{"id":17552,"date":"2020-01-27T10:10:09","date_gmt":"2020-01-27T18:10:09","guid":{"rendered":"http:\/\/www.palada.net\/index.php\/2020\/01\/27\/news-11287\/"},"modified":"2020-01-27T10:10:09","modified_gmt":"2020-01-27T18:10:09","slug":"news-11287","status":"publish","type":"post","link":"http:\/\/www.palada.net\/index.php\/2020\/01\/27\/news-11287\/","title":{"rendered":"A week in security (January 20 &#8211; 26)"},"content":{"rendered":"<p><strong>Credit to Author: Malwarebytes Labs| Date: Mon, 27 Jan 2020 17:17:14 +0000<\/strong><\/p>\n<p>Last week on Malwarebytes Labs, we reported on a <a href=\"https:\/\/blog.malwarebytes.com\/threat-spotlight\/2019\/12\/threat-spotlight-the-curious-case-of-ryuk-ransomware\/\">Ryuk ransomware <\/a><a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/blog.malwarebytes.com\/ransomware\/2020\/01\/tampa-bay-times-hit-with-ryuk-ransomware-attack\/\" target=\"_blank\">attack on <\/a><em><a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/blog.malwarebytes.com\/ransomware\/2020\/01\/tampa-bay-times-hit-with-ryuk-ransomware-attack\/\" target=\"_blank\">The Tampa Bay Times<\/a><\/em>, a newspaper in Florida; unmasked an <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/blog.malwarebytes.com\/threat-analysis\/2020\/01\/woof-locker-stealthy-browser-locker-tech-support-scam\/\" target=\"_blank\">elaborate browser locking scheme<\/a> behind the more advanced tech support operations that are currently active; and looked at <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/blog.malwarebytes.com\/artificial-intelligence\/2020\/01\/deepfakes-laws-and-proposals-flood-us\/\" target=\"_blank\">the latest laws on regulating deepfakes<\/a>. <\/p>\n<h3>Other cybersecurity news<\/h3>\n<ul>\n<li>Cisco\u2019s <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/techdator.net\/jhonerat-is-a-new-malware-stealing-data-from-arabic-speaking-nations\/\" target=\"_blank\">Talos Intelligence Group discovered a new data stealer and called it JhoneRAT<\/a>. This latest remote access Trojan (RAT) was designed and created to target Arabic-speaking nations. (Source: TechDator)<\/li>\n<li>Fake videos purportedly taken by Nest cameras are <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/new-nest-video-extortion-scam-plays-out-like-a-spy-game\/\" target=\"_blank\">used to perform sextortion campaigns<\/a> against their users. (Source: Bleeping Computer)<\/li>\n<li>The Philippine Airlines (PAL) warned locals of <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/news.abs-cbn.com\/business\/01\/18\/20\/pal-warns-against-phishing-site-luring-public-to-win-plane-tickets\" target=\"_blank\">a phishing site using a bogus Facebook ad<\/a> and claiming that participants could win free tickets in exchange for answering questions. (Source: ABS-CBN News)<\/li>\n<li>The Better Business Bureau (BBB) alerted readers of <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/www.bbb.org\/article\/scams\/21310-scam-alert-windows-upgrade-scams-take-consumers-by-surprise\" target=\"_blank\">a tech support scam using the \u201cExpiring License\u201d lure<\/a> to get the attention and trick Windows users into giving out their banking details. (Source: Better Business Bureau News)<\/li>\n<li><a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/nakedsecurity.sophos.com\/2020\/01\/21\/what-do-online-file-sharers-want-with-70000-tinder-images\/\" target=\"_blank\">70,000 photos<\/a> of users of the dating app, Tinder, were found on the public web for free. Along the photos were data of 16,000 Tinder user IDs. (Source: Sophos\u2019s Naked Security Blog)<\/li>\n<li>Point-of-sale (PoS) software company, THSuite, was found to be breached after <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/www.newsweek.com\/thsuite-data-breach-marijuana-dispensaries-personal-information-leaked-exposed-1483645\" target=\"_blank\">sensitive data of cannabis users were leaked<\/a> because of an insecure Amazon S3 bucket. (Source: Newsweek)<\/li>\n<li>Google security engineers found that <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/www.cnet.com\/news\/google-finds-apple-safari-anti-tracking-feature-actually-enabled-tracking\/#ftag=CAD-09-10aai5b\" target=\"_blank\">Apple\u2019s privacy protections on Safari actually put user data at risk<\/a>. (Source: CNET)<\/li>\n<li>Hiring scams or fake job listings <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/www.ic3.gov\/media\/2020\/200121.aspx\" target=\"_blank\">target job seekers\u2019 personally identifiable information<\/a>, warns the FBI. (Source: FBI PSA)<\/li>\n<li>In contrast to what is generally advised, new survey found that <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/www.darkreading.com\/attacks-breaches\/to-avoid-disruption-ransomware-victims-continue-to-pay-up\/d\/d-id\/1336863\" target=\"_blank\">victims continue to pay ransomware threat actors<\/a> to prevent business disruption. (Source: DarkReading)<\/li>\n<li><a rel=\"noreferrer noopener\" aria-label=\"PupyRAT (opens in a new tab)\" href=\"https:\/\/www.zdnet.com\/article\/suspected-iranian-hacking-campaign-targets-european-energy-sector\/\" target=\"_blank\">PupyRAT<\/a>, a Trojan believed to be linked to state-backed threat actors working out of Iran, was found targeting the European energy sector since late 2019. (Source: ZDNet)<\/li>\n<\/ul>\n<p>Stay safe, everyone!