May 23, SecurityWeek – (International) Exploit for recently patched flash flaw added to Magnitude EK. A French security researcher discovered that attackers were integrating the Magnitude exploit flaw against previously patched Flash Player 21.0.0.213 installations to potentially deliver various pieces of malware, including Locky and Cerber ransomware. The exploit was not fully implemented in Magnitude and researchers advised users to be cautious of the exploit. Source
May 21, Softpedia – (International) Ransomware adds DDoS capabilities to annoy other people, not just you. Security researchers from Invincea reported that the Cerber ransomware was discovered to have a new payload capability to launch network packets to a network subnet, which is a specific capability to distributed denial-of-service (DDoS) botnets. The ransomware was detected by 37 out of the 57 antivirus engines and spreads via weaponized rich text format (RTF) files. Source
May 21, Softpedia – (International) Crooks used SQL injections to hack Drupal sites and install fake ransomware. Chief executive officer (CEO) and co-founder of Forkbombus Labs reported that attackers were leveraging a structured query language (SQL) injection vulnerability in Drupal 7.x installations prior to version 7.32 content management system (CMS) platform to compromise Web sites and install Web-based ransomware by scanning the Drupal site version and leveraging the flaw to break into the affected Web sites and change the admin user’s password. Source
Reprinted from the USDHS Daily Open Source Infrastructure Report