2019 Midyear Security Roundup: Evasive Threats, Pervasive Effects
Common Information
| Type | Value |
|---|---|
| UUID | ab864fe3-6dc4-44d3-9b73-49b98a761dbb |
| Fingerprint | 00bd48c6cfea835b9f4abb8286d771ad3a476ae5f5b33246bc425d6e1bbc24b1 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Sept. 3, 2019, 5:08 p.m. |
| Added to db | April 14, 2024, 10:29 a.m. |
| Last updated | Aug. 30, 2024, 10:47 p.m. |
| Headline | 2019 Midyear Security Roundup: Evasive Threats, Pervasive Effects |
| Title | 2019 Midyear Security Roundup: Evasive Threats, Pervasive Effects |
| Detected Hints/Tags/Attributes | 344/4/202 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 197 | cve-2019-0708 |
|
| Details | CVE | 19 | cve-2019-1069 |
|
| Details | CVE | 23 | cve-2019-5736 |
|
| Details | CVE | 1 | cve-2019-1002101 |
|
| Details | CVE | 1 | cve-2018-1002100 |
|
| Details | CVE | 1 | cve-2019-9580 |
|
| Details | CVE | 66 | cve-2019-2725 |
|
| Details | CVE | 106 | cve-2018-8174 |
|
| Details | CVE | 92 | cve-2018-4878 |
|
| Details | CVE | 59 | cve-2018-15982 |
|
| Details | CVE | 3 | cve-2018-12227 |
|
| Details | CVE | 2 | cve-2009-1536 |
|
| Details | CVE | 5 | cve-2017-11815 |
|
| Details | CVE | 17 | cve-2016-3714 |
|
| Details | CVE | 21 | cve-2017-0147 |
|
| Details | CVE | 2 | cve-2019-6443 |
|
| Details | CVE | 2 | cve-2019-6445 |
|
| Details | CVE | 3 | cve-2018-3191 |
|
| Details | CVE | 2 | cve-2017-15275 |
|
| Details | CVE | 11 | cve-2017-12611 |
|
| Details | CVE | 15 | cve-2018-8414 |
|
| Details | CVE | 22 | cve-2014-0224 |
|
| Details | CVE | 3 | cve-2009-2532 |
|
| Details | CVE | 122 | cve-2017-5638 |
|
| Details | CVE | 9 | cve-2015-8562 |
|
| Details | CVE | 28 | cve-2017-9805 |
|
| Details | CVE | 17 | cve-2014-6278 |
|
| Details | CVE | 8 | cve-2014-0114 |
|
| Details | CVE | 38 | cve-2019-3396 |
|
| Details | CVE | 4 | cve-2019-0725 |
|
| Details | CVE | 1 | cve-2019-11815 |
|
| Details | Domain | 245 | shutterstock.com |
|
| Details | Domain | 397 | asp.net |
|
| Details | Domain | 175 | www.zdnet.com |
|
| Details | Domain | 604 | www.trendmicro.com |
|
| Details | Domain | 124 | www.nytimes.com |
|
| Details | Domain | 172 | www.crowdstrike.com |
|
| Details | Domain | 151 | www.bbc.com |
|
| Details | Domain | 1 | www.poundsterlinglive.com |
|
| Details | Domain | 177 | blog.trendmicro.com |
|
| Details | Domain | 11 | doublepulsar.com |
|
| Details | Domain | 251 | www.bleepingcomputer.com |
|
| Details | Domain | 10 | www.cyber.nj.gov |
|
| Details | Domain | 31 | blog.morphisec.com |
|
| Details | Domain | 3 | www.bluvector.io |
|
| Details | Domain | 128 | support.microsoft.com |
|
| Details | Domain | 202 | krebsonsecurity.com |
|
| Details | Domain | 60 | documents.trendmicro.com |
|
| Details | Domain | 68 | www.coindesk.com |
|
| Details | Domain | 154 | arxiv.org |
|
| Details | Domain | 141 | research.checkpoint.com |
|
| Details | Domain | 170 | www.sans.org |
|
| Details | Domain | 5 | blog.barracuda.com |
|
| Details | Domain | 14 | azureedge.net |
|
| Details | Domain | 370 | www.proofpoint.com |
|
| Details | Domain | 7 | docs.apwg.org |
|
| Details | Domain | 15 | www.wired.co.uk |
|
| Details | Domain | 3 | pdf.ic3.gov |
|
