{"id":17487,"date":"2020-01-20T09:10:19","date_gmt":"2020-01-20T17:10:19","guid":{"rendered":"https:\/\/www.palada.net\/index.php\/2020\/01\/20\/news-11222\/"},"modified":"2020-01-20T09:10:19","modified_gmt":"2020-01-20T17:10:19","slug":"news-11222","status":"publish","type":"post","link":"https:\/\/www.palada.net\/index.php\/2020\/01\/20\/news-11222\/","title":{"rendered":"A week in security (January 13 &#8211; 19)"},"content":{"rendered":"<p><strong>Credit to Author: Malwarebytes Labs| Date: Mon, 20 Jan 2020 16:32:45 +0000<\/strong><\/p>\n<p>Last week on Malwarebytes Labs, we taught you <a rel=\"noreferrer noopener\" aria-label=\"how to prevent a rootkit attack (opens in a new tab)\" href=\"https:\/\/blog.malwarebytes.com\/how-tos-2\/2020\/01\/how-to-prevent-a-rootkit-attack\/\" target=\"_blank\">how to prevent a rootkit attack<\/a>, explained what <a rel=\"noreferrer noopener\" aria-label=\"data enrichment means (opens in a new tab)\" href=\"https:\/\/blog.malwarebytes.com\/explained\/2020\/01\/explained-data-enrichment\/\" target=\"_blank\">data enrichment means<\/a>, informed you about <a rel=\"noreferrer noopener\" aria-label=\"rules on deepfakes take hold in the US (opens in a new tab)\" href=\"https:\/\/blog.malwarebytes.com\/artificial-intelligence\/2020\/01\/deepfake-rules-take-hold-in-the-us\/\" target=\"_blank\">new rules on deepfakes in the US<\/a>, and <a rel=\"noreferrer noopener\" aria-label=\"how backdoors in elastic servers expose private data (opens in a new tab)\" href=\"https:\/\/blog.malwarebytes.com\/threat-spotlight\/2020\/01\/business-in-the-front-party-in-the-back-backdoors-in-elastic-servers-expose-private-data\/\" target=\"_blank\">demonstrated how backdoors in elastic servers expose private data<\/a>. <\/p>\n<h3><strong>Other cybersecurity news<\/strong><\/h3>\n<ul>\n<li>An online group of cybersecurity analysts calling themselves <a rel=\"noreferrer noopener\" aria-label=\"Intrusion Truth (opens in a new tab)\" href=\"https:\/\/www.zdnet.com\/article\/report-chinese-hacking-group-apt40-hides-behind-network-of-front-companies\/\" target=\"_blank\">Intrusion Truth<\/a> have revealed information about their fourth Chinese state-sponsored hacking operation. (Source: ZDNet)<\/li>\n<li><a rel=\"noreferrer noopener\" aria-label=\"Travelex (opens in a new tab)\" href=\"https:\/\/www.grahamcluley.com\/travelex-warns-customers-of-phone-scam-threat-in-wake-of-ransomware-attack\/\" target=\"_blank\">Travelex<\/a> warned customers of a phone scam threat in wake of their ransomware attack. (Source: Graham Cluley)<\/li>\n<li>The federal government is preparing for another fight with <a rel=\"noreferrer noopener\" aria-label=\"Apple (opens in a new tab)\" href=\"https:\/\/www.vox.com\/recode\/2020\/1\/13\/21064271\/barr-apple-iphone-alshamrani-pensacola\" target=\"_blank\">Apple<\/a> in an ongoing battle for access to encrypted iPhones. (Source: Vox recode)<\/li>\n<li>Proof-of-concept exploit code has been published for critical flaws impacting the <a rel=\"noreferrer noopener\" aria-label=\"Cisco Data Center Network Manager (opens in a new tab)\" href=\"https:\/\/threatpost.com\/cisco-dcnm-flaw-exploit\/151949\/\" target=\"_blank\">Cisco Data Center Network Manager<\/a> (DCNM) tool for managing network platforms and switches. (Source: ThreatPost)<\/li>\n<li>The <a rel=\"noreferrer noopener\" aria-label=\"Dutch National Cybersecurity Centre (opens in a new tab)\" href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/dutch-govt-suggests-turning-off-citrix-adc-devices-mitigations-may-fail\/\" target=\"_blank\">Dutch National Cybersecurity Centre<\/a> (NCSC) says that companies should consider turning off Citrix ADC and Gateway servers if the impact is acceptable. (Source: BleepingComputer)<\/li>\n<li>Hackers stole personal information from 100,000 West Australians in a cyberattack on <a rel=\"noreferrer noopener\" aria-label=\"P&amp;N Bank (opens in a new tab)\" href=\"https:\/\/thewest.com.au\/business\/banking\/hackers-steal-personal-information-from-100000-west-australians-in-cyber-attack-on-pn-bank-ng-b881434415z\" target=\"_blank\">P&amp;N Bank<\/a>. (The West Australian)<\/li>\n<li>In an important Patch Tuesday release, <a rel=\"noreferrer noopener\" aria-label=\"Microsoft (opens in a new tab)\" href=\"https:\/\/nakedsecurity.sophos.com\/2020\/01\/15\/microsoft-fixes-critical-bugs-in-cryptoapi-rd-gateway-and-net\/\" target=\"_blank\">Microsoft<\/a> fixed critical bugs in CryptoAPI, RD Gateway, and .NET. (Source: Naked Security)<\/li>\n<li>The latest update to <a rel=\"noreferrer noopener\" aria-label=\"Google\u2019s Smart Lock (opens in a new tab)\" href=\"https:\/\/www.theverge.com\/2020\/1\/15\/21066768\/google-iphone-ios-security-key-2-factor-authentication\" target=\"_blank\">Google\u2019s Smart Lock<\/a> app