7.5M Adobe Creative Cloud User Records Exposed, City Of Joburg Ransomware Attack, and APT28 Updates

November 1, 2019 Digital Shadows

Adam Cook, Philip Doherty, and Viktoria Austin host this week’s ShadowTalk update around an unsecured Elasticsearch database exposing account information of about 7.5 million Adobe Creative Cloud users. The team then looks at the news story around the City of Johannesburg experiencing a ransomware attack as well as APT28 (aka Fancy Bear) targeting anti-doping authorities and sporting organizations.

***Resources from this week’s episode***

- BriansClub Blog from Viktoria: https://www.digitalshadows.com/blog-and-research/cybercriminal-credit-card-stores-is-brian-out-of-the-club/

- Understanding Different Cybercriminal Platforms: https://www.digitalshadows.com/blog-and-research/understanding-the-different-cybercriminal-platforms-avcs-marketplaces-and-forums/

- Too Much Information - The Sequel: https://resources.digitalshadows.com/whitepapers-and-reports/too-much-information-the-sequel

-Adam’s World Cup Blog: https://www.digitalshadows.com/blog-and-research/threats-to-the-2018-football-world-cup/

News Stories:
https://www.zdnet.com/article/adobe-left-7-5-million-creative-cloud-user-records-exposed-online/
https://www.ccn.com/johannesburg-shuts-down-bitcoin-ransomware-attack/

Previous Report
Weekly Intelligence Summary 24 Oct - 31 Oct 2019
Weekly Intelligence Summary 24 Oct - 31 Oct 2019

In the spotlight this week: A card skimming operation targeted the online retailer First Aid Beauty and eva...

Next Post
Honeypots: Tracking Attacks Against Misconfigured or Exposed Services
Honeypots: Tracking Attacks Against Misconfigured or Exposed Services

Honeypots can be useful tools for gathering information on current attack techniques. Conversely, they can ...