| Details | Domain | 6 | meltdownattack.com |
|
| Details | Domain | 34 | msrc-blog.microsoft.com |
|
| Details | Domain | 3 | www.twistlock.com |
|
| Details | Domain | 224 | unit42.paloaltonetworks.com |
|
| Details | File | 1 | florida-riviera-beach-hacking-ransom.html |
|
| Details | File | 1 | lake-city-florida-ransom-cyberattack.html |
|
| Details | File | 1 | ransomware-attacks-hacking.html |
|
| Details | File | 1 | rpt-mapping-the-future.pdf |
|
| Details | File | 3 | rpt-setting-the-stage.pdf |
|
| Details | File | 1 | 00846.pdf |
|
| Details | File | 1 | apwg_trends_report_q1_2019.pdf |
|
| Details | File | 1 | 2018_ic3report.pdf |
|
| Details | File | 1 | ponemonreport-cybersecurity_in_operational_technology.pdf |
|
| Details | Url | 1 | https://www.zdnet.com/article/gandcrab-ransomware-operation-says-its-shutting-down/. |
|
| Details | Url | 16 | https://www.trendmicro.com/vinfo/us/security/news/cybercrime-and-digital-threats |
|
| Details | Url | 1 | https://www.nytimes.com/2019/06/19/us/florida-riviera-beach-hacking-ransom.html |
|
| Details | Url | 1 | https://www.nytimes.com/2019/06/27/us/lake-city-florida-ransom-cyberattack.html |
|
| Details | Url | 1 | https://www.coveware.com/blog/2019/7/15/ransomware-amounts-rise-3x-in-q2-as-ryuk-amp-sodinokibi-spread. |
|
| Details | Url | 1 | https://www.crowdstrike.com/blog/big-game-hunting-with-ryuk-another-lucrative-targeted-ransomware/. |
|
| Details | Url | 1 | https://www.trendmicro.com/vinfo/us/security/news/cyber-attacks/what-you-need-to-know-about-the-lockergoga-ransomware. |
|
| Details | Url | 2 | https://www.bbc.com/news/business-48661152. |
|
| Details | Url | 1 | https://www.poundsterlinglive.com/best-exchange-rates/british-pound-to-us-dollar-exchange-rate- |
|
| Details | Url | 1 | https://www.nytimes.com/2019/08/22/us/ransomware-attacks-hacking.html |
|
| Details | Url | 1 | https://www.scmagazine.com/home/security-news/ransomware/greenville-in-recovery-phase-from-robbinhood-ransomware-attack/. |
|
| Details | Url | 1 | https://www.trendmicro.com/vinfo/us/security/news/cybercrime-and-digital-threats/narrowed-sights-bigger- |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/cryptomix-clop-ransomware-says-its-targeting-networks-not- |
|
| Details | Url | 1 | https://blog.trendmicro.com/trendlabs-security-intelligence/dharma-ransomware-uses-av-tool-to-distract- |
|
| Details | Url | 1 | https://www.trendmicro.com/vinfo/us/security/news/cybercrime-and-digital-threats/ransomware-recap-still-in-development-found-in- |
|
| Details | Url | 1 | https://blog.trendmicro.com/trendlabs-security-intelligence/crysis-targeting- |
|
| Details | Url | 1 | https://www.trendmicro.com/vinfo/us/security/news/cybercrime-and-digital-threats/nampohyu- |
|
| Details | Url | 1 | https://www.trendmicro.com/vinfo/us/security/news/cybercrime-and-digital-threats/gandcrab-ransomware-found-targeting-mysql- |
|
| Details | Url | 19 | https://blog.trendmicro.com/trendlabs-security- |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/mongo-lock-attack-ransoming-deleted-mongodb-databases/. |
|
| Details | Url | 1 | https://www.trendmicro.com/vinfo/us/security/news/cybercrime-and-digital-threats/ransomware-mongolock- |
|