on iOS means you can now use your iPhone as a physical 2FA security key for logging into Google\u2019s first-party services in Chrome. (Source: The Verge)<\/li>\n<li>The domain name weleakinfo.com has been seized by the FBI. The website sold information claiming to have more than <a rel=\"noreferrer noopener\" aria-label=\"12 billion records (opens in a new tab)\" href=\"https:\/\/www.darkreading.com\/attacks-breaches\/fbi-seizes-domain-that-sold-info-stolen-in-data-breaches\/d\/d-id\/1336833\" target=\"_blank\">12 billion records<\/a> gathered from over 10,000 breaches. (Source: DarkReading)<\/li>\n<li>Pretending to be the Permanent Mission of Norway, <a rel=\"noreferrer noopener\" aria-label=\"Emotet (opens in a new tab)\" href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/united-nations-targeted-with-emotet-malware-phishing-attack\/\" target=\"_blank\">Emotet<\/a> operators performed a targeted phishing attack against users associated with the United Nations. (Source: BleepingComputer)<\/li>\n<\/ul>\n<p>  Stay safe, everyone!  <\/p>\n<p>The post <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\/a-week-in-security\/2020\/01\/a-week-in-security-january-13-19\/\">A week in security (January 13 &#8211; 19)<\/a> appeared first on <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\">Malwarebytes Labs<\/a>.<\/p>\n<p><a href=\"https:\/\/blog.malwarebytes.com\/a-week-in-security\/2020\/01\/a-week-in-security-january-13-19\/\" target=\"bwo\" >https:\/\/blog.malwarebytes.com\/feed\/<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p><strong>Credit to Author: Malwarebytes Labs| Date: Mon, 20 Jan 2020 16:32:45 +0000<\/strong><\/p>\n<table cellpadding='10'>\n<tr>\n<td valign='top' align='center'><a href='https:\/\/blog.malwarebytes.com\/a-week-in-security\/2020\/01\/a-week-in-security-january-13-19\/' title='A week in security (January 13 - 19)'><img src='https:\/\/blog.malwarebytes.com\/wp-content\/uploads\/2018\/01\/shutterstock_610335074.jpg' border='0'  width='300px'  \/><\/a><\/td>\n<\/tr>\n<tr>\n<td valign='top' align='left'>Our weekly security roundup for January 13-19, with a look at elastic servers, data enrichment, rootkits, regulation for deepfakes, and more.<\/p>\n<p>Categories: <\/p>\n<ul class=\"post-categories\">\n<li><a href=\"https:\/\/blog.malwarebytes.com\/category\/a-week-in-security\/\" rel=\"category tag\">A week in security<\/a><\/li>\n<\/ul>\n<p>Tags: <a href=\"https:\/\/blog.malwarebytes.com\/tag\/apt40\/\" rel=\"tag\">apt40<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/cisco\/\" rel=\"tag\">Cisco<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/citrix\/\" rel=\"tag\">citrix<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/data-enrichment\/\" rel=\"tag\">data enrichment<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/deepfakes\/\" rel=\"tag\">deepfakes<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/elastic-servers\/\" rel=\"tag\">elastic servers<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/emotet\/\" rel=\"tag\">emotet<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/rootkit\/\" rel=\"tag\">rootkit<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/travelex\/\" rel=\"tag\">travelex<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/weleakinfo\/\" rel=\"tag\">weleakinfo<\/a><\/p>\n<table width='100%'>\n<tr>\n<td align=right>\n<p><b>(<a href='https:\/\/blog.malwarebytes.com\/a-week-in-security\/2020\/01\/a-week-in-security-january-13-19\/' title='A week in security (January 13 - 19)'>Read more&#8230;<\/a>)<\/b><\/p>\n<\/td>\n<\/tr>\n<\/table>\n<\/td>\n<\/tr>\n<\/table>\n<p>The post <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\/a-week-in-security\/2020\/01\/a-week-in-security-january-13-19\/\">A week in security (January 13 &#8211; 19)<\/a> appeared first on <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\">Malwarebytes Labs<\/a>.<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[10488,10378],"tags":[12969,23972,11560,20352,23958,17473,23965,15715,11002,23973,23974],"class_list":["post-17487","post","type-post","status-publish","format-standard","hentry","category-malwarebytes","category-security","tag-a-week-in-security","tag-apt40","tag-cisco","tag-citrix","tag-data-enrichment","tag-deepfakes","tag-elastic-servers","tag-emotet","tag-rootkit","tag-travelex","tag-weleakinfo"],"_links":{"self":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/17487","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=17487"}],"version-history":[{"count":0,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/17487\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=17487"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=17487"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=17487"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}