{"id":15930,"date":"2019-07-29T09:10:04","date_gmt":"2019-07-29T17:10:04","guid":{"rendered":"https:\/\/www.palada.net\/index.php\/2019\/07\/29\/news-9674\/"},"modified":"2019-07-29T09:10:04","modified_gmt":"2019-07-29T17:10:04","slug":"news-9674","status":"publish","type":"post","link":"https:\/\/www.palada.net\/index.php\/2019\/07\/29\/news-9674\/","title":{"rendered":"A week in security (July 22 \u2013 28)"},"content":{"rendered":"<p><strong>Credit to Author: Malwarebytes Labs| Date: Mon, 29 Jul 2019 15:50:58 +0000<\/strong><\/p>\n<p>Last week on Malwarebytes Labs, we offered an <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/blog.malwarebytes.com\/social-engineering\/2019\/07\/malaysia-airlines-flight-17-investigation-shows-russian-disinformation-campaigns-have-global-reach\/\" target=\"_blank\">extensive analysis into the Malaysian Airlines Flight 17 investigation<\/a>, updated users on the <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/blog.malwarebytes.com\/malwarebytes-news\/2019\/07\/your-device-your-choice-adwcleaner-now-detects-preinstalled-software\/\" target=\"_blank\">newest feature set to AdwCleaner 7.4.0<\/a> (it now detects pre-installed software), and provided a <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/blog.malwarebytes.com\/threat-analysis\/2019\/07\/a-deep-dive-into-phobos-ransomware\/\" target=\"_blank\">deep dive into Phobos ransomware.<\/a> We also broke down the <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/blog.malwarebytes.com\/privacy-2\/2019\/07\/faceapp-scares-point-to-larger-data-collection-problems\/\" target=\"_blank\">latest privacy cautions<\/a> regarding the popular app, FaceApp. <\/p>\n<p>In addition, we looked at an interesting <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/blog.malwarebytes.com\/social-engineering\/2019\/07\/good-twitter-samaritans-accidentally-prevent-shoeshine-scam\/\" target=\"_blank\">real-life shoe-shining scam that was noticed online<\/a>, and gave a <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/blog.malwarebytes.com\/stalkerware\/2019\/07\/parental-monitoring-apps-how-do-they-differ-from-stalkerware\/\" target=\"_blank\">comprehensive breakdown between stalkerware and parental monitoring apps<\/a>. <\/p>\n<h3>Other cybersecurity news<\/h3>\n<ul>\n<li>Marcus Hutchins, cited as a \u201chero\u201d in helping stop the 2017 WannaCry attack, <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/techcrunch.com\/2019\/07\/26\/marcus-hutchins-sentenced-kronos\/\" target=\"_blank\">was sentenced to supervised release for one year<\/a> after facing charges for previously selling banking malware. (Source: TechCrunch)<\/li>\n<li>Trend Micro\u2019s cybersecurity researchers <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/www.hackread.com\/malware-attack-turns-elasticsearch-databases-into-ddos-botnet\/\" target=\"_blank\">found a new malware campaign that targets Elasticsearch databases<\/a>. (Source: HackRead)<\/li>\n<li>Inadequate cloud server security at FormGet led to <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/www.darkreading.com\/cloud\/formget-storage-bucket-leaks-passport-scans-bank-details\/d\/d-id\/1335358\" target=\"_blank\">mortgage and loan information, along with passport data, being compromised online<\/a>. (Source: Dark Reading)<\/li>\n<li>US contractor Immunity announced that it had <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/www.vice.com\/en_us\/article\/wjvvvb\/cybersecurity-firm-drops-code-for-the-incredibly-dangerous-windows-bluekeep-vulnerability\" target=\"_blank\">developed an exploit<\/a> for the much-feared Windows vulnerability \u201cBlueKeep.\u201d (Source: Vice)<\/li>\n<li>New York <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/new-york-passes-law-to-update-data-breach-notification-requirements\/\" target=\"_blank\">passed the SHIELD Act<\/a>, a law aimed at protecting New Yorkers\u2019 private data. (Source: Bleeping Computer)<\/li>\n<li>The privacy group Electronic Privacy Information Center <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/www.theverge.com\/2019\/7\/26\/8932023\/facebook-ftc-privacy-5-billion-settlement-privacy-group-lawsuit-epic\" target=\"_blank\">filed a lawsuit to challenge the US Federal Trade Commission\u2019s $5 billion fine against Facebook<\/a>, which some considered a slap on the wrist. (Source: The Verge)<\/li>\n<li>Motherboard discovered that <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/www.theverge.com\/2019\/7\/26\/8932023\/facebook-ftc-privacy-5-billion-settlement-privacy-group-lawsuit-epic\" target=\"_blank\">Amazon had a secret agreement with a Florida police department to \u201cencourage adoption\u201d<\/a> of the company\u2019s Ring smart doorbell products. (Source: Motherbaord)<\/li>\n<li>Threat actors <a href=\"https:\/\/www.helpnetsecurity.com\/2019\/07\/24\/phishers-targeting-office-365-admins\/?utm_source=dlvr.it&amp;utm_medium=twitter\" target=\"_blank\" rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\">upped their game for a known Office 365 phishing scam<\/a>. (Source: Help Net Security)<\/li>\n<\/ul>\n<p>Stay safe, everyone! <\/p>\n<p>The post <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\/a-week-in-security\/2019\/07\/a-week-in-security-july-22-28\/\">A week in security (July 22 \u2013 28)<\/a> appeared first on <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\">Malwarebytes Labs<\/a>.