A couple of updates on the Emotet trojan are among the highlights of our selected infosec articles from August 2018. Other important information includes Russian cyber attacks targeting U.S. critical infrastructure from the Department of Homeland Security and best practices for protecting RDP access from ransomware.
For more articles, check out our #onpatrol4malware blog.
Awareness Briefing: Russian Activity Against Critical Infrastructure
Source: US Department of Homeland Security
The U.S. Department of Homeland Security’s awareness briefing on Russia’s cyberattacks on U.S. infrastructure. Intended targets: Small, medium, and large organizations, U.S. targets focused within the Energy Sector, specifically power generation, transmission, and distribution. Read more.
Emotet Update
Source: Fidelis Security
Earlier this year the Fidelis Threat Research team detailed an update with Emotet involving the use of NetPass and string obfuscation. Together with researchers from Flashpoint, Fidelis has been able to map out some recent Emotet updates. They are outlined here. Read more.
How to protect your RDP access from ransomware attacks
Source: Security Boulevard
Ransomware attacks are becoming more targeted and more effective. One of the primary attack vectors is the Remote Desktop Protocol (RDP), which allows a PC to be controlled remotely. Learn how to protect yourself. Read more.
Emotet Trojan Uses Complex Modules to Evade Standard Protection
Source IBM Security Intelligence
Security researchers from Check Point have discovered that the Emotet Trojan is still active and becoming more sophisticated and successful in how it spreads through corporate systems. Read more.
Source: Capacity Media
2.8 million distributed denial of service attacks were recorded in the first half of 2018 – down 13% from 2017. 47 of those attacks were over 300Gbps, compared with just seven in 2017. Read more.