{"id":13761,"date":"2018-11-05T10:10:04","date_gmt":"2018-11-05T18:10:04","guid":{"rendered":"http:\/\/www.palada.net\/index.php\/2018\/11\/05\/news-7528\/"},"modified":"2018-11-05T10:10:04","modified_gmt":"2018-11-05T18:10:04","slug":"news-7528","status":"publish","type":"post","link":"http:\/\/www.palada.net\/index.php\/2018\/11\/05\/news-7528\/","title":{"rendered":"A week in security (October 29 \u2013 November 4)"},"content":{"rendered":"<p><strong>Credit to Author: Malwarebytes Labs| Date: Mon, 05 Nov 2018 17:37:44 +0000<\/strong><\/p>\n<p>Last week on Malwarebytes Labs, we looked at a rogue cryptocurrency app <a href=\"https:\/\/blog.malwarebytes.com\/threat-analysis\/2018\/10\/mac-cryptocurrency-ticker-app-installs-backdoors\/\" target=\"_blank\" rel=\"noopener\">installing backdoors<\/a>, took a dive into the world of <a href=\"https:\/\/blog.malwarebytes.com\/101\/2018\/10\/removing-jam-printer-security\/\" target=\"_blank\" rel=\"noopener\">printer security<\/a>, explored <a href=\"https:\/\/blog.malwarebytes.com\/security-world\/privacy-security-world\/2018\/10\/tighten-security-increase-privacy-browser\/\" target=\"_blank\" rel=\"noopener\">browser privacy tweaks<\/a>, highlighted a <a href=\"https:\/\/blog.malwarebytes.com\/cybercrime\/2018\/10\/tomorrowland-data-breach\/\" target=\"_blank\" rel=\"noopener\">music festival\u2013themed breach<\/a>, and introduced <a href=\"https:\/\/blog.malwarebytes.com\/malwarebytes-news\/product-updates\/2018\/11\/introduction-malwarebytes-for-chromebook\/\" target=\"_blank\" rel=\"noopener\">Malwarebytes for Chromebook<\/a>.<\/p>\n<h3>Other cybersecurity news<\/h3>\n<ul>\n<li>Memory <a href=\"https:\/\/securelist.com\/hackers-attacking-your-memories\/88285\/\" target=\"_blank\" rel=\"noopener\">hacks<\/a>? (Source: Secure List)<\/li>\n<li>Gandcrab: <a style=\"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen-Sans, Ubuntu, Cantarell, 'Helvetica Neue', sans-serif;\" href=\"https:\/\/labs.bitdefender.com\/2018\/10\/gandcrab-the-most-popular-multi-million-dollar-ransomware-of-the-year\/\" target=\"_blank\" rel=\"noopener\">hugely popular<\/a><span style=\"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen-Sans, Ubuntu, Cantarell, 'Helvetica Neue', sans-serif;\"> (Source: BitDefender)<\/span><\/li>\n<li><a style=\"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen-Sans, Ubuntu, Cantarell, 'Helvetica Neue', sans-serif;\" href=\"https:\/\/ico.org.uk\/about-the-ico\/news-and-events\/news-and-blogs\/2018\/10\/ico-sets-alarm-bells-ringing-for-cold-callers-as-it-fines-home-security-firms\/\" target=\"_blank\" rel=\"noopener\">Huge fines<\/a><span style=\"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen-Sans, Ubuntu, Cantarell, 'Helvetica Neue', sans-serif;\"> for cold callers (Source: ICO)<\/span><\/li>\n<li>Micro: bit vendor <a style=\"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen-Sans, Ubuntu, Cantarell, 'Helvetica Neue', sans-serif;\" href=\"https:\/\/www.theregister.co.uk\/2018\/11\/02\/kitronik_online_shop_malware\/\" target=\"_blank\" rel=\"noopener\">breached<\/a><span style=\"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen-Sans, Ubuntu, Cantarell, 'Helvetica Neue', sans-serif;\"> (Source: The Register)<\/span><\/li>\n<li>Spies charged with <a style=\"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen-Sans, Ubuntu, Cantarell, 'Helvetica Neue', sans-serif;\" href=\"https:\/\/www.justice.gov\/opa\/pr\/chinese-intelligence-officers-and-their-recruited-hackers-and-insiders-conspired-steal\" target=\"_blank\" rel=\"noopener\">blueprint theft<\/a><span style=\"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen-Sans, Ubuntu, Cantarell, 'Helvetica Neue', sans-serif;\"> (Source: US Department of Justice)<\/span><\/li>\n<li>Google Home <a style=\"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen-Sans, Ubuntu, Cantarell, 'Helvetica Neue', sans-serif;\" href=\"https:\/\/jerrygamblin.com\/2018\/10\/29\/google-home-insecurity\/\" target=\"_blank\" rel=\"noopener\">(in)security<\/a><span style=\"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen-Sans, Ubuntu, Cantarell, 'Helvetica Neue', sans-serif;\"> (Source: Jerry Gamblin)<\/span><\/li>\n<li>Microsoft, Amazon <a style=\"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen-Sans, Ubuntu, Cantarell, 'Helvetica Neue', sans-serif;\" href=\"https:\/\/betanews.com\/2018\/11\/01\/microsoft-amazon-email-impersonation\/\" target=\"_blank\" rel=\"noopener\">most impersonated<\/a><span style=\"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen-Sans, Ubuntu, Cantarell, 'Helvetica Neue', sans-serif;\"> in email attacks (source: BetaNews)<\/span><\/li>\n<li>Techniques <a style=\"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen-Sans, Ubuntu, Cantarell, 'Helvetica Neue', sans-serif;\" href=\"https:\/\/www.helpnetsecurity.com\/2018\/11\/02\/expose-your-browsing-history-to-attackers\/\" target=\"_blank\" rel=\"noopener\">expose browser history<\/a><span style=\"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen-Sans, Ubuntu, Cantarell, 'Helvetica Neue', sans-serif;\"> (source: Help Net Security)<\/span><\/li>\n<li>Mac microphones <a