{"id":17877,"date":"2020-03-17T20:27:09","date_gmt":"2020-03-18T04:27:09","guid":{"rendered":"https:\/\/www.palada.net\/index.php\/2020\/03\/17\/news-11610\/"},"modified":"2020-03-17T20:27:09","modified_gmt":"2020-03-18T04:27:09","slug":"news-11610","status":"publish","type":"post","link":"http:\/\/www.palada.net\/index.php\/2020\/03\/17\/news-11610\/","title":{"rendered":"This Week in Security News: Operation Overtrap Targets Japanese Online Banking Users and Everything You Need to Know About Tax Scams"},"content":{"rendered":"

Credit to Author: Jon Clay (Global Threat Communications)| Date: Fri, 13 Mar 2020 12:40:26 +0000<\/strong><\/p>\n

\"week<\/p>\n

Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, learn about the number of ways Operation Overtrap can infect or trap victims with its payload. Also, read about how to protect your personal identity data and money during tax-filing season.<\/p>\n

Read on:<\/p>\n

AWS Launches Bottlerocket, a Linux-based OS for Container Hosting<\/strong><\/a><\/p>\n

AWS has\u00a0launched\u00a0Bottlerocket, its own open-source operating system for running containers on both virtual machines and bare metal hosts.\u00a0The new OS is a stripped-down Linux distribution that\u2019s akin to projects like CoreOS\u2019s now-defunct\u00a0Container Linux\u00a0and Google\u2019s\u00a0container-optimized OS. The project is launching in cooperation with several partners including Alcide, Armory, CrowdStrike, Datadog, New Relic, Sysdig, Tigera, Trend Micro and Waveworks.<\/em><\/p>\n

Tax Scams \u2013 Everything You Need to Know to Keep Your Money and Data Safe<\/strong><\/a><\/p>\n

There are two things that cybercriminals are always on the hunt for: personal identity data and money. During the tax-filing season, both can be unwittingly exposed. Over the years, cybercriminals have adapted multiple tools and techniques to part taxpayers with their personal information and funds. This blog looks at the main threats out there and what you can do to stay safe.<\/em><\/p>\n

March 2020 Patch Tuesday: Microsoft Fixes 115 Vulnerabilities, Adobe None<\/strong><\/a><\/p>\n

This week for March 2020 Patch Tuesday, Microsoft dropped\u00a0fixes for 115 CVE-numbered flaws: 26 are critical, 88 important, and one of moderate severity. The good news is that none of them are under active attack.<\/em> Adobe seems to have skipped this Patch Tuesday and there\u2019s no indication whether the customary security updates are just delayed or if there won\u2019t be any in the coming days.<\/em><\/p>\n

Operation Overtrap Targets Japanese Online Banking Users<\/strong> Via Bottle Exploit Kit and Brand-New Cinobi Banking Trojan<\/strong><\/a><\/p>\n

Trend Micro recently discovered a new campaign dubbed \u201cOperation Overtrap\u201d for the number of ways it can infect or trap victims with its payload. The campaign targets online users of various Japanese banks by stealing their banking credentials using a three-pronged attack. Based on Trend Micro\u2019s telemetry, Operation Overtrap has been active since April 2019.<\/em><\/p>\n

Hackers Are Working Harder to Make Phishing and Malware Look Legitimate<\/strong><\/a><\/p>\n

Even though the overall volume of malware dropped in 2019, phishing and business email compromise (BEC) went up sharply, according to\u00a0Trend Micro’s 2019 Cloud App Security Roundup. The company blocked nearly 400,000 attempted BEC attacks in 2018, which is 271% more than the previous year and 35% more credential phishing attempts than in 2018.<\/em><\/p>\n

Busting Ghostcat: An Analysis of the Apache Tomcat Vulnerability (CVE-2020-1938 and CNVD-2020-10487)<\/strong><\/a><\/p>\n

Discussions surrounding the Ghostcat vulnerability (CVE-2020-1938\u00a0and\u00a0CNVD-2020-10487) found in Apache Tomcat puts it in the spotlight as researchers investigated its security impact– specifically, its potential use for remote code execution (RCE). Learn more about the Ghostcat vulnerability in this blog analysis. <\/em><\/p>\n

