CCRL Intel

Actors within the criminal communities have claimed that they successfully weaponized exploits for CVE-2018-0802; a vulnerability in the Microsoft Office Equation Editor in Microsoft Office 2007, 2010, 2013, and 2016 (equation editor)announced on January 10, 2018. This memory corruption vulnerability allows for remote code execution and as such is of interest due to the ability to use it to deliver malicious payloads remotely.  See https://www.youtube.com/watch?v=yhKdI2iiMI4&t=131s for a demo by the actor darkcoderz.

(A1 - Completely Reliable, Confirmed) - Joker's Stash - He usually breaks breaches up into bases, the latest of which - WAGAMAX 50,000 cards  (CVV2) - to be uploaded 30 December 11 PM New York time. Confirmed - 2 January 2018

( A1 - Completely Reliable, Confirmed ) -  Joker's Stash  advertises 3,000,000 US payment cards from the breach of luxury clothing stores. The latest dump is USA by city/state/zip TR1 + TR2/TR2. Confirmed - 2 January 2018