<\/p>\n<p><a href=\"https:\/\/blog.malwarebytes.com\/a-week-in-security\/2019\/07\/a-week-in-security-july-22-28\/\" target=\"bwo\" >https:\/\/blog.malwarebytes.com\/feed\/<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p><strong>Credit to Author: Malwarebytes Labs| Date: Mon, 29 Jul 2019 15:50:58 +0000<\/strong><\/p>\n<table cellpadding='10'>\n<tr>\n<td valign='top' align='center'><a href='https:\/\/blog.malwarebytes.com\/a-week-in-security\/2019\/07\/a-week-in-security-july-22-28\/' title='A week in security (July 22 \u2013 28)'><img src='https:\/\/blog.malwarebytes.com\/wp-content\/uploads\/2018\/01\/shutterstock_610335074.jpg' border='0'  width='300px'  \/><\/a><\/td>\n<\/tr>\n<tr>\n<td valign='top' align='left'>The latest cybersecurity news for the week of July 22\u201328. We look at Phobos ransomware, stalkerware&#8217;s similarities to parental monitoring apps, and the investigation into Malaysian Airlines Flight 17.<\/p>\n<p>Categories: <\/p>\n<ul class=\"post-categories\">\n<li><a href=\"https:\/\/blog.malwarebytes.com\/category\/a-week-in-security\/\" rel=\"category tag\">A week in security<\/a><\/li>\n<\/ul>\n<p>Tags: <a href=\"https:\/\/blog.malwarebytes.com\/tag\/a-week-in-security\/\" rel=\"tag\">a week in security<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/adwcleaner\/\" rel=\"tag\">AdwCleaner<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/amazong\/\" rel=\"tag\">Amazong<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/bluekeep\/\" rel=\"tag\">BlueKeep<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/cloud-security\/\" rel=\"tag\">cloud security<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/elasticsearch\/\" rel=\"tag\">Elasticsearch<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/electronic-privacy-information-center\/\" rel=\"tag\">Electronic Privacy Information Center<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/faceapp\/\" rel=\"tag\">FaceApp<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/facebook\/\" rel=\"tag\">facebook<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/federal-trade-commission\/\" rel=\"tag\">Federal Trade Commission<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/flight-17\/\" rel=\"tag\">Flight 17<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/ftc\/\" rel=\"tag\">FTC<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/malaysian-airlines\/\" rel=\"tag\">Malaysian Airlines<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/marcus-hutchins\/\" rel=\"tag\">Marcus Hutchins<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/office-365\/\" rel=\"tag\">office 365<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/online-privacy\/\" rel=\"tag\">online privacy<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/parental-monitoring\/\" rel=\"tag\">parental monitoring<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/parental-monitoring-apps\/\" rel=\"tag\">parental monitoring apps<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/phobos\/\" rel=\"tag\">Phobos<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/pre-installed-software\/\" rel=\"tag\">pre-installed software<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/ransomware\/\" rel=\"tag\">ransomware<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/ring-doorbell\/\" rel=\"tag\">Ring doorbell<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/russia\/\" rel=\"tag\">russia<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/russian-disinformation\/\" rel=\"tag\">russian disinformation<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/stalkerware\/\" rel=\"tag\">stalkerware<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/us-federal-trade-commission\/\" rel=\"tag\">US Federal Trade Commission<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/wannacry\/\" rel=\"tag\">WannaCry<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/week-in-security\/\" rel=\"tag\">week in security<\/a><\/p>\n<table width='100%'>\n<tr>\n<td align=right>\n<p><b>(<a href='https:\/\/blog.malwarebytes.com\/a-week-in-security\/2019\/07\/a-week-in-security-july-22-28\/' title='A week in security (July 22 \u2013 28)'>Read more&#8230;<\/a>)<\/b><\/p>\n<\/td>\n<\/tr>\n<\/table>\n<\/td>\n<\/tr>\n<\/table>\n<p>The post <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\/a-week-in-security\/2019\/07\/a-week-in-security-july-22-28\/\">A week in security (July 22 \u2013 28)<\/a> appeared first on <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\">Malwarebytes Labs<\/a>.<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[10488,10378],"tags":[12969,16857,22488,21966,11146,20427,21240,22385,3589,10664,22489,10665,22490,13636,17374,10470,22375,22376,22447,22438,3765,22491,251,22412,19409,22492,12252,10498],"class_list":["post-15930","post","type-post","status-publish","format-standard","hentry","category-malwarebytes","category-security","tag-a-week-in-security","tag-adwcleaner","tag-amazong","tag-bluekeep","tag-cloud-security","tag-elasticsearch","tag-electronic-privacy-information-center","tag-faceapp","tag-facebook","tag-federal-trade-commission","tag-flight-17","tag-ftc","tag-malaysian-airlines","tag-marcus-hutchins","tag-office-365","tag-online-privacy","tag-parental-monitoring","tag-parental-monitoring-apps","tag-phobos","tag-pre-installed-software","tag-ransomware","tag-ring-doorbell","tag-russia","tag-russian-disinformation","tag-stalkerware","tag-us-federal-trade-commission","tag-wannacry","tag-week-in-security"],"_links":{"self":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/15930","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=15930"}],"version-history":[{"count":0,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/15930\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=15930"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=15930"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=15930"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}