| Details | Url | 15 | https://www.trendmicro.com/vinfo/us/security |
|
| Details | Url | 1 | https://www.trendmicro.com/vinfo/us/security/news/cybercrime-and-digital-threats/ryuk-ransomware-shows- |
|
| Details | Url | 1 | https://doublepulsar.com/how-lockergoga-took-down-hydro-ransomware-used-in-targeted- |
|
| Details | Url | 3 | https://blog.trendmicro.com/trendlabs-security-intelligence/emotet-distributed-ransomware-loader-for-nozelesn-found-via-managed-detection- |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/a-closer-look-at-the-robbinhood-ransomware/. |
|
| Details | Url | 1 | https://blog.trendmicro.com/trendlabs-security-intelligence/account- |
|
| Details | Url | 2 | https://www.cyber.nj.gov/threat-profiles/ransomware- |
|
| Details | Url | 1 | http://blog.morphisec.com/bitpaymer-ransomware-with-new-custom-packer-framework. |
|
| Details | Url | 1 | https://www.bluvector.io/threat-report-bitpaymer-ransomware-freezes-the-pga-and-an-alaskan-town/. |
|
| Details | Url | 1 | https://www.trendmicro.com/vinfo/us/security/news/cybercrime-and-digital-threats/megacortex-ransomware-spotted-attacking- |
|
| Details | Url | 1 | https://blog.trendmicro.com/trendlabs-security-intelligence/massive-wannacrywcry-ransomware-attack-hits- |
|
| Details | Url | 1 | https://support.microsoft.com/en-us/help/4057281/windows-7-support-will-end-on-january-14-2020. |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/sodinokibi-ransomware-now-pushed-by-exploit-kits-and-malvertising/. |
|
| Details | Url | 2 | https://krebsonsecurity.com/2019/07/is-revil-the-new-gandcrab-ransomware/. |
|
| Details | Url | 1 | https://documents.trendmicro.com/assets/rpt/rpt-mapping-the-future.pdf |
|
| Details | Url | 1 | https://www.trendmicro.com/vinfo/us/security/news/security-technology/risks-under-the-radar-understanding-fileless-threats/. |
|
| Details | Url | 17 | https://blog.trendmicro.com |
|
| Details | Url | 1 | https://blog.trendmicro.com/trendlabs-security-intelligence/emotet-distributed-ransomware-loader-for-nozelesn-found-via-managed-detection-and-response/. |
|
| Details | Url | 15 | https://blog.trendmicro.com/trendlabs-security-intelligence |
|
| Details | Url | 1 | https://blog.trendmicro.com/trendlabs-security-intelligence/trickbot-watch-arrival-via-redirection-url-in-spam/. |
|
| Details | Url | 1 | https://blog.trendmicro.com/trendlabs-security-intelligence/monero- |
|
| Details | Url | 1 | https://blog.trendmicro.com/trendlabs-security-intelligence/blacksquid-slithers-into- |
|
| Details | Url | 1 | https://blog.trendmicro.com/trendlabs-security-intelligence/new-mirai- |
|
| Details | Url | 1 | https://www.trendmicro.com/vinfo/us/security/news/cybercrime-and-digital-threats/cybersecurity-skills- |
|
| Details | Url | 1 | https://www.trendmicro.com/vinfo/us/security/research-and-analysis/threat-reports/roundup/2018-mobile-threat-landscape. |
|
| Details | Url | 1 | https://blog.trendmicro.com/trendlabs-security-intelligence/google-play-apps-drop-anubis- |
|
| Details | Url | 1 | https://blog.trendmicro.com/trendlabs-security-intelligence/anubis-android-malware-returns-with-over-17000-samples/. |
|
| Details | Url | 1 | https://blog.trendmicro.com/trendlabs-security-intelligence/2016-mobile-threat- |
