{"id":16223,"date":"2019-09-03T12:10:09","date_gmt":"2019-09-03T20:10:09","guid":{"rendered":"https:\/\/www.palada.net\/index.php\/2019\/09\/03\/news-9965\/"},"modified":"2019-09-03T12:10:09","modified_gmt":"2019-09-03T20:10:09","slug":"news-9965","status":"publish","type":"post","link":"https:\/\/www.palada.net\/index.php\/2019\/09\/03\/news-9965\/","title":{"rendered":"A week in security (August 26 &#8211; September 1)"},"content":{"rendered":"<p><strong>Credit to Author: Malwarebytes Labs| Date: Tue, 03 Sep 2019 19:02:14 +0000<\/strong><\/p>\n<p> Last week on Malwarebytes Labs, we <a rel=\"noreferrer noopener\" aria-label=\"analysed the Android xHelper trojan (opens in a new tab)\" href=\"https:\/\/blog.malwarebytes.com\/android\/2019\/08\/mobile-menace-monday-android-trojan-raises-xhelper\/\" target=\"_blank\">analysed the Android xHelper trojan<\/a>, we wondered why the <a rel=\"noreferrer noopener\" aria-label=\"Nextdoor app would send out letters on behalf of their customers (opens in a new tab)\" href=\"https:\/\/blog.malwarebytes.com\/privacy-2\/2019\/08\/nextdoor-neighborhood-app-sends-letters-on-its-users-behalf\/\" target=\"_blank\">Nextdoor app would send out letters on behalf of their customers<\/a>, reported about a <a rel=\"noreferrer noopener\" aria-label=\"study that explores the clickjacking problem across top Alexa-ranked websites (opens in a new tab)\" href=\"https:\/\/blog.malwarebytes.com\/web-threats\/2019\/08\/study-explores-clickjacking-problem-across-top-alexa-ranked-websites\/\" target=\"_blank\">study that explores the clickjacking problem across top Alexa-ranked websites<\/a>, <a rel=\"noreferrer noopener\" aria-label=\"wondered how to get the board to invest in higher education cybersecurity (opens in a new tab)\" href=\"https:\/\/blog.malwarebytes.com\/business-2\/2019\/08\/making-the-case-how-to-get-the-board-to-invest-in-higher-education-cybersecurity\/\" target=\"_blank\">wondered how to get the board to invest in higher education cybersecurity<\/a>, and shared our view on <a rel=\"noreferrer noopener\" aria-label=\"the discovery of unprecedented new iPhone malware (opens in a new tab)\" href=\"https:\/\/blog.malwarebytes.com\/mac\/2019\/08\/unprecedented-new-iphone-malware-discovered\/\" target=\"_blank\">the discovery of unprecedented new iPhone malware<\/a>.<\/p>\n<h3>Other cybersecurity news<\/h3>\n<ul>\n<li> Malware was discovered in a <a rel=\"noreferrer noopener\" aria-label=\"Google Play (opens in a new tab)\" href=\"https:\/\/www.techspot.com\/news\/81641-malware-discovered-google-play-app-100-million-downloads.html\" target=\"_blank\">Google Play<\/a> listed PDF-maker app that had over 100 million downloads. (Source: Techspot)<\/li>\n<li><a rel=\"noreferrer noopener\" aria-label=\"Insurance companies (opens in a new tab)\" href=\"https:\/\/www.propublica.org\/article\/the-extortion-economy-how-insurance-companies-are-fueling-a-rise-in-ransomware-attacks\" target=\"_blank\">Insurance companies<\/a> are fueling a rise in ransomware attacks by telling their customers to take the easy way to solve their problems. (Source: Pro Publica)<\/li>\n<li>Hackers are actively trying to steal passwords from two widely used <a rel=\"noreferrer noopener\" aria-label=\"VPNs (opens in a new tab)\" href=\"https:\/\/arstechnica.com\/information-technology\/2019\/08\/hackers-are-actively-trying-to-steal-passwords-from-two-widely-used-vpns\/\" target=\"_blank\">VPNs<\/a> using unfixed vulnerabilities. (Source: ArsTechnica)<\/li>\n<li>A new variant of the <a rel=\"noreferrer noopener\" aria-label=\"Asruex Backdoor (opens in a new tab)\" href=\"https:\/\/www.darkreading.com\/vulnerabilities---threats\/new-malware-variant-targets-old-adobe-office-vulnerabilities\/d\/d-id\/1335617\" target=\"_blank\">Asruex Backdoor<\/a>  targets vulnerabilities that were discovered more than six years ago in Adobe Acrobat, Adobe Reader, and Microsoft Office software. (Source: DarkReading)<\/li>\n<li>In a first-ever crime committed from space, a NASA <a rel=\"noreferrer noopener\" aria-label=\"astronaut (opens in a new tab)\" href=\"https:\/\/www.techworm.net\/2019\/08\/astronaut-hacking-bank-account-space.html\" target=\"_blank\">astronaut<\/a> has been accused of accessing mails and bank accounts of her estranged spouse while aboard the International Space Station (ISS). (Source: TechWorm)<\/li>\n<li>Command and control (C2) servers for the <a rel=\"noreferrer noopener\" aria-label=\"Emotet (opens in a new tab)\" href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/emotet-botnet-is-back-servers-active-across-the-world\/\" target=\"_blank\">Emotet<\/a> botnet appear to have resumed activity and deliver binaries once more. (Source: BleepingComputer)<\/li>\n<li>A security researcher has found a critical vulnerability in the <a rel=\"noreferrer noopener\" aria-label=\"blockchain-based (opens in a new tab)\" href=\"https:\/\/www.zdnet.com\/article\/moscows-blockchain-voting-system-cracked-a-month-before-election\/\" target=\"_blank\">blockchain-based<\/a> voting system Russian officials plan to use next month for the 2019 Moscow