<\/p>\n<p>The post <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\/a-week-in-security\/2020\/01\/a-week-in-security-january-20-26\/\">A week in security (January 20 &#8211; 26)<\/a> appeared first on <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\">Malwarebytes Labs<\/a>.<\/p>\n<p><a href=\"https:\/\/blog.malwarebytes.com\/a-week-in-security\/2020\/01\/a-week-in-security-january-20-26\/\" target=\"bwo\" >https:\/\/blog.malwarebytes.com\/feed\/<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p><strong>Credit to Author: Malwarebytes Labs| Date: Mon, 27 Jan 2020 17:17:14 +0000<\/strong><\/p>\n<table cellpadding='10'>\n<tr>\n<td valign='top' align='center'><a href='https:\/\/blog.malwarebytes.com\/a-week-in-security\/2020\/01\/a-week-in-security-january-20-26\/' title='A week in security (January 20 - 26)'><img src='https:\/\/blog.malwarebytes.com\/wp-content\/uploads\/2018\/01\/shutterstock_610335074.jpg' border='0'  width='300px'  \/><\/a><\/td>\n<\/tr>\n<tr>\n<td valign='top' align='left'>A roundup of the previous week\u2019s most notable security stories and events, including tech support scams, deepfakes, and the latest ransomware attack in Florida.<\/p>\n<p>Categories: <\/p>\n<ul class=\"post-categories\">\n<li><a href=\"https:\/\/blog.malwarebytes.com\/category\/a-week-in-security\/\" rel=\"category tag\">A week in security<\/a><\/li>\n<\/ul>\n<p>Tags: <a href=\"https:\/\/blog.malwarebytes.com\/tag\/apple\/\" rel=\"tag\">Apple<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/awis\/\" rel=\"tag\">awis<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/blog-recap\/\" rel=\"tag\">blog recap<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/breach\/\" rel=\"tag\">breach<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/facebook-phishing\/\" rel=\"tag\">facebook phishing<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/fake-job-listings\/\" rel=\"tag\">fake job listings<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/google\/\" rel=\"tag\">Google<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/hiring-scam\/\" rel=\"tag\">hiring scam<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/jhonerat\/\" rel=\"tag\">JhoneRAT<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/nest-iot\/\" rel=\"tag\">Nest IOT<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/pupyrat\/\" rel=\"tag\">PupyRAT<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/ransomware\/\" rel=\"tag\">ransomware<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/rat\/\" rel=\"tag\">rat<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/remote-access-trojan\/\" rel=\"tag\">remote access Trojan<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/sextortion\/\" rel=\"tag\">sextortion<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/tech-support-scam\/\" rel=\"tag\">tech support scam<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/thsuite\/\" rel=\"tag\">THSuite<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/tinder\/\" rel=\"tag\">Tinder<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/weekly-blog-roundup\/\" rel=\"tag\">weekly blog roundup<\/a><\/p>\n<table width='100%'>\n<tr>\n<td align=right>\n<p><b>(<a href='https:\/\/blog.malwarebytes.com\/a-week-in-security\/2020\/01\/a-week-in-security-january-20-26\/' title='A week in security (January 20 - 26)'>Read more&#8230;<\/a>)<\/b><\/p>\n<\/td>\n<\/tr>\n<\/table>\n<\/td>\n<\/tr>\n<\/table>\n<p>The post <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\/a-week-in-security\/2020\/01\/a-week-in-security-january-20-26\/\">A week in security (January 20 &#8211; 26)<\/a> appeared first on <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\">Malwarebytes Labs<\/a>.<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[10488,10378],"tags":[12969,2211,22647,24038,11510,24039,24040,1670,24041,24042,24043,24044,3765,1810,11875,18952,10544,24045,6571,10506],"class_list":["post-17552","post","type-post","status-publish","format-standard","hentry","category-malwarebytes","category-security","tag-a-week-in-security","tag-apple","tag-awis","tag-blog-recap","tag-breach","tag-facebook-phishing","tag-fake-job-listings","tag-google","tag-hiring-scam","tag-jhonerat","tag-nest-iot","tag-pupyrat","tag-ransomware","tag-rat","tag-remote-access-trojan","tag-sextortion","tag-tech-support-scam","tag-thsuite","tag-tinder","tag-weekly-blog-roundup"],"_links":{"self":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/17552","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=17552"}],"version-history":[{"count":0,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/17552\/revisions"}],"wp:attachment":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=17552"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=17552"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=17552"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}