|
| Details | Url | 1 | https://blog.trendmicro.com/trendlabs-security-intelligence/shadowgate-returns-to- |
|
| Details | Url | 2 | https://documents.trendmicro.com/assets/rpt/rpt-setting-the-stage.pdf |
|
| Details | Url | 11 | https://www.trendmicro.com/vinfo/us/security/news/cybercrime-and-digital- |
|
| Details | Url | 8 | https://blog.trendmicro.com/trendlabs-security-intelligence/new- |
|
| Details | Url | 1 | https://blog.trendmicro.com/trendlabs-security-intelligence/how-a-hacking-group-is- |
|
| Details | Url | 1 | https://blog.trendmicro.com/trendlabs-security-intelligence/shifting-strategies-using-social-media-seo-in- |
|
| Details | Url | 14 | https://www.trendmicro.com/vinfo/us/security/news |
|
| Details | Url | 1 | https://blog.trendmicro.com/trendlabs-security-intelligence/mobile-cyberespionage-campaign- |
|
| Details | Url | 2 | https://blog.trendmicro.com/trendlabs-security-intelligence/latest- |
|
| Details | Url | 1 | https://blog.trendmicro.com/trendlabs-security-intelligence/campaign-possibly- |
|
| Details | Url | 1 | https://www.coindesk.com/price/bitcoin/. |
|
| Details | Url | 1 | https://www.coindesk.com/price/monero/. |
|
| Details | Url | 1 | https://arxiv.org/pdf/1901.00846.pdf |
|
| Details | Url | 1 | https://www.reuters.com/article/us-crypto-currencies-altcoins-explainer/explainer-privacy-coin-monero-offers-near-total-anonymity- |
|
| Details | Url | 1 | https://www.zdnet.com/article/cyber-attackers-are-cashing-in-on-cryptocurrency-mining-but-heres-why- |
|
| Details | Url | 12 | https://blog.trendmicro.com/trendlabs- |
|
| Details | Url | 1 | https://blog.trendmicro.com/trendlabs-security-intelligence/cryptocurrency-mining- |
|
| Details | Url | 1 | https://blog.trendmicro.com/trendlabs-security-intelligence/outlaw-hacking-groups-botnet- |
|
| Details | Url | 1 | https://blog.trendmicro.com/trendlabs-security-intelligence/golang- |
|
| Details | Url | 1 | https://www.alienvault.com/blogs/labs-research/making-it-rain-cryptocurrency-mining-attacks-in-the-cloud/. |
|
| Details | Url | 1 | https://blog.trendmicro.com/trendlabs-security-intelligence/exposed- |
|
| Details | Url | 1 | https://www.trendmicro.com/vinfo/us/security/news/vulnerabilities-and-exploits/jenkins-vulnerability- |
|
| Details | Url | 1 | https://research.checkpoint.com/jenkins-miner-one-biggest-mining-operations-ever-discovered/. |
|
| Details | Url | 1 | https://www.theverge.com/2019/2/28/18244636/coinhive-cryptojacking-cryptocurrency-mining-shut-down-monero-date/. |
|
| Details | Url | 1 | https://radiflow.com/news/radiflow-reveals-first-documented-cryptocurrency-malware-attack-on-a-scada-network/. |
|
| Details | Url | 1 | https://www.sans.org/reading-room/whitepapers/analyst/2019-cloud-security-survey-38940/. |
|
| Details | Url | 1 | https://www.trendmicro.com/vinfo/us/security/news/cybercrime-and-digital-threats/more-than-13- |
|
| Details | Url | 1 | https://www.trendmicro.com/vinfo/us/security/news/online-privacy/unsecured-server-leaks-pii-of-almost-90-of-panama-residents/. |
|
| Details | Url | 1 | https://www.trendmicro.com/vinfo/us/security/definition/devops/. |
|
| Details | Url | 1 | https://www.trendmicro.com/vinfo/us/security/definition/eu-general-data-protection-regulation-gdpr. |
