{"id":13845,"date":"2018-11-16T08:00:11","date_gmt":"2018-11-16T16:00:11","guid":{"rendered":"https:\/\/www.palada.net\/index.php\/2018\/11\/16\/news-7612\/"},"modified":"2018-11-16T08:00:11","modified_gmt":"2018-11-16T16:00:11","slug":"news-7612","status":"publish","type":"post","link":"http:\/\/www.palada.net\/index.php\/2018\/11\/16\/news-7612\/","title":{"rendered":"This Week in Security News: Holiday Cybercriminals & Cryptomining Malware"},"content":{"rendered":"

Credit to Author: Jon Clay (Global Threat Communications)| Date: Fri, 16 Nov 2018 15:21:25 +0000<\/strong><\/p>\n

\"\"<\/p>\n

Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, learn the common threats and the best practices for defending against cybercriminals during November\u2019s online shopping season. <\/em>Also, see the different cryptomining malware affecting Linux systems and learn what security tools are needed to defend against these threats.<\/p>\n

Read on:<\/p>\n

Cryptocurrency Mining Malware uses Various Evasion Techniques, Including Windows Installer, as Part of its Routine<\/a><\/strong><\/p>\n

The evolving aspect of cryptocurrency mining malware \u2014 constantly adding evasion techniques \u2014 means that powerful security tools are often needed to defend users from these kinds of threats.<\/em>\u00a0<\/em><\/strong><\/p>\n

Researchers Earn Thousands for Exposing Mobile Device Exploits at Pwn2Own<\/a><\/strong><\/p>\n

Security researchers competing in the Pwn2Own Tokyo competition earned a collective $325,000 for demonstrating new exploits on devices made by Samsung, Xiaomi and Apple.<\/em><\/p>\n

Cryptocurrency-mining Malware Targets Linux Systems, Uses Rootkit for Stealth<\/a><\/strong><\/p>\n

Trend Micro recently encountered a cryptocurrency-mining malware affecting Linux systems. It is notable for hiding the malicious process\u2019 presence from monitoring tools.\u00a0<\/em>\u00a0<\/em><\/p>\n

House Passes Final Version of Bill Creating Cyber Agency at DHS, Sends Measure to President<\/a><\/strong><\/p>\n

The U.S. House of Representatives gave unanimous approval to create a stand-alone cybersecurity agency at the Department of Homeland Security, and sent the bill to President Trump for his signature.<\/em><\/p>\n

When Cybercriminals Hitch On Your Holiday Spending: Online Shopping Trends and Threats<\/a><\/strong><\/p>\n

November is expected to see the\u00a0bulk of 2018 online traffic and spending. Learn the common threats and the best practices for defending against cybercriminals during this online shopping season.<\/em>\u00a0<\/em><\/p>\n

Russian Hackers Largely Skipped the Midterms, and No One Really Knows Why<\/strong><\/a><\/p>\n

After unleashing cyberattacks on the U.S. during the 2016 presidential election, Russia\u2019s hackers mostly appeared to have sat on the sidelines during the campaign ahead of last week\u2019s midterm elections.<\/em><\/p>\n

Using Machine Learning to Cluster Malicious Network Flows From Gh0st RAT Variants<\/a><\/strong><\/p>\n

To address the growing number of network threats and keep abreast with the changing sophistication of network intrusion methods, Trend Micro looks into\u00a0network flow clustering.<\/em>\u00a0<\/em><\/p>\n

More than 50 Nations, but not U.S., Sign onto Cybersecurity Pact<\/a><\/strong><\/p>\n

At the Paris Peace Forum, an international agreement on cybersecurity principles earned signatures from over 50 nations, 130 private sector groups and 90 charitable groups, but not the U.S., Russia or China.<\/em><\/p>\n

Hide and Script: Inserted Malicious URLs within Office Documents\u2019 Embedded Videos<\/a><\/strong><\/p>\n

In late October, security researchers showed\u00a0from Cymulate\u00a0showed\u00a0a PoC exploiting a logic bug that could allow hackers to abuse the online video feature in Microsoft Office to deliver malware. <\/em><\/p>\n

Firefox Warns if the Website You’re Visiting Suffered a Data Breach<\/a><\/strong><\/p>\n

The Firefox Monitor service warns you if your account was among the hundreds of millions affected by data breaches at sites like Yahoo, LinkedIn and Equifax.<\/em><\/p>\n

The Importance of Employee Cybersecurity Training: Top Strategies and Best Practices<\/a><\/strong><\/p>\n

With robust employee user training that helps drive home the importance of\u00a0a\u00a0staffer\u2019s role in the overall data protection and cybersecurity landscape, businesses can reduce the risk of a digital attacker.<\/em><\/p>\n

As cryptomining malware evolves, do you think more users will be prepared to defend against these threats in 2019? Why or why not? Share your thoughts in the comments below or follow me on Twitter to continue the conversation: @JonLClay.<\/a><\/p>\n

The post This Week in Security News: Holiday Cybercriminals & Cryptomining Malware<\/a> appeared first on <\/a>.<\/p>\n

http:\/\/feeds.trendmicro.com\/TrendMicroSimplySecurity<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

Credit to Author: Jon Clay (Global Threat Communications)| Date: Fri, 16 Nov 2018 15:21:25 +0000<\/strong><\/p>\n

\"\"<\/p>\n

Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, learn the common threats and the best practices for defending against cybercriminals during November\u2019s online shopping season. Also, see the different cryptomining malware affecting Linux systems and…<\/p>\n

The post This Week in Security News: Holiday Cybercriminals & Cryptomining Malware<\/a> appeared first on <\/a>.<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[10378,10413],"tags":[11052,15080,10422,4500,12310,11448,10416,714,11410],"class_list":["post-13845","post","type-post","status-publish","format-standard","hentry","category-security","category-trendmicro","tag-cryptocurrency","tag-cryptomining","tag-current-news","tag-cybersecurity","tag-equifax","tag-linkedin","tag-pwn2own","tag-security","tag-yahoo"],"_links":{"self":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/13845","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=13845"}],"version-history":[{"count":0,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/13845\/revisions"}],"wp:attachment":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=13845"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=13845"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=13845"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}