{"id":14491,"date":"2019-02-04T10:10:03","date_gmt":"2019-02-04T18:10:03","guid":{"rendered":"http:\/\/www.palada.net\/index.php\/2019\/02\/04\/news-8243\/"},"modified":"2019-02-04T10:10:03","modified_gmt":"2019-02-04T18:10:03","slug":"news-8243","status":"publish","type":"post","link":"http:\/\/www.palada.net\/index.php\/2019\/02\/04\/news-8243\/","title":{"rendered":"A week in security (January 28 \u2013 February 3)"},"content":{"rendered":"<p><strong>Credit to Author: Malwarebytes Labs| Date: Mon, 04 Feb 2019 17:00:49 +0000<\/strong><\/p>\n<p>Last week, we ran another in our <a href=\"https:\/\/blog.malwarebytes.com\/101\/2019\/01\/interview-malware-hunter-jerome-segura\/\" target=\"_blank\" rel=\"noopener\">interview with a malware hunter<\/a> series, explained a <a href=\"https:\/\/blog.malwarebytes.com\/101\/2019\/01\/apples-facetime-privacy-bug-allowed-possible-spying\/\" target=\"_blank\" rel=\"noopener\">FaceTime vulnerability<\/a>, and took a deep dive into a <a href=\"https:\/\/blog.malwarebytes.com\/threat-analysis\/2019\/01\/analyzing-new-stealer-written-golang\/\" target=\"_blank\" rel=\"noopener\">new stealer<\/a>. We also threw some light<span class=\"Apple-converted-space\">\u00a0 <\/span>on a <a href=\"https:\/\/blog.malwarebytes.com\/security-world\/business-security-world\/2019\/02\/houzz-data-breach-why-informing-your-customers-is-the-right-call\/\" target=\"_blank\" rel=\"noopener\">Houzz data breach<\/a>, and what exactly happened between <a href=\"https:\/\/blog.malwarebytes.com\/security-world\/2019\/01\/apple-pulls-facebook-enterprise-certificate\/\" target=\"_blank\" rel=\"noopener\">Apple and Facebook<\/a>.<\/p>\n<h3>Other cybersecurity news<\/h3>\n<ul>\n<li>Kwik Fit hit by malware: Car service specialist runs into trouble when <a href=\"https:\/\/www.bbc.co.uk\/news\/technology-47062480\" target=\"_blank\" rel=\"noopener\">systems go offline<\/a>. (Source: BBC)<\/li>\n<li>Mozilla publishes tracking policy<span style=\"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen-Sans, Ubuntu, Cantarell, 'Helvetica Neue', sans-serif;\">: Mozilla fleshes out out their vision of what <\/span><a style=\"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen-Sans, Ubuntu, Cantarell, 'Helvetica Neue', sans-serif;\" href=\"https:\/\/wiki.mozilla.org\/Security\/Anti_tracking_policy\" target=\"_blank\" rel=\"noopener\">is and isn\u2019t acceptable<\/a><span style=\"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen-Sans, Ubuntu, Cantarell, 'Helvetica Neue', sans-serif;\"> in tracking land. (Source: Mozilla)<\/span><\/li>\n<li>Distracting smart speakers<span style=\"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen-Sans, Ubuntu, Cantarell, 'Helvetica Neue', sans-serif;\">: How you can effectively <\/span><a style=\"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen-Sans, Ubuntu, Cantarell, 'Helvetica Neue', sans-serif;\" href=\"https:\/\/www.theregister.co.uk\/2019\/02\/01\/project_alias\/\" target=\"_blank\" rel=\"noopener\">drown out your smart speake<\/a><span style=\"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen-Sans, Ubuntu, Cantarell, 'Helvetica Neue', sans-serif;\">r with a bit of distraction. (Source: The Register)<\/span><\/li>\n<li>Privacy attack aimed at 3\/4\/5G users<span style=\"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen-Sans, Ubuntu, Cantarell, 'Helvetica Neue', sans-serif;\">: Theoretical fake mobile towers are back in business, with an investment in <\/span><a style=\"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen-Sans, Ubuntu, Cantarell, 'Helvetica Neue', sans-serif;\" href=\"https:\/\/www.helpnetsecurity.com\/2019\/02\/01\/privacy-attack-5g\/\" target=\"_blank\" rel=\"noopener\">monitoring device owner activities<\/a>.