|
| Details | Url | 1 | https://blog.barracuda.com/2019/05/02/threat-spotlight-account-takeover/. |
|
| Details | Url | 1 | https://blog.trendmicro.com/trendlabs-security-intelligence/desktop- |
|
| Details | Url | 1 | https://blog.trendmicro.com/trendlabs-security-intelligence/phishing-attack-uses- |
|
| Details | Url | 1 | https://www.trendmicro.com/vinfo/us/security/news/cybercrime-and-digital-threats/health-information-of- |
|
| Details | Url | 1 | https://www.zdnet.com/article/emotet-hijacks-email-conversation-threads-to-insert-links-to-malware/. |
|
| Details | Url | 1 | https://blog.trendmicro.com/trendlabs-security-intelligence/same-old-yet- |
|
| Details | Url | 3 | https://www.proofpoint.com/us |
|
| Details | Url | 1 | https://docs.apwg.org/ |
|
| Details | Url | 1 | https://www.trendmicro.com/vinfo/us/security/news/cybercrime-and-digital-threats/ic3-bec-cost-organizations-us-1-2-billion-in-2018/. |
|
| Details | Url | 1 | https://www.wired.co.uk/article/hr-email-scam-phishing-impersonating-employees. |
|
| Details | Url | 1 | https://economictimes.indiatimes.com/tech/internet/how-chinese-hackers-pulled-off-the-italian-con-job-a-rs-130-crore- |
|
| Details | Url | 1 | https://www.shreveporttimes.com/story/news/2019/01/08/scammer-get-nearly-1-million-meant-caddo-charter- |
|
| Details | Url | 1 | https://www.trendmicro.com/vinfo/us/security/news/cybercrime-and-digital-threats/london-blue-group-using-evolving-bec- |
|
| Details | Url | 1 | https://www.trendmicro.com/vinfo/us/security/news/cybercrime-and-digital-threats/new-business-email- |
|
| Details | Url | 1 | https://www.trendmicro.com/vinfo/us/security/news/cybercrime-and-digital-threats/bec-scammers-steal-us-1-75-million-from-an-ohio-church/. |
|
| Details | Url | 1 | https://www.fbi.gov/news/pressrel/press-releases/fbi-releases-the-internet-crime-complaint-center-2018-internet-crime-report. |
|
| Details | Url | 1 | https://pdf.ic3.gov/2018_ic3report.pdf |
|
| Details | Url | 1 | https://www.trendmicro.com/vinfo/us/security/news/cybercrime-and-digital-threats/new-sextortion-scheme-demands-payment-in- |
|
| Details | Url | 1 | https://blog.trendmicro.com/trendlabs-security-intelligence/speculation-risky-understanding-meltdown-spectre/. |
|
| Details | Url | 2 | https://meltdownattack.com/. |
|
| Details | Url | 1 | https://www.trendmicro.com/vinfo/us/security/news/virtualization-and-cloud/proof-of- |
|
| Details | Url | 1 | https://www.trendmicro.com/vinfo/us/security/news/vulnerabilities-and-exploits/side-channel- |
|
| Details | Url | 1 | https://www.trendmicro.com/vinfo/us/security/news/vulnerabilities-and-exploits/nearly-1-million- |
|
| Details | Url | 1 | https://msrc-blog.microsoft.com/2019/05/14/prevent-a-worm-by-updating-remote-desktop-services- |
|
| Details | Url | 1 | https://www.trendmicro.com/vinfo/us/security/news/vulnerabilities-and-exploits/sandboxescaper-releases-exploit- |
|
| Details | Url | 1 | https://www.trendmicro.com/vinfo/us/security/news/vulnerabilities-and-exploits/cve- |
|
| Details | Url | 1 | https://www.trendmicro.com/vinfo/us/security/news/vulnerabilities-and-exploits/previously-patched-still- |
|