style=\"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen-Sans, Ubuntu, Cantarell, 'Helvetica Neue', sans-serif;\" href=\"https:\/\/www.apple.com\/mac\/docs\/Apple_T2_Security_Chip_Overview.pdf\" target=\"_blank\" rel=\"noopener\">switch off<\/a><span style=\"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen-Sans, Ubuntu, Cantarell, 'Helvetica Neue', sans-serif;\"> when the lid is closed [PDF] (Source: Apple)<\/span><\/li>\n<li>Private health and <a style=\"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen-Sans, Ubuntu, Cantarell, 'Helvetica Neue', sans-serif;\" href=\"https:\/\/www.zdnet.com\/article\/phishing-spikes-as-private-health-continues-to-be-most-breached-sector-in-australia\/\" target=\"_blank\" rel=\"noopener\">phishing spikes<\/a><span style=\"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen-Sans, Ubuntu, Cantarell, 'Helvetica Neue', sans-serif;\"> (source: ZDNET)<\/span><\/li>\n<\/ul>\n<p>Stay safe, everyone!<\/p>\n<p>The post <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\/security-world\/week-in-security\/2018\/11\/week-security-october-29-november-4\/\">A week in security (October 29 \u2013 November 4)<\/a> appeared first on <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\">Malwarebytes Labs<\/a>.<\/p>\n<p><a href=\"https:\/\/blog.malwarebytes.com\/security-world\/week-in-security\/2018\/11\/week-security-october-29-november-4\/\" target=\"bwo\" >https:\/\/blog.malwarebytes.com\/feed\/<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p><strong>Credit to Author: Malwarebytes Labs| Date: Mon, 05 Nov 2018 17:37:44 +0000<\/strong><\/p>\n<table cellpadding='10'>\n<tr>\n<td valign='top' align='center'><a href='https:\/\/blog.malwarebytes.com\/security-world\/week-in-security\/2018\/11\/week-security-october-29-november-4\/' title='A week in security (October 29 \u2013 November 4)'><img src='https:\/\/blog.malwarebytes.com\/wp-content\/uploads\/2018\/01\/shutterstock_610335074.jpg' border='0'  width='300px'  \/><\/a><\/td>\n<\/tr>\n<tr>\n<td valign='top' align='left'>A roundup of security news from October 29 to November 4, including more problems with home hubs, phishing attack spikes, massively popular ransomware, and spies being charged for blueprint theft.<\/p>\n<p>Categories: <\/p>\n<ul class=\"post-categories\">\n<li><a href=\"https:\/\/blog.malwarebytes.com\/category\/security-world\/\" rel=\"category tag\">Security world<\/a><\/li>\n<li><a href=\"https:\/\/blog.malwarebytes.com\/category\/security-world\/week-in-security\/\" rel=\"category tag\">Week in security<\/a><\/li>\n<\/ul>\n<p>Tags: <a href=\"https:\/\/blog.malwarebytes.com\/tag\/blueprint-theft\/\" rel=\"tag\">blueprint theft<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/chromebook\/\" rel=\"tag\">Chromebook<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/cryptocurrency\/\" rel=\"tag\">cryptocurrency<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/hacks\/\" rel=\"tag\">hacks<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/home-hub\/\" rel=\"tag\">home hub<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/iot\/\" rel=\"tag\">IoT<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/malwarebytes-chromebok\/\" rel=\"tag\">Malwarebytes Chromebok<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/microphones\/\" rel=\"tag\">microphones<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/phishing\/\" rel=\"tag\">phishing<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/ransomware\/\" rel=\"tag\">ransomware<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/week-in-security\/\" rel=\"tag\">week in security<\/a><\/p>\n<table width='100%'>\n<tr>\n<td align=right>\n<p><b>(<a href='https:\/\/blog.malwarebytes.com\/security-world\/week-in-security\/2018\/11\/week-security-october-29-november-4\/' title='A week in security (October 29 \u2013 November 4)'>Read more&#8230;<\/a>)<\/b><\/p>\n<\/td>\n<\/tr>\n<\/table>\n<\/td>\n<\/tr>\n<\/table>\n<p>The post <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\/security-world\/week-in-security\/2018\/11\/week-security-october-29-november-4\/\">A week in security (October 29 \u2013 November 4)<\/a> appeared first on <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\">Malwarebytes Labs<\/a>.<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[10488,10378],"tags":[20050,20020,11052,7093,20051,10495,20052,20053,3924,3765,10497,10498],"class_list":["post-13761","post","type-post","status-publish","format-standard","hentry","category-malwarebytes","category-security","tag-blueprint-theft","tag-chromebook","tag-cryptocurrency","tag-hacks","tag-home-hub","tag-iot","tag-malwarebytes-chromebok","tag-microphones","tag-phishing","tag-ransomware","tag-security-world","tag-week-in-security"],"_links":{"self":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/13761","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=13761"}],"version-history":[{"count":0,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/13761\/revisions"}],"wp:attachment":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=13761"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=13761"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=13761"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}