{"id":10179,"date":"2017-10-30T13:10:46","date_gmt":"2017-10-30T21:10:46","guid":{"rendered":"http:\/\/www.palada.net\/index.php\/2017\/10\/30\/news-3952\/"},"modified":"2017-10-30T13:10:46","modified_gmt":"2017-10-30T21:10:46","slug":"news-3952","status":"publish","type":"post","link":"http:\/\/www.palada.net\/index.php\/2017\/10\/30\/news-3952\/","title":{"rendered":"A week in security (October 23 \u2013 October 29)"},"content":{"rendered":"<p><strong>Credit to Author: Malwarebytes Labs| Date: Mon, 30 Oct 2017 20:01:41 +0000<\/strong><\/p>\n<p>Welcome back to &#8220;A week in security.&#8221; Last week, we took a look at how <a href=\"https:\/\/blog.malwarebytes.com\/security-world\/2017\/10\/digital-forensics-recovering-deleted-files\/\" target=\"_blank\" rel=\"noopener\">deleted files can be recovered<\/a>, explored the <a href=\"https:\/\/blog.malwarebytes.com\/cybercrime\/2017\/10\/badrabbit-ransomware-strikes-eastern-europe\/\" target=\"_blank\" rel=\"noopener\">BadRabbit ransomware<\/a> plague attacking Eastern Europe (including a <a href=\"https:\/\/blog.malwarebytes.com\/threat-analysis\/2017\/10\/badrabbit-closer-look-new-version-petyanotpetya\/\" target=\"_blank\" rel=\"noopener\">deep dive into the code)<\/a>, and talked about what it takes to\u00a0<a href=\"https:\/\/blog.malwarebytes.com\/101\/2017\/10\/what-it-takes-to-work-in-cybersecurity\/\" target=\"_blank\" rel=\"noopener\">work in security<\/a>. One of our researchers, who is a PhD candidate in immunobiology at Yale, also discussed\u00a0<a href=\"https:\/\/blog.malwarebytes.com\/101\/2017\/10\/our-computers-ourselves-digital-vs-biological-security\/\" target=\"_blank\" rel=\"noopener\">digital vs biological security.<\/a>\u00a0Finally, we launched a new series called &#8220;Please don&#8217;t buy this,&#8221; and our first edition featured\u00a0<a href=\"https:\/\/blog.malwarebytes.com\/security-world\/2017\/10\/please-dont-buy-this-smart-locks\/\" target=\"_blank\" rel=\"noopener\">smart locks<\/a>.<\/p>\n<p>In other news around the net:<\/p>\n<ul>\n<li>Bad news for Google Play Protect: it might not be the <a href=\"https:\/\/www.theregister.co.uk\/2017\/10\/26\/google_play_android_malware_bad\/\" target=\"_blank\" rel=\"noopener\">malware-smashing barrier<\/a> everyone was hoping it&#8217;d be. (source: The Register)<\/li>\n<li>A Dell customer support domain <a href=\"https:\/\/krebsonsecurity.com\/2017\/10\/dell-lost-control-of-key-customer-support-domain-for-a-month-in-2017\/\" target=\"_blank\" rel=\"noopener\">lapses<\/a>, with predictable &#8220;Oh no, here&#8217;s a headache&#8221; results. (source: Krebs on Security)<\/li>\n<li>Home appliances <a href=\"https:\/\/blog.checkpoint.com\/2017\/10\/26\/homehack-how-hackers-could-have-taken-control-of-lgs-iot-home-appliances\/\" target=\"_blank\" rel=\"noopener\">going rogue<\/a>? You&#8217;d better believe it. (source: Check Point blog)<\/li>\n<li>Old, reused passwords are still causing problems\u2014even for <a href=\"https:\/\/www.helpnetsecurity.com\/2017\/10\/25\/coinhive-breached\/\" target=\"_blank\" rel=\"noopener\">coin miners.<\/a> (source: Help Net Security)<\/li>\n<li>Oh look, <a href=\"https:\/\/blog.eset.ie\/2017\/10\/23\/fake-cryptocurrency-trading-apps-on-google-play\/\" target=\"_blank\" rel=\"noopener\">even more bad apps<\/a> on Google Play. (source: ESET Blog)<\/li>\n<li>Exploits, Word documents, and DDE, <a href=\"https:\/\/www.techrepublic.com\/article\/nearly-undetectable-microsoft-office-exploit-installs-malware-without-an-email-attachment\/\" target=\"_blank\" rel=\"noopener\">oh my<\/a>. (source: Tech Republic)<\/li>\n<li>Turns out just looking at porn can get you infected: <a href=\"http:\/\/www.grimsbytelegraph.co.uk\/news\/users-xxx-website-pornhub-infected-691256\" target=\"_blank\" rel=\"noopener\">porn site ads<\/a>\u00a0deliver malvertising. (source: Grimsby Telegraph)<\/li>\n<li>Fake Apple ID phish scams are still <a href=\"http:\/\/bgr.com\/2017\/10\/27\/iphone-phishing-scam-fake-apple-id-email\/\" target=\"_blank\" rel=\"noopener\">very popular<\/a>. (source: BGR)<\/li>\n<li>The NHS ransomware attack &#8220;<a href=\"https:\/\/www.standard.co.uk\/news\/uk\/simple-computer-patch-would-have-stopped-nhs-cyber-attack-wannacry-a3669821.html\" target=\"_blank\" rel=\"noopener\">could have been avoided.