{"id":9353,"date":"2017-09-18T20:59:40","date_gmt":"2017-09-19T04:59:40","guid":{"rendered":"http:\/\/www.palada.net\/index.php\/2017\/09\/18\/news-3126\/"},"modified":"2017-09-18T20:59:40","modified_gmt":"2017-09-19T04:59:40","slug":"news-3126","status":"publish","type":"post","link":"https:\/\/www.palada.net\/index.php\/2017\/09\/18\/news-3126\/","title":{"rendered":"A week in security (September 11 &#8211; September 17)"},"content":{"rendered":"<p><strong>Credit to Author: Malwarebytes Labs| Date: Mon, 18 Sep 2017 22:10:42 +0000<\/strong><\/p>\n<p>Last week, we dug into <a href=\"https:\/\/blog.malwarebytes.com\/threat-analysis\/2017\/09\/compromised-linkedin-accounts-used-to-send-phishing-links-via-private-message-and-inmail\/\" target=\"_blank\" rel=\"noopener\">phishing campaigns done via Linkedin accounts<\/a>, <a href=\"https:\/\/blog.malwarebytes.com\/101\/2017\/09\/remediation-vs-prevention-how-to-place-your-bets\/\" target=\"_blank\" rel=\"noopener\">remediation versus prevention<\/a>, issues with <a href=\"https:\/\/blog.malwarebytes.com\/security-world\/2017\/09\/multiple-flaws-found-in-smart-syringe-pump\/\" target=\"_blank\" rel=\"noopener\">smart syringe pumps<\/a>, and advised you to go <a href=\"https:\/\/blog.malwarebytes.com\/threat-analysis\/2017\/09\/psa-new-microsoft-word-0day-used-wild\/\" target=\"_blank\" rel=\"noopener\">patch against a Word 0da<\/a>y. We had some tips regarding <a href=\"https:\/\/blog.malwarebytes.com\/101\/2017\/09\/equifax-aftermath-how-to-protect-against-identity-theft\/\" target=\"_blank\" rel=\"noopener\">identity theft protection<\/a>, explored <a href=\"https:\/\/blog.malwarebytes.com\/cybercrime\/2017\/09\/crowdsourced-fraud-kickstarted-scams\/\" target=\"_blank\" rel=\"noopener\">crowdsourced fraud<\/a>, and explained <a href=\"https:\/\/blog.malwarebytes.com\/security-world\/technology\/2017\/09\/explained-yara-rules\/\" target=\"_blank\" rel=\"noopener\">YARA rules<\/a>.<\/p>\n<p>Elsewhere:<\/p>\n<h3>Consumer News<\/h3>\n<ul>\n<li><a href=\"https:\/\/www.theregister.co.uk\/2017\/09\/15\/equifax_uk_breach_statement\/\" target=\"_blank\" rel=\"noopener\">Equifax UK admits: 400,000 Brits caught up in mega-breach<\/a>: The UK gets caught up in the ongoing Equifax saga\u00a0<em>(Source: The Register)<\/em><\/li>\n<li><a href=\"https:\/\/www.theregister.co.uk\/2017\/09\/15\/malware_outbreak_googles_play_store\/\" target=\"_blank\" rel=\"noopener\">Another month, another malware outbreak in Google&#8217;s Play Store<\/a>: More rogue apps on the Google Play store (Source: <em>The Register<\/em>)<\/li>\n<li><a href=\"https:\/\/www.helpnetsecurity.com\/2017\/09\/14\/unsecured-elasticsearch-servers\/\" target=\"_blank\" rel=\"noopener\">Unsecured Elasticsearch servers turned into PoS malware C&amp;Cs<\/a>: (Source: Help Net Security)<\/li>\n<li><a href=\"https:\/\/betanews.com\/2017\/09\/14\/your-windows-has-been-banned-malware-makes-an-unwelcome-return\/\" target=\"_blank\" rel=\"noopener\">&#8216;Your Windows Has Been Banned&#8217; malware makes an unwelcome return<\/a>: There&#8217;s always another piece of Ransomware to deal with (source: <em>Betanews<\/em>)<\/li>\n<li><a href=\"http:\/\/www.youredm.com\/2017\/09\/17\/music-video-platform-vevo-suffers-massive-data-leak-telling-hackers-f-off\/\" target=\"_blank\" rel=\"noopener\">Huge Vevo hack<\/a>: Another day, another compromise for fans of video uploads everywhere (source:<em> EDM News<\/em>)<\/li>\n<li><a href=\"http:\/\/www.sandiegouniontribune.com\/communities\/north-county\/sd-no-malware-letter-20170912-story.html\" target=\"_blank\" rel=\"noopener\">Malware blamed for city&#8217;s data breach<\/a>: malware and payment system problems, oh my (source: <em>San Diego Union Tribune<\/em>)<\/li>\n<li><a href=\"http:\/\/indianexpress.com\/article\/technology\/tech-news-technology\/five-billion-bluetooth-devices-at-risk-as-blueborne-malware-spreads-4843308\/\" target=\"_blank\" rel=\"noopener\">Five billion Bluetooth devices at risk as \u2018BlueBorne\u2019 malware spreads<\/a>: Problems in air-gapped land (source: <em>The Indian Express<\/em>)<\/li>\n<li><a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/routex-malware-uses-netgear-routers-for-credential-stuffing-attacks\/\" target=\"_blank\" rel=\"noopener\">RouteX Malware Uses Netgear Routers for Credential Stuffing Attacks<\/a>: Routers under fire from hackers (source: <em>Bleeping Computer<\/em>)<\/li>\n<li><a href=\"https:\/\/securitybrief.com.au\/story\/emotet-banking-malware-returns-wider-scope-vengeance\/\" target=\"_blank\" rel=\"noopener\">EMOTET banking malware returns with a wider scope &amp; vengeance<\/a>: Banking Malware never goes away &#8211; stay informed (source: <em>Security Brief<\/em>)<\/li>\n<li><a href=\"https:\/\/www.gizbot.com\/mobile\/news\/beware-a-new-malware-known-as-xafecopy-is-stealing-money-through-smartphones-in-india-044070.html\" target=\"_blank\" rel=\"noopener\">Beware: A new malware known as Xafecopy is stealing money through smartphones in India<\/a>: Smartphone money shenanigans (source: GizBot)<\/li>\n<\/ul>\n<p>Stay safe!