{"id":12084,"date":"2018-04-20T08:01:16","date_gmt":"2018-04-20T16:01:16","guid":{"rendered":"http:\/\/www.palada.net\/index.php\/2018\/04\/20\/news-5853\/"},"modified":"2018-04-20T08:01:16","modified_gmt":"2018-04-20T16:01:16","slug":"news-5853","status":"publish","type":"post","link":"https:\/\/www.palada.net\/index.php\/2018\/04\/20\/news-5853\/","title":{"rendered":"TippingPoint Threat Intelligence and Zero-Day Coverage \u2013 Week of April 16, 2018"},"content":{"rendered":"

Credit to Author: Elisa Lippincott (TippingPoint Global Product Marketing)| Date: Fri, 20 Apr 2018 14:45:13 +0000<\/strong><\/p>\n

\"\"<\/p>\n

It was a crazy week at this year\u2019s RSA Conference in San Francisco. I always try to get a quick view of the floor to see companies old and new exhibit their wares. Unfortunately, work never sleeps when you attend a conference, and the shortage of seating at this year\u2019s event left many, including myself, with a view of the actual<\/u> floor. So I decided to listen instead.<\/p>\n

 <\/p>\n

 <\/p>\n

\"\"<\/p>\n

You would be surprised what you can hear if you really pay attention. I heard someone ordering something and giving out their credit card number, someone asking another person about a job, and even someone talking on the phone with their pet sitter and giving them the code for their home alarm system.<\/p>\n

Imagine if I had heard this information and I was a \u201cbad guy.\u201d I could piece some information together and attempt to impersonate someone else via email to get some valuable data like banking information\u2026all without including a malicious file. Email is still one of the most lucrative attack vectors for cyber criminals, with total global losses from business email compromise (BEC) scams predicted to reach $9 billion this year. To counter those scams, Trend Micro introduced its Writing Style DNA, a new layer of protection against BEC attacks that uses artificial intelligence (AI) to \u201cblueprint\u201d a user\u2019s style of writing through more than 7,000 writing characteristics. When an email is suspected of impersonating a high-profile user, like an organization\u2019s CEO, the style is compared to Trend Micro\u2019s trained AI model and a warning is sent to the implied sender, the recipient and the IT department. You can learn more about Writing Style DNA here<\/a>.<\/p>\n

Postscript<\/u>: For the record, I did nothing with the information I heard \u2013 but I could have. Be aware of your surroundings because you never know who might be listening.<\/p>\n

Adobe Security Update<\/strong><\/p>\n

This week\u2019s Digital Vaccine (DV) package includes coverage for Adobe updates released on or before April 10, 2018. The following table maps Digital Vaccine filters to the Adobe updates. You can get more detailed information on this month\u2019s security updates from Dustin Childs\u2019 April 2018 Security Update Review<\/a> from the Zero Day Initiative:<\/p>\n

\n\n\n\n\n\n\n\n\n
Bulletin #<\/strong><\/td>\nCVE #<\/strong><\/td>\nDigital Vaccine Filter #<\/strong><\/td>\n<\/tr>\n
APSB18-08<\/td>\nCVE-2018-4932<\/td>\n31154<\/td>\n<\/tr>\n
APSB18-08<\/td>\nCVE-2018-4933<\/td>\n31156<\/td>\n<\/tr>\n
APSB18-08<\/td>\nCVE-2018-4934<\/td>\n31186<\/td>\n<\/tr>\n
APSB18-08<\/td>\nCVE-2018-4935<\/td>\n31190<\/td>\n<\/tr>\n
APSB18-08<\/td>\nCVE-2018-4936<\/td>\n31201<\/td>\n<\/tr>\n<\/tbody>\n<\/table><\/div>\n

 <\/p>\n

Zero-Day Filters<\/strong><\/p>\n

There are six new zero-day filters covering three vendors in this week\u2019s Digital Vaccine (DV) package. A number of existing filters in this week\u2019s DV package were modified to update the filter description, update specific filter deployment recommendation, increase filter accuracy and\/or optimize performance. You can browse the list of published advisories<\/a> and upcoming advisories<\/a> on the Zero Day Initiative<\/a> website. You can also follow the Zero Day Initiative on Twitter @thezdi<\/a> and on their blog<\/a>.<\/p>\n

Apple (1)<\/em><\/strong><\/p>\n\n\n\n\n
<\/td>\n\n
    \n
  • 31167: ZDI-CAN-5544: Zero Day Initiative Vulnerability (Apple Safari)<\/li>\n<\/ul>\n<\/td>\n<\/tr>\n
<\/td>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

GE (4)<\/em><\/strong><\/p>\n\n\n\n\n
<\/td>\n\n
    \n
  • 31161: ZDI-CAN-5538: Zero Day Initiative Vulnerability (GE MDS PulseNET)<\/li>\n
  • 31163: ZDI-CAN-5539: Zero Day Initiative Vulnerability (GE MDS PulseNET)<\/li>\n
  • 31164: ZDI-CAN-5540: Zero Day Initiative Vulnerability (GE MDS PulseNET)<\/li>\n
  • 31165: ZDI-CAN-5541: Zero Day Initiative Vulnerability (GE MDS PulseNET)<\/li>\n<\/ul>\n<\/td>\n<\/tr>\n
<\/td>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

Oracle (1)<\/em><\/strong><\/p>\n\n\n\n\n
<\/td>\n\n
    \n
  • 31138: HTTPS: Oracle Secure Backup exec_qr Command Injection Vulnerability (ZDI-09-003)<\/li>\n<\/ul>\n<\/td>\n<\/tr>\n
<\/td>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

Missed Last Week\u2019s News?<\/strong><\/p>\n

Catch up on last week\u2019s news in my weekly recap<\/a>.<\/p>\n

The post TippingPoint Threat Intelligence and Zero-Day Coverage \u2013 Week of April 16, 2018<\/a> appeared first on <\/a>.<\/p>\n

http:\/\/feeds.trendmicro.com\/TrendMicroSimplySecurity<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

Credit to Author: Elisa Lippincott (TippingPoint Global Product Marketing)| Date: Fri, 20 Apr 2018 14:45:13 +0000<\/strong><\/p>\n

\"\"<\/p>\n

It was a crazy week at this year\u2019s RSA Conference in San Francisco. I always try to get a quick view of the floor to see companies old and new exhibit their wares. Unfortunately, work never sleeps when you attend a conference, and the shortage of seating at this year\u2019s event left many, including myself,…<\/p>\n

The post TippingPoint Threat Intelligence and Zero-Day Coverage \u2013 Week of April 16, 2018<\/a> appeared first on <\/a>.<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[10378,10413],"tags":[10384,714,10415],"class_list":["post-12084","post","type-post","status-publish","format-standard","hentry","category-security","category-trendmicro","tag-network","tag-security","tag-zero-day-initiative"],"_links":{"self":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/12084","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=12084"}],"version-history":[{"count":0,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/12084\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=12084"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=12084"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=12084"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}