<\/a>&#8221; (source: Evening Standard)<\/li>\n<li>That speeding notification email you just received is a <a href=\"http:\/\/www.yorkshirepost.co.uk\/news\/yorkshire-motorists-warned-not-to-fall-victim-to-speeding-scam-email-1-8829445\" target=\"_blank\" rel=\"noopener\">scam.<\/a> (source: Yorkshire Post)<\/li>\n<\/ul>\n<p>Safe surfing, everyone!<\/p>\n<p>The post <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\/security-world\/week-in-security\/2017\/10\/a-week-in-security-october-23-october-29\/\">A week in security (October 23 \u2013 October 29)<\/a> appeared first on <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\">Malwarebytes Labs<\/a>.<\/p>\n<p><a href=\"https:\/\/blog.malwarebytes.com\/security-world\/week-in-security\/2017\/10\/a-week-in-security-october-23-october-29\/\" target=\"bwo\" >https:\/\/blog.malwarebytes.com\/feed\/<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p><strong>Credit to Author: Malwarebytes Labs| Date: Mon, 30 Oct 2017 20:01:41 +0000<\/strong><\/p>\n<table cellpadding='10'>\n<tr>\n<td valign='top' align='center'><a href='https:\/\/blog.malwarebytes.com\/security-world\/week-in-security\/2017\/10\/a-week-in-security-october-23-october-29\/' title='A week in security (October 23 \u2013 October 29)'><img src='https:\/\/blog.malwarebytes.com\/wp-content\/uploads\/2017\/01\/photodune-702886-calendar-l.jpg' border='0'  width='300px'  \/><\/a><\/td>\n<\/tr>\n<tr>\n<td valign='top' align='left'>A week in security features a roundup of news stories from the week of October 23 \u2013 October 29.<\/p>\n<p>Categories: <\/p>\n<ul class=\"post-categories\">\n<li><a href=\"https:\/\/blog.malwarebytes.com\/category\/security-world\/\" rel=\"category tag\">Security world<\/a><\/li>\n<li><a href=\"https:\/\/blog.malwarebytes.com\/category\/security-world\/week-in-security\/\" rel=\"category tag\">Week in security<\/a><\/li>\n<\/ul>\n<p>Tags: <a href=\"https:\/\/blog.malwarebytes.com\/tag\/malware\/\" rel=\"tag\">malware<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/news-2\/\" rel=\"tag\">news<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/roundup\/\" rel=\"tag\">roundup<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/scam\/\" rel=\"tag\">scam<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/social-engineering\/\" rel=\"tag\">Social Engineering<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/week-in-security\/\" rel=\"tag\">week in security<\/a><\/p>\n<table width='100%'>\n<tr>\n<td align=right>\n<p><b>(<a href='https:\/\/blog.malwarebytes.com\/security-world\/week-in-security\/2017\/10\/a-week-in-security-october-23-october-29\/' title='A week in security (October 23 \u2013 October 29)'>Read more&#8230;<\/a>)<\/b><\/p>\n<\/td>\n<\/tr>\n<\/table>\n<\/td>\n<\/tr>\n<\/table>\n<p>The post <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\/security-world\/week-in-security\/2017\/10\/a-week-in-security-october-23-october-29\/\">A week in security (October 23 \u2013 October 29)<\/a> appeared first on <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\">Malwarebytes Labs<\/a>.<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[10488,10378],"tags":[3764,32,13053,3985,10497,10510,10498],"class_list":["post-10179","post","type-post","status-publish","format-standard","hentry","category-malwarebytes","category-security","tag-malware","tag-news","tag-roundup","tag-scam","tag-security-world","tag-social-engineering","tag-week-in-security"],"_links":{"self":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/10179","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=10179"}],"version-history":[{"count":0,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/10179\/revisions"}],"wp:attachment":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=10179"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=10179"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=10179"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}