Gotham Security Daily Threat Alerts

By Gotham
Posted in Security
On July 18, 2013

July 17, The Register – (International) Oracle releases July patch batch…with 27 fixes for remote exploits. Oracle released a quarterly Critical Patch Update containing 89 updates for various Oracle products, 27 of which are fixes for remotely exploitable vulnerabilities. Source:

July 17, Softpedia – (International) Tumblr updates iOS apps to prevent hackers from stealing user passwords. Tumblr released a security update for its iOS apps which closes a vulnerability that could have been exploited to compromise passwords. Tumblr advised users of the apps to change their passwords. Source:

July 17, IDG News Service – (International) Apache Struts security update fixes critical vulnerabilities. The Apache Software Foundation released a security update for Struts which closes two vulnerabilities, including a remotely exploitable vulnerability that could be used to execute arbitrary code. Source:

July 16, Dark Reading – (International) U.S. still tops spam-relaying ‘dirty dozen’ countries. A quarterly report by Sophos found that in the second quarter of 2013 the U.S. remained the top country for relaying spam, with Belarus relaying the second most amount of spam. Source:

July 16, CSO – (International) New Android malware lowers the bar for cybercriminals. Symantec researchers discovered a ‘binder’ for sale on underweb markets that simplifies the repackaging of legitimate apps with the AndroRAT remote access trojan. Source:

July 16, SC Magazine – (International) FBI ransomware scam finds new home on the Mac. Malwarebytes researchers reported finding a strain of well-known ransomware for Mac OS X systems. Source:

July 16, The H – (International) Critical vulnerabilities in numerous ASUS routers. A security researcher reported critical vulnerabilities in several ASUS routers that can allow remote unauthorized access to critical system files if the AiCloud media server is activated. Source:

July 16, IDG News Service – (International) Malware campaign strikes Asian, European governments. Trend Micro detected a targeted malware attack against representatives of European and Asian governments that steals login credentials. The attack appears as an email attachment and exploits previously unpatched Microsoft Office vulnerabilities. Source:


July 16, Softpedia – (International) hacked, abused to distribute malware. The Web site of Micro-Star International (MSI) was hacked and used by attackers to redirect visitors to a domain hosting an exploit kit. Source:

July 16, Threatpost – (International) Amazon 1Button browser add-on leaks data in plain text. A security researcher found that the Amazon 1Button browser extension reports all URLs visited by a user to Alexa in plain text, including encrypted HTTPS sessions. Source:

July 15, Softpedia – (International) EXPIRO file infectors used to steal information from US companies. New variants of the PE_EXPIRO malware were spotted in the wild by Trend Micro researchers, with 70 percent of infections detected in the U.S. Source:

July 15, Reuters – (International) Researchers hack Verizon device, turn it into mobile spy station. Two security researchers found and demonstrated a method to compromise Verizon signal-boosting femtocell devices and use them to eavesdrop on smartphone calls, text messages, and data. Source: