Platinum APT First to Abuse Intel Chip Management Feature

Microsoft has found a file-transfer tool used by the Platinum APT that leverages Intel Active Management Technology to stealthily load malware onto networked computers.

Link: https://threatpost.com/platinum-apt-first-to-abuse-intel-chip-management-feature/126166/

NSA’s EternalBlue Exploit Ported to Windows 10

Researchers have ported the EternalBlue exploit to Windows 10, meaning that any unpatched version of Windows can be affected by the NSA attack.

Link: https://threatpost.com/nsas-eternalblue-exploit-ported-to-windows-10/126087/

WannaCry Development Errors Enable File Recovery

Researchers at Kaspersky Lab have found a number of programming errors in the WannaCry ransomware code that put file recovery within reach of sysadmins.

Link: https://threatpost.com/wannacry-development-errors-enable-file-recovery/126002/

Yahoo Retires ImageMagick After Bugs Leak Server Memory

Researcher Chris Evans reported a new bug and showed how also used a previously known flaw in ImageMagick to leak Yahoo server data and steal images and authentication secrets.

Link: https://threatpost.com/yahoo-retires-imagemagick-after-bugs-leak-server-memory/125862/