| Details | Url | 1 | https://www.twistlock.com/labs-blog/disclosing-directory-traversal-vulnerability-kubernetes-copy- |
|
| Details | Url | 1 | https://www.trendmicro.com/vinfo/us/security/news/vulnerabilities-and-exploits/stackstorm- |
|
| Details | Url | 1 | https://www.trendmicro.com/vinfo/us/security/definition/network-and-information-security- |
|
| Details | Url | 1 | https://www.itpro.co.uk/security/33384/it-chiefs-are-compromising-security-for-smoother-business-operations. |
|
| Details | Url | 4 | https://www.trendmicro.com/vinfo/us/security/news/security-technology/security-101-virtual-patching. |
|
| Details | Url | 1 | https://blog.trendmicro.com/trendlabs-security-intelligence/cve-2019-0725-an-analysis-of-its-exploitability/. |
|
| Details | Url | 1 | https://blog.trendmicro.com/trendlabs-security-intelligence/cve-2019-11815-a-cautionary-tale-about-cvss-scores/. |
|
| Details | Url | 1 | https://www.gartner.com/en/newsroom/press-releases/2018-11-07-gartner-identifies-top-10-strategic-iot-technologies-and-trends/. |
|
| Details | Url | 1 | https://www.trendmicro.com/vinfo/us/security/news/internet-of-things/mirai-variant-spotted-using-multiple-exploits-targets- |
|
| Details | Url | 1 | https://unit42.paloaltonetworks.com/unit42-finds-new-mirai-gafgyt-iotlinux-botnet-campaigns/. |
|
| Details | Url | 1 | https://blog.trendmicro.com/trendlabs-security-intelligence/thinkphp-vulnerability-abused-by-botnets-hakai- |
|
| Details | Url | 1 | https://www.trendmicro.com/vinfo/us/security/news/cyber-attacks/hiddenwasp-malware-targets-linux-systems- |
|
| Details | Url | 1 | https://www.trendmicro.com/vinfo/us/security/news/cybercrime-and-digital-threats/-silex-malware-bricks-iot-devices-with-weak-passwords/. |
|
| Details | Url | 3 | https://www.trendmicro.com/vinfo/us/security/news/internet-of- |
|
| Details | Url | 1 | https://www.trendmicro.com/vinfo/us/security/news/internet-of-things/iot-devices-in-the-workplace-security- |
|
| Details | Url | 1 | https://www.trendmicro.com/vinfo/us/security/definition/industrial-internet-of-things-iiot/. |
|
| Details | Url | 7 | https://www.trendmicro.com/vinfo/us/security/news/internet-of-things |
|
| Details | Url | 1 | https://www.trendmicro.com/vinfo/us/security/news/internet-of-things/securing-enterprises-for-5g-connectivity. |
|
| Details | Url | 1 | https://www.trendmicro.com/vinfo/us/security/news/internet-of-things/exposed-medical-devices- |
|
| Details | Url | 1 | https://www.trendmicro.com/vinfo/us/security/news/internet-of-things/-the-iiot-attack-surface-threats-and-security-solutions/. |
|
| Details | Url | 1 | https://www.forbes.com/sites/louiscolumbus/2018/06/06/10-charts-that-will-challenge-your-perspective-of-iots-growth/. |
|
| Details | Url | 1 | https://static.tenable.com/marketing/research-reports/ponemonreport-cybersecurity_in_operational_technology.pdf |
|
| Details | Url | 1 | https://www.trendmicro.com/vinfo/us/security/news/cyber-attacks/triton-wielding-its-trident- |
|
| Details | Url | 1 | https://www.trendmicro.com/vinfo/us/security/news/cyber-attacks/new-critical-infrastructure-facility-hit-by-group-behind-triton/. |
|
| Details | Url | 1 | https://www.trendmicro.com/vinfo/us/security/news/cyber-attacks/xenotime-hacking- |