City Duma election. (Source: ZDNet)<\/li>\n<li>The French National Gendarmerie announced the successful takedown of the wide-spread <a href=\"https:\/\/thehackernews.com\/2019\/08\/retadup-botnet-malware.html\" target=\"_blank\" rel=\"noreferrer noopener\" aria-label=\"RETADUP (opens in a new tab)\">RETADUP<\/a> botnet, remotely disinfecting more than 850,000 computers worldwide. (Source: The Hacker News)<\/li>\n<li>The developers behind <a rel=\"noreferrer noopener\" aria-label=\"TrickBot (opens in a new tab)\" href=\"https:\/\/www.scmagazine.com\/home\/security-news\/trickbot-updated-to-target-mobile-carrier-customers-pin-codes\/\" target=\"_blank\">TrickBot<\/a> have modified the banking trojan to target customers of major mobile carriers, researchers have reported. (Source: SCMagazine)<\/li>\n<li>A <a rel=\"noreferrer noopener\" aria-label=\"coin-mining (opens in a new tab)\" href=\"https:\/\/www.theregister.co.uk\/2019\/08\/30\/coinmining_malware_intel\/\" target=\"_blank\">coin-mining<\/a> malware infection previously only seen on Arm-powered IoT devices has made the jump to Intel systems. (Source: The Register)<\/li>\n<\/ul>\n<p>  Stay safe!  <\/p>\n<p>The post <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\/a-week-in-security\/2019\/09\/a-week-in-security-august-26-september-1\/\">A week in security (August 26 &#8211; September 1)<\/a> appeared first on <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\">Malwarebytes Labs<\/a>.<\/p>\n<p><a href=\"https:\/\/blog.malwarebytes.com\/a-week-in-security\/2019\/09\/a-week-in-security-august-26-september-1\/\" target=\"bwo\" >https:\/\/blog.malwarebytes.com\/feed\/<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p><strong>Credit to Author: Malwarebytes Labs| Date: Tue, 03 Sep 2019 19:02:14 +0000<\/strong><\/p>\n<table cellpadding='10'>\n<tr>\n<td valign='top' align='center'><a href='https:\/\/blog.malwarebytes.com\/a-week-in-security\/2019\/09\/a-week-in-security-august-26-september-1\/' title='A week in security (August 26 - September 1)'><img src='https:\/\/blog.malwarebytes.com\/wp-content\/uploads\/2018\/01\/shutterstock_610335074.jpg' border='0'  width='300px'  \/><\/a><\/td>\n<\/tr>\n<tr>\n<td valign='top' align='left'>A roundup of the latest cybersecurity news for the week of August 26-September 1 including xHelper Trojan, Nextdoor app, clickjacking problem, investing cybersecurity, and iPhone malware<\/p>\n<p>Categories: <\/p>\n<ul class=\"post-categories\">\n<li><a href=\"https:\/\/blog.malwarebytes.com\/category\/a-week-in-security\/\" rel=\"category tag\">A week in security<\/a><\/li>\n<\/ul>\n<p>Tags: <a href=\"https:\/\/blog.malwarebytes.com\/tag\/asruex\/\" rel=\"tag\">asruex<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/blockchain\/\" rel=\"tag\">blockchain<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/clickjacking\/\" rel=\"tag\">clickjacking<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/coinmining\/\" rel=\"tag\">coinmining<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/emotet\/\" rel=\"tag\">emotet<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/iphone\/\" rel=\"tag\">iPhone<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/nextdoor\/\" rel=\"tag\">nextdoor<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/retadup\/\" rel=\"tag\">retadup<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/trickbot\/\" rel=\"tag\">trickbot<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/vpn\/\" rel=\"tag\">vpn<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/xhelper\/\" rel=\"tag\">xHelper<\/a><\/p>\n<table width='100%'>\n<tr>\n<td align=right>\n<p><b>(<a href='https:\/\/blog.malwarebytes.com\/a-week-in-security\/2019\/09\/a-week-in-security-august-26-september-1\/' title='A week in security (August 26 - September 1)'>Read more&#8230;<\/a>)<\/b><\/p>\n<\/td>\n<\/tr>\n<\/table>\n<\/td>\n<\/tr>\n<\/table>\n<p>The post <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\/a-week-in-security\/2019\/09\/a-week-in-security-august-26-september-1\/\">A week in security (August 26 &#8211; September 1)<\/a> appeared first on <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\">Malwarebytes Labs<\/a>.<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[10488,10378],"tags":[12969,22830,11526,20894,18678,15715,8826,22749,22831,13256,10863,22742],"class_list":["post-16223","post","type-post","status-publish","format-standard","hentry","category-malwarebytes","category-security","tag-a-week-in-security","tag-asruex","tag-blockchain","tag-clickjacking","tag-coinmining","tag-emotet","tag-iphone","tag-nextdoor","tag-retadup","tag-trickbot","tag-vpn","tag-xhelper"],"_links":{"self":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/16223","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=16223"}],"version-history":[{"count":0,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/16223\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=16223"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=16223"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=16223"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}