{"id":16059,"date":"2019-08-12T08:10:16","date_gmt":"2019-08-12T16:10:16","guid":{"rendered":"http:\/\/www.palada.net\/index.php\/2019\/08\/12\/news-9802\/"},"modified":"2019-08-12T08:10:16","modified_gmt":"2019-08-12T16:10:16","slug":"news-9802","status":"publish","type":"post","link":"https:\/\/www.palada.net\/index.php\/2019\/08\/12\/news-9802\/","title":{"rendered":"A week in security (August 5 \u2013 11)"},"content":{"rendered":"<p><strong>Credit to Author: Malwarebytes Labs| Date: Mon, 12 Aug 2019 15:38:31 +0000<\/strong><\/p>\n<p>Last week on Malwarebytes Labs, we explained how <a href=\"https:\/\/blog.malwarebytes.com\/artificial-intelligence\/2019\/08\/how-brain-machine-interface-bmi-technology-could-create-internet-of-thoughts\/\">brain-machine interface (<\/a><a rel=\"noreferrer noopener\" aria-label=\"BMI (opens in a new tab)\" href=\"https:\/\/blog.malwarebytes.com\/artificial-intelligence\/2019\/08\/how-brain-machine-interface-bmi-technology-could-create-internet-of-thoughts\/\" target=\"_blank\">BMI<\/a><a href=\"https:\/\/blog.malwarebytes.com\/artificial-intelligence\/2019\/08\/how-brain-machine-interface-bmi-technology-could-create-internet-of-thoughts\/\">) technology<\/a> could usher in a world of Internet of Thoughts, why having <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/blog.malwarebytes.com\/privacy-2\/2019\/08\/backdoors-are-a-security-vulnerability\/\" target=\"_blank\">backdoors<\/a> is problematic, and how we can improve the security of our <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/blog.malwarebytes.com\/iot\/2019\/08\/8-ways-to-improve-security-on-smart-home-devices\/\" target=\"_blank\">smart homes<\/a>.<\/p>\n<p>To cap off Hacker Summer Camp week, the Labs team released a special ransomware edition of its quarterly <a rel=\"noreferrer noopener\" aria-label=\"cybercrime (opens in a new tab)\" href=\"https:\/\/blog.malwarebytes.com\/reports\/2019\/08\/labs-quarterly-report-finds-ransomwares-gone-rampant-against-businesses\/\" target=\"_blank\">cybercrime<\/a><a href=\"https:\/\/blog.malwarebytes.com\/reports\/2019\/08\/labs-quarterly-report-finds-ransomwares-gone-rampant-against-businesses\/\"> tactics and techniques report<\/a>, which you can download <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/resources.malwarebytes.com\/resource\/cybercrime-tactics-and-techniques-ransomware-retrospective\/\" target=\"_blank\">here<\/a>.<\/p>\n<h3>Other cybersecurity news<\/h3>\n<ul>\n<li>A month-long <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/www.bellingcat.com\/news\/uk-and-europe\/2019\/08\/10\/guccifer-rising-months-long-phishing-campaign-on-protonmail-targets-dozens-of-russia-focused-journalists-and-ngos\/\" target=\"_blank\">ProtonMail phishing campaign<\/a> targeting dozens of journalists and NGOs reporting on Russia were believed to be part of a larger ongoing hacking operation. (Source: Bellingcat)<\/li>\n<li><a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/www.techradar.com\/news\/chromes-new-incognito-privacy-features-are-already-being-sabotaged-by-websites\" target=\"_blank\">Heads up, Chrome Incognito users<\/a>: Some websites already found ways of going around its privacy features. (Source: TechRadar)<\/li>\n<li>Due to <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/www.theverge.com\/2019\/8\/11\/20800979\/check-point-canon-eos-80d-dslr-malware-ransomware-cybersecurity\" target=\"_blank\">a flaw researchers found in DSLR cameras<\/a> that makes them at risk of ransomware, Canon, a known manufacturer of DSLR cameras, issued a security advisory and firmware patch. Update now! (Source: The Verge)<\/li>\n<li>A zero-day <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/www.forbes.com\/sites\/daveywinder\/2019\/08\/09\/critical-steam-security-warning-issued-for-72-million-windows-10-gamers\/#319383a435e1\" target=\"_blank\">privilege escalation vulnerability found in Steam\u2019s client<\/a> could affect 92 million Windows users. (Source: Forbes)<\/li>\n<li>A hacker used SMS gateways to send messages to millions of US numbers to warn users about vulnerabilities, in the hopes of <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/nakedsecurity.sophos.com\/2019\/08\/05\/hackers-exploit-sms-gateways-to-text-millions-of-us-numbers\/\" target=\"_blank\">&#8220;promoting change from these companies.