A week in security (May 7 – May 13)

Last week on Labs, we looked at the case of a fake Android AV, an annoying adware that goes by the name of Kuik, the return of threat actors behind the Shopper Stop tech scam, a new Netflix phishing scam, the recent zero-day vulnerability in Internet Explorer, and the insufficiency of merely relying on the presence of the green padlock. Also, in a brief blog post, we talked about why we removed the blacklist of tech support scammers we have been dutifully maintaining for years.

Security researchers found a worm lurking in Facebook’s Messenger, and it steals account credentials from cryptocurrency platforms. (Source: InfoSec Institute)
DDoS attacks are on the cusp of evolution. It would be foolish to expect it to die any time soon. (Source: Dark Reading)
Oh no, they didn’t. OH. NO. THEY. DIDN’T! (Source: Graham Cluley’s blog)
Speaking of Microsoft, hackers have found a way to bypass Safe Links, a feature in MS Office 365 that keeps malware and phishing attacks at bay. (Source: The Hacker News)
Businesses, be forewarned: Nigerian cybercriminals are getting good at what they do and learning new tools and techniques to get into corporate networks. (Source: The Hill)
It appears that businesses haven’t learned their lesson yet. Are they waiting for something terrible to happen before they do? (Source: Fortune)
Are you a 7-Zip user? There’s a critical flaw found in it, so you need to update it ASAP. (Source: Sophos’ Naked Security Blog)
Resetting compromised IoT devices normally removes the malware. But a recent discovery showed that there is now an IoT botnet that can survive a reboot. (Source: Bleeping Computer)
Evilginx, a tool developed by Kuba Gretzky, can bypass two-factor authentication. And Gretzky demoed its use against LinkedIn—and it worked! (Source: KnowBe4’s Security Awareness Training Blog)
A recent study showed that iOS users are more likely to be