{"id":17308,"date":"2019-12-30T10:10:05","date_gmt":"2019-12-30T18:10:05","guid":{"rendered":"https:\/\/www.palada.net\/index.php\/2019\/12\/30\/news-11044\/"},"modified":"2019-12-30T10:10:05","modified_gmt":"2019-12-30T18:10:05","slug":"news-11044","status":"publish","type":"post","link":"http:\/\/www.palada.net\/index.php\/2019\/12\/30\/news-11044\/","title":{"rendered":"A week in security (December 23 \u2013 29)"},"content":{"rendered":"<p><strong>Credit to Author: Malwarebytes Labs| Date: Mon, 30 Dec 2019 16:55:11 +0000<\/strong><\/p>\n<p>Last week on Malwarebytes Labs, we continued our <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/blog.malwarebytes.com\/awareness\/2019\/12\/a-decade-in-cybersecurity-fails-top-breaches-threats-of-2010s\/\" target=\"_blank\">retrospective coverage<\/a> with a look at how lawmakers in the United States treated online privacy this year, <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/blog.malwarebytes.com\/privacy-2\/2019\/12\/online-privacy-in-2019-a-legislative-review\/\" target=\"_blank\">finding trends in multiple federal bills introduced in the Senate<\/a>. Then we took a little break for the holidays.<\/p>\n<h3>Other cybersecurity news:<\/h3>\n<ul>\n<li>Now an annual tradition for close to a decade, <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/www.hackread.com\/list-of-top-25-worst-passwords-of-2019\/\" target=\"_blank\">SplashData unveiled this year\u2019s most popular passwords<\/a>, with \u201c123456\u201d and \u201c123456789\u201d taking the top two spots. Fan favorites \u201cpassword1\u201d and \u201cadmin\u201d and \u201cqwerty\u201d also ranked high, with dark horse candidates \u201cprincess\u201d and \u201cdragon\u201d also making the list. (Source: HackRead)<\/li>\n<li>The popular chat messaging app ToTok <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/www.nytimes.com\/2019\/12\/22\/us\/politics\/totok-app-uae.html\" target=\"_blank\">reportedly functions as a deeply invasive spying tool<\/a> operated by the government of the United Arab Emirates. (Source: New York Times)<\/li>\n<li>The \u201cchief operations optimist\u201d at 1Password provided a fun look at password security by <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/www.darkreading.com\/attacks-breaches\/the-night-before-breachmas\/a\/d-id\/1336643\" target=\"_blank\">comparing it to the lessons learned in Charles Dickens\u2019 \u201cA Christmas Carol.\u201d<\/a> (Source: Dark Reading)<\/li>\n<li>The US Coast Guard disclosed that the IT network for a Maritime Transportation Security Act facility was <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/us-coast-guard-says-ryuk-ransomware-took-down-maritime-facility\/\" target=\"_blank\">shut down following a Ryuk ransomware attack<\/a>. (Source: Bleeping Computer)<\/li>\n<li>Cybersecurity researchers warned individuals about five now-patched vulnerabilities in the Google Chrome browser that <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/threatpost.com\/google-chrome-affected-by-magellan-2-0-flaws\/151446\/\" target=\"_blank\">could have allowed threat actors to remotely execute code<\/a>. (Source: Threatpost)<\/li>\n<li>A San Antonio mental health services provider and a New Mexico hospital suffered <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/criminals-pull-hard-before-xmas-attack-us-health-industry\/\" target=\"_blank\">malware attacks immediately before the US holidays<\/a>. (Source: Bleeping Computer)<\/li>\n<li>A North Carolina couple breathed a sigh of relief when learning that the noises coming downstairs in the middle of the night were not caused by an intruder, <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/arstechnica.com\/gaming\/2019\/12\/attack-of-the-terrifying-robot-vacuum\/\" target=\"_blank\">but by\u2026their Roomba<\/a>. (Source: Ars Technica)<\/li>\n<\/ul>\n<p>Stay safe, everyone!<\/p>\n<p>The post <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\/a-week-in-security\/2019\/12\/a-week-in-security-december-23-29\/\">A week in security (December 23 \u2013 29)<\/a> appeared first on <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\">Malwarebytes Labs<\/a>.<\/p>\n<p><a href=\"https:\/\/blog.malwarebytes.com\/a-week-in-security\/2019\/12\/a-week-in-security-december-23-29\/\" target=\"bwo\" >https:\/\/blog.malwarebytes.com\/feed\/<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p><strong>Credit to Author: Malwarebytes Labs| Date: Mon, 30 Dec 2019 16:55:11 +0000<\/strong><\/p>\n<table cellpadding='10'>\n<tr>\n<td valign='top' align='center'><a href='https:\/\/blog.malwarebytes.com\/a-week-in-security\/2019\/12\/a-week-in-security-december-23-29\/' title='A week in security (December 23 \u2013 29)'><img src='https:\/\/blog.malwarebytes.com\/wp-content\/uploads\/2018\/01\/shutterstock_610335074.jpg' border='0'  width='300px'  \/><\/a><\/td>\n<\/tr>\n<tr>\n<td valign='top' align='left'>A  roundup of cybersecurity news from December 23 \u2013 29, including a retrospective look at trends in online privacy legislation in the US. <\/p>\n<p>Categories: <\/p>\n<ul class=\"post-categories\">\n<li><a href=\"https:\/\/blog.malwarebytes.com\/category\/a-week-in-security\/\" rel=\"category tag\">A week in security<\/a><\/li>\n<\/ul>\n<p>Tags: <a href=\"https:\/\/blog.malwarebytes.com\/tag\/a-week-in-security\/\" rel=\"tag\">a week in security<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/google-chrome\/\" rel=\"tag\">Google Chrome<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/online-privacy\/\" rel=\"tag\">online privacy<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/online-privacy-law\/\" rel=\"tag\">online privacy law<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/online-privacy-legislation\/\" rel=\"tag\">online privacy legislation<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/passwords\/\" rel=\"tag\">passwords<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/roomba\/\" rel=\"tag\">Roomba<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/ryuk-ransomware\/\" rel=\"tag\">Ryuk ransomware<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/totok\/\" rel=\"tag\">ToTok<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/us-coast-guard\/\" rel=\"tag\">US Coast Guard<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/week-in-security\/\" rel=\"tag\">week in security<\/a><\/p>\n<table width='100%'>\n<tr>\n<td align=right>\n<p><b>(<a href='https:\/\/blog.malwarebytes.com\/a-week-in-security\/2019\/12\/a-week-in-security-december-23-29\/' title='A week in security (December 23 \u2013 29)'>Read more&#8230;<\/a>)<\/b><\/p>\n<\/td>\n<\/tr>\n<\/table>\n<\/td>\n<\/tr>\n<\/table>\n<p>The post <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\/a-week-in-security\/2019\/12\/a-week-in-security-december-23-29\/\">A week in security (December 23 \u2013 29)<\/a> appeared first on <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\">Malwarebytes Labs<\/a>.<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[10488,10378],"tags":[12969,11427,10470,22006,22007,10602,23837,20562,23838,23839,10498],"class_list":["post-17308","post","type-post","status-publish","format-standard","hentry","category-malwarebytes","category-security","tag-a-week-in-security","tag-google-chrome","tag-online-privacy","tag-online-privacy-law","tag-online-privacy-legislation","tag-passwords","tag-roomba","tag-ryuk-ransomware","tag-totok","tag-us-coast-guard","tag-week-in-security"],"_links":{"self":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/17308","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=17308"}],"version-history":[{"count":0,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/17308\/revisions"}],"wp:attachment":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=17308"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=17308"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=17308"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}