<span style=\"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen-Sans, Ubuntu, Cantarell, 'Helvetica Neue', sans-serif;\"> (Source: Help Net Security)<\/span><\/li>\n<li>How my Instagram was hacked<span style=\"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen-Sans, Ubuntu, Cantarell, 'Helvetica Neue', sans-serif;\">: A good warning about the <\/span><a style=\"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen-Sans, Ubuntu, Cantarell, 'Helvetica Neue', sans-serif;\" href=\"https:\/\/nakedsecurity.sophos.com\/2019\/01\/28\/how-my-instagram-account-got-hacked\/\" target=\"_blank\" rel=\"noopener\">perils of password reuse<\/a>.<span style=\"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen-Sans, Ubuntu, Cantarell, 'Helvetica Neue', sans-serif;\"> (Source: Naked Security)<\/span><\/li>\n<li>Social media identity thieves<span style=\"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen-Sans, Ubuntu, Cantarell, 'Helvetica Neue', sans-serif;\">: Scammers will stop at nothing to <\/span><a style=\"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen-Sans, Ubuntu, Cantarell, 'Helvetica Neue', sans-serif;\" href=\"https:\/\/abcnews.go.com\/beta-story-container\/GMA\/Living\/social-media-impostors-stole-family-photos-online-charity\/story?id=60672972\" target=\"_blank\" rel=\"noopener\">pull some heartstrings<\/a><span style=\"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen-Sans, Ubuntu, Cantarell, 'Helvetica Neue', sans-serif;\"> and make a little money in the bargain. (Source: ABC news)<\/span><\/li>\n<li>Another smart home hacked<span style=\"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen-Sans, Ubuntu, Cantarell, 'Helvetica Neue', sans-serif;\">: A family recounts their horror at seeing portions of their home cut open for <\/span><a style=\"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen-Sans, Ubuntu, Cantarell, 'Helvetica Neue', sans-serif;\" href=\"https:\/\/www.komando.com\/happening-now\/540712\/hacker-speaks-to-baby-via-nest-cam-turns-up-thermostat-then-taunts-terrified-family\" target=\"_blank\" rel=\"noopener\">someone\u2019s amusement<\/a>.<span style=\"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen-Sans, Ubuntu, Cantarell, 'Helvetica Neue', sans-serif;\"> (Source: Komando)<\/span><\/li>\n<li>Facebook mashup<span style=\"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen-Sans, Ubuntu, Cantarell, 'Helvetica Neue', sans-serif;\">: Plans to combine Whatsapp, Instagram, and Facebook Messenger are <\/span><a style=\"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen-Sans, Ubuntu, Cantarell, 'Helvetica Neue', sans-serif;\" href=\"https:\/\/www.nytimes.com\/2019\/01\/25\/technology\/facebook-instagram-whatsapp-messenger.html\" target=\"_blank\" rel=\"noopener\">revealed<\/a><span style=\"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen-Sans, Ubuntu, Cantarell, 'Helvetica Neue', sans-serif;\"> with security questions raised. (Source: New York Times)<\/span><\/li>\n<li>Phishing attacks continue to rise<span style=\"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen-Sans, Ubuntu, Cantarell, 'Helvetica Neue', sans-serif;\">: Worrying stats via security experts polled who agree in large numbers that phishing is <\/span><a style=\"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen-Sans, Ubuntu, Cantarell, 'Helvetica Neue', sans-serif;\" href=\"https:\/\/mashable.com\/article\/phishing-attacks-are-rising\" target=\"_blank\" rel=\"noopener\">at the same level or higher<\/a><span style=\"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen-Sans, Ubuntu, Cantarell, 'Helvetica Neue', sans-serif;\"> than it was previously. (Source: Mashable)<\/span><\/li>\n<li>Researchers discover malware-friendly hosting service<span style=\"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen-Sans, Ubuntu, Cantarell, 'Helvetica Neue', sans-serif;\">: After a spike in infections, researchers track things back to a host that looked like a \u201c<\/span><a style=\"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen-Sans, Ubuntu, Cantarell, 'Helvetica Neue', sans-serif;\" href=\"https:\/\/techcrunch.com\/2019\/01\/29\/hackers-file-sharing-malware\/\" target=\"_blank\" rel=\"noopener\">hornet\u2019s nest of malware.