10 Key Female Cybersecurity Leaders to Know in 2020<\/strong><\/a><\/p>\n

In celebration of Women\u2019s History Month, the editors of Solutions Review\u00a0shared the accomplishments of ten key female cybersecurity leaders in 2020.\u00a0Trend Micro\u2019s CEO Eva Chen made the list based on her numerous accomplishments in the cybersecurity industry. <\/em><\/p>\n

Coronavirus Used in Spam, Malware, and Malicious Domains<\/strong><\/a><\/p>\n

The coronavirus disease (COVID-19) is being used as bait in\u00a0email spam\u00a0attacks on targets across the globe. As the number of cases continues to grow, campaigns using the virus as a lure will likewise increase. This has been observed by multiple entities, and researchers from Trend Micro have also seen a significant spike in the detection of the subject in email spam attacks.<\/em><\/p>\n

Cookiethief Android Malware Uses Proxies to Hijack Your Facebook Account<\/strong><\/a><\/p>\n

A combination of new modifications to Android malware code has given rise to Trojans able to steal browser and app cookies from compromised devices.\u00a0Researchers from Kaspersky said the new malware families,\u00a0dubbed Cookiethief, use a combination of exploits to acquire root rights to an Android device and then to steal Facebook cookie data.\u00a0<\/em><\/p>\n

Nemty Ransomware Spreads via Love Letter Emails<\/strong><\/a><\/p>\n

Threat actors have been found distributing Nemty\u00a0ransomware\u00a0through a spam campaign using emails that pose as messages from lovers, according to a report by\u00a0Malwarebytes and X-Force Iris researchers.\u00a0Researchers from Trend Micro have\u00a0also encountered the emails.<\/em><\/p>\n

WordPress GDPR Plugin Vulnerable to Cross-Site Scripting Attacks<\/strong><\/a><\/p>\n

GDPR Cookie Consent, a WordPress plugin, inadvertently exposed websites to\u00a0cross-site scripting (XSS)\u00a0attacks through a vulnerability that affects versions 1.8.2 and below of the plugin. As disclosed in a\u00a0report by NinTechNet, the vulnerability allowed privilege escalation. The plugin had over 700,000 active installations at the time of the exploit.<\/em><\/p>\n

Analysis: Abuse of .NET Features for Compiling Malicious Programs<\/strong><\/a><\/p>\n

While the .NET framework is originally intended to help software engineers, cybercriminals have found a way to abuse its features to compile and execute malware on the fly. Recently, Trend Micro discovered several kinds of malware, such as\u00a0LokiBot, utilizing this technique.\u00a0<\/em><\/p>\n

OpenSMTPD Vulnerability (CVE-2020-8794) Can Lead to Root Privilege Escalation and Remote Code Execution<\/strong><\/a><\/p>\n

A root privilege escalation and remote execution vulnerability (designated as\u00a0CVE-2020-8794) has been discovered in the free and open-source Unix Daemon, OpenSMTPD. The flaw originates from an out-of-bounds read, which attackers can take advantage of to execute arbitrary code on vulnerable systems.<\/em><\/p>\n

Are you concerned about the security risks involved with filing your taxes online? Share your thoughts in the comments below or follow me on Twitter to continue the conversation: @JonLClay.<\/a><\/p>\n

The post This Week in Security News: Operation Overtrap Targets Japanese Online Banking Users and Everything You Need to Know About Tax Scams<\/a> appeared first on <\/a>.<\/p>\n

http:\/\/feeds.trendmicro.com\/TrendMicroSimplySecurity<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

Credit to Author: Jon Clay (Global Threat Communications)| Date: Fri, 13 Mar 2020 12:40:26 +0000<\/strong><\/p>\n

\"week<\/p>\n

Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, learn about the number of ways Operation Overtrap can infect or trap victims with its payload. Also, read about how to protect your personal identity data and…<\/p>\n

The post This Week in Security News: Operation Overtrap Targets Japanese Online Banking Users and Everything You Need to Know About Tax Scams<\/a> appeared first on <\/a>.<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[10378,10413],"tags":[10422],"class_list":["post-17877","post","type-post","status-publish","format-standard","hentry","category-security","category-trendmicro","tag-current-news"],"_links":{"self":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/17877","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=17877"}],"version-history":[{"count":0,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/17877\/revisions"}],"wp:attachment":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=17877"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=17877"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=17877"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}