legacy networks belonging to companies no longer in existence by scanning the IPv4 address pool and searching for networks’ contact information, and if no data is found, attackers impersonate the defunct company by re-registering old business names or expired domain names. Source
June 23, Softpedia – (International) Massive spam flood delivering Cerber ransomware hit users at the end of May. Check Point released a report which detailed that the Cerber ransomware was attacking victims in April and May through two recent incidences that included large amounts of email spams containing Microsoft Office documents loaded with malicious macros that were downloading and installing the ransomware. Source
Above Reprinted from the USDHS Daily Open Source Infrastructure Report
June 24, Dark Reading-Large Botnet Comes Back To Life --With More Malware. The Necurs botnet associated with Dridex and Locky is back after three-week haitus. A botnet associated with the huge volumes of Dridex and Locky-laden emails in recent months has resumed operations after mysteriously going dark for three weeks. Researchers from multiple firms report seeing a sharp increase in malicious traffic originating from the Necurs botnet, after a significant drop-off beginning May 31. Source