&#8221;<\/a> (Source: Sophos\u2019s Naked Security Blog)<\/li>\n<li>Mark Zuckerberg was sent a letter by US senators asking if <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/www.theverge.com\/2019\/8\/6\/20757031\/facebook-mark-zuckerberg-senators-childrens-privacy-protections-coppa\" target=\"_blank\">he had done enough to protect kids\u2019 privacy<\/a> after reports of concerns surrounding Messenger Kids. (Source: The Verge)<\/li>\n<li>Blocking apps used to protect users from robocallers <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/www.cnet.com\/news\/those-robocall-blocker-apps-are-hanging-up-on-your-privacy\/\" target=\"_blank\">may have been giving up user personal data<\/a> to certain companies. (Source: Cnet)<\/li>\n<li>Microsoft revealed that APT actor Fancy Bear, aka Strontium and APT28, <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/msrc-blog.microsoft.com\/2019\/08\/05\/corporate-iot-a-path-to-intrusion\/\" target=\"_blank\">was trying to breach company networks<\/a> by exploiting already flawed IoT devices. (Source: Microsoft Security Response Center)<\/li>\n<li>Security researchers revealed that sextortion threat actors have raked in <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/www.scmagazineuk.com\/sextortion-botnet-targets-200-million-compromised-accounts\/article\/1593128\" target=\"_blank\">US$1.5 million (\u00a31.25 million) in Bitcoin<\/a>, with blackmailers relying on &#8220;for rent&#8221; botnets. (Source: SC Magazine UK)<\/li>\n<li>Destructive malware is on the rise, according to IBM X-Force Incident Response and Intelligence Services (IRIS), which could <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/www.zdnet.com\/article\/cyberattacks-against-industrial-targets-double-over-the-last-6-months\/\" target=\"_blank\">damage 12,000 corporate workstations on average<\/a>. (Source: ZDNet)<\/li>\n<\/ul>\n<p>Stay safe, everyone!<\/p>\n<p>The post <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\/a-week-in-security\/2019\/08\/a-week-in-security-august-5-11\/\">A week in security (August 5 \u2013 11)<\/a> appeared first on <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\">Malwarebytes Labs<\/a>.<\/p>\n<p><a href=\"https:\/\/blog.malwarebytes.com\/a-week-in-security\/2019\/08\/a-week-in-security-august-5-11\/\" target=\"bwo\" >https:\/\/blog.malwarebytes.com\/feed\/<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p><strong>Credit to Author: Malwarebytes Labs| Date: Mon, 12 Aug 2019 15:38:31 +0000<\/strong><\/p>\n<table cellpadding='10'>\n<tr>\n<td valign='top' align='center'><a href='https:\/\/blog.malwarebytes.com\/a-week-in-security\/2019\/08\/a-week-in-security-august-5-11\/' title='A week in security (August 5 \u2013 11)'><img src='https:\/\/blog.malwarebytes.com\/wp-content\/uploads\/2018\/01\/shutterstock_610335074.jpg' border='0'  width='300px'  \/><\/a><\/td>\n<\/tr>\n<tr>\n<td valign='top' align='left'>The latest cybersecurity news for the week of August 5\u201311. We touch on problematic backdoors, the grim possibility of the Internet of Thoughts, and smart home improvement. We also released a retrospective report on ransomware.