<\/p>\n<p><em>Malwarebytes Labs Team<\/em><\/p>\n<p>The post <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\/security-world\/2017\/09\/a-week-in-security-september-11-september-17\/\">A week in security (September 11 &#8211; September 17)<\/a> appeared first on <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\">Malwarebytes Labs<\/a>.<\/p>\n<p><a href=\"https:\/\/blog.malwarebytes.com\/security-world\/2017\/09\/a-week-in-security-september-11-september-17\/\" target=\"bwo\" >https:\/\/blog.malwarebytes.com\/feed\/<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p><strong>Credit to Author: Malwarebytes Labs| Date: Mon, 18 Sep 2017 22:10:42 +0000<\/strong><\/p>\n<table cellpadding='10'>\n<tr>\n<td valign='top' align='center'><a href='https:\/\/blog.malwarebytes.com\/security-world\/2017\/09\/a-week-in-security-september-11-september-17\/' title='A week in security (September 11 - September 17)'><img src='https:\/\/blog.malwarebytes.com\/wp-content\/uploads\/2017\/01\/photodune-702886-calendar-l.jpg' border='0'  width='300px'  \/><\/a><\/td>\n<\/tr>\n<tr>\n<td valign='top' align='left'>A compilation of security news and blog posts from the 11th &#8211; 17th September. We look at 0days, more Equifax developments, our usual smattering of blog posts, and more!<\/p>\n<p>Categories: <\/p>\n<ul class=\"post-categories\">\n<li><a href=\"https:\/\/blog.malwarebytes.com\/category\/security-world\/\" rel=\"category tag\">Security world<\/a><\/li>\n<li><a href=\"https:\/\/blog.malwarebytes.com\/category\/security-world\/week-in-security\/\" rel=\"category tag\">Week in security<\/a><\/li>\n<\/ul>\n<p>Tags: <a href=\"https:\/\/blog.malwarebytes.com\/tag\/0day\/\" rel=\"tag\">0day<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/android\/\" rel=\"tag\">Android<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/equifax\/\" rel=\"tag\">Equifax<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/linkedin\/\" rel=\"tag\">LinkedIn<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/malware\/\" rel=\"tag\">malware<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/phishing\/\" rel=\"tag\">phishing<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/roundup\/\" rel=\"tag\">roundup<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/week-in-security\/\" rel=\"tag\">week in security<\/a><\/p>\n<table width='100%'>\n<tr>\n<td align=right>\n<p><b>(<a href='https:\/\/blog.malwarebytes.com\/security-world\/2017\/09\/a-week-in-security-september-11-september-17\/' title='A week in security (September 11 - September 17)'>Read more&#8230;<\/a>)<\/b><\/p>\n<\/td>\n<\/tr>\n<\/table>\n<\/td>\n<\/tr>\n<\/table>\n<p>The post <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\/security-world\/2017\/09\/a-week-in-security-september-11-september-17\/\">A week in security (September 11 &#8211; September 17)<\/a> appeared first on <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\">Malwarebytes Labs<\/a>.<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[10488,10378],"tags":[14741,10462,12310,11448,3764,3924,13053,10497,10498],"class_list":["post-9353","post","type-post","status-publish","format-standard","hentry","category-malwarebytes","category-security","tag-0day","tag-android","tag-equifax","tag-linkedin","tag-malware","tag-phishing","tag-roundup","tag-security-world","tag-week-in-security"],"_links":{"self":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/9353","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=9353"}],"version-history":[{"count":0,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/9353\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=9353"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=9353"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=9353"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}