Adobe has released a security update to address Critical vulnerabilities in Flash Player

WHAT HAPPENED?  

LockCrypt Ransomware Spreading via RDP Brute-Force Attacks

From: https://www.alienvault.com/blogs/labs-research/lockcrypt-ransomware-spreading-via-rdp-brute-force-attacks

GitHub - A Cyber Danger in Plain Sight

Cryptojacking Malware Was Secretly Mining Monero On Many Government and University Websites

CVE-2018-9843 which allows remote code execution on the CyberArk Web Access

XXX was alerted to CVE-2018-9843 which allows remote code execution on the CyberArk Web Access through the REST API. There is also Proof of Concept code out there for this vulnerability as well.

Example of supply chain attack, lateral movement and precise targeting

Inside the Unnerving Supply Chain Attack That Corrupted CCleaner

Simple rsync mistake exposes data on 1M potential college applicants

Personal information of 1 million potential college applicants 'exposed inadvertently' Sensitive personal information belonging to more than 1 million individuals seeking information about higher education institutions was exposed online earlier this year, EdScoop has learned.

Vulnerable Camera - how bad can it be?

TLP: WHITE MS-ISAC CYBERSECURITY ADVISORY   MS-ISAC ADVISORY NUMBER: 2018-031   DATE(S) ISSUED: 03/21/2018   SUBJECT: Multiple Vulnerabilities in Pelco Sarix Professional Could Allow for Code Execution   OVERVIEW:

Russian Government Cyber Activity Targeting Energy and Other Critical Infrastructure Sectors

From: https://www.us-cert.gov/ncas/alerts/TA18-074A

Drupal core - Critical - Multiple Vulnerabilities - SA-CORE-2018-001

Drupal core - Critical - Multiple Vulnerabilities - SA-CORE-2018-001 | Drupal.org