<\/p>\n<p>Categories: <\/p>\n<ul class=\"post-categories\">\n<li><a href=\"https:\/\/blog.malwarebytes.com\/category\/a-week-in-security\/\" rel=\"category tag\">A week in security<\/a><\/li>\n<\/ul>\n<p>Tags: <a href=\"https:\/\/blog.malwarebytes.com\/tag\/a-week-in-security\/\" rel=\"tag\">a week in security<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/apt28\/\" rel=\"tag\">APT28<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/awis\/\" rel=\"tag\">awis<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/backdoors\/\" rel=\"tag\">backdoors<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/bitcoin\/\" rel=\"tag\">bitcoin<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/bmi\/\" rel=\"tag\">bmi<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/brain-machine-interface\/\" rel=\"tag\">brain-machine interface<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/chrome-incognito\/\" rel=\"tag\">chrome incognito<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/ctnt-report\/\" rel=\"tag\">CTNT report<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/dslr-flaw\/\" rel=\"tag\">dslr flaw<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/facebook\/\" rel=\"tag\">facebook<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/fancy-bear\/\" rel=\"tag\">Fancy Bear<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/ibm-x-force-incident-response-and-intelligence-services\/\" rel=\"tag\">IBM X-Force Incident Response and Intelligence Services<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/iris\/\" rel=\"tag\">IRIS<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/mark-zuckerberg\/\" rel=\"tag\">Mark Zuckerberg<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/messenger-kids\/\" rel=\"tag\">messenger kids<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/phishing\/\" rel=\"tag\">phishing<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/protonmail\/\" rel=\"tag\">protonmail<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/ransomware\/\" rel=\"tag\">ransomware<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/robocall\/\" rel=\"tag\">robocall<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/robocall-scam\/\" rel=\"tag\">robocall scam<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/sextortion\/\" rel=\"tag\">sextortion<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/smart-homes\/\" rel=\"tag\">smart homes<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/steam\/\" rel=\"tag\">steam<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/strontium\/\" rel=\"tag\">Strontium<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/weekly-blog-roundup\/\" rel=\"tag\">weekly blog roundup<\/a><\/p>\n<table width='100%'>\n<tr>\n<td align=right>\n<p><b>(<a href='https:\/\/blog.malwarebytes.com\/a-week-in-security\/2019\/08\/a-week-in-security-august-5-11\/' title='A week in security (August 5 \u2013 11)'>Read more&#8230;<\/a>)<\/b><\/p>\n<\/td>\n<\/tr>\n<\/table>\n<\/td>\n<\/tr>\n<\/table>\n<p>The post <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\/a-week-in-security\/2019\/08\/a-week-in-security-august-5-11\/\">A week in security (August 5 \u2013 11)<\/a> appeared first on <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\">Malwarebytes Labs<\/a>.<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[10488,10378],"tags":[12969,13561,22647,16099,10490,22589,22591,22648,18050,22649,3589,11296,22650,22651,5154,16827,3924,13761,3765,22652,20646,18952,21843,11227,22653,10506],"class_list":["post-16059","post","type-post","status-publish","format-standard","hentry","category-malwarebytes","category-security","tag-a-week-in-security","tag-apt28","tag-awis","tag-backdoors","tag-bitcoin","tag-bmi","tag-brain-machine-interface","tag-chrome-incognito","tag-ctnt-report","tag-dslr-flaw","tag-facebook","tag-fancy-bear","tag-ibm-x-force-incident-response-and-intelligence-services","tag-iris","tag-mark-zuckerberg","tag-messenger-kids","tag-phishing","tag-protonmail","tag-ransomware","tag-robocall","tag-robocall-scam","tag-sextortion","tag-smart-homes","tag-steam","tag-strontium","tag-weekly-blog-roundup"],"_links":{"self":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/16059","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=16059"}],"version-history":[{"count":0,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/16059\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=16059"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=16059"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=16059"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}