<\/a><span style=\"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen-Sans, Ubuntu, Cantarell, 'Helvetica Neue', sans-serif;\">\u201d (Source: TechCrunch)<\/span><\/li>\n<\/ul>\n<p>Stay safe, everyone!<\/p>\n<p>The post <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\/security-world\/2019\/02\/a-week-in-security-january-28-february-3\/\">A week in security (January 28 \u2013 February 3)<\/a> appeared first on <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\">Malwarebytes Labs<\/a>.<\/p>\n<p><a href=\"https:\/\/blog.malwarebytes.com\/security-world\/2019\/02\/a-week-in-security-january-28-february-3\/\" target=\"bwo\" >https:\/\/blog.malwarebytes.com\/feed\/<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p><strong>Credit to Author: Malwarebytes Labs| Date: Mon, 04 Feb 2019 17:00:49 +0000<\/strong><\/p>\n<table cellpadding='10'>\n<tr>\n<td valign='top' align='center'><a href='https:\/\/blog.malwarebytes.com\/security-world\/2019\/02\/a-week-in-security-january-28-february-3\/' title='A week in security (January 28 \u2013 February 3)'><img src='https:\/\/blog.malwarebytes.com\/wp-content\/uploads\/2018\/01\/shutterstock_610335074.jpg' border='0'  width='300px'  \/><\/a><\/td>\n<\/tr>\n<tr>\n<td valign='top' align='left'>A roundup of security news January 28 \u2013 February 3, including disputes between Facebook and Apple, dubious malware hosting, privacy threats to mobile users, and more.<\/p>\n<p>Categories: <\/p>\n<ul class=\"post-categories\">\n<li><a href=\"https:\/\/blog.malwarebytes.com\/category\/security-world\/\" rel=\"category tag\">Security world<\/a><\/li>\n<li><a href=\"https:\/\/blog.malwarebytes.com\/category\/security-world\/week-in-security\/\" rel=\"category tag\">Week in security<\/a><\/li>\n<\/ul>\n<p>Tags: <a href=\"https:\/\/blog.malwarebytes.com\/tag\/facebook\/\" rel=\"tag\">facebook<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/hosting\/\" rel=\"tag\">hosting<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/malware\/\" rel=\"tag\">malware<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/phishing\/\" rel=\"tag\">phishing<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/social-media\/\" rel=\"tag\">social media<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/week-in-security\/\" rel=\"tag\">week in security<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/weekly-round-up\/\" rel=\"tag\">weekly round up<\/a><\/p>\n<table width='100%'>\n<tr>\n<td align=right>\n<p><b>(<a href='https:\/\/blog.malwarebytes.com\/security-world\/2019\/02\/a-week-in-security-january-28-february-3\/' title='A week in security (January 28 \u2013 February 3)'>Read more&#8230;<\/a>)<\/b><\/p>\n<\/td>\n<\/tr>\n<\/table>\n<\/td>\n<\/tr>\n<\/table>\n<p>The post <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\/security-world\/2019\/02\/a-week-in-security-january-28-february-3\/\">A week in security (January 28 \u2013 February 3)<\/a> appeared first on <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\">Malwarebytes Labs<\/a>.<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[10488,10378],"tags":[3589,14855,3764,3924,10497,1932,10498,11383],"class_list":["post-14491","post","type-post","status-publish","format-standard","hentry","category-malwarebytes","category-security","tag-facebook","tag-hosting","tag-malware","tag-phishing","tag-security-world","tag-social-media","tag-week-in-security","tag-weekly-round-up"],"_links":{"self":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/14491","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=14491"}],"version-history":[{"count":0,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/14491\/revisions"}],"wp:attachment":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=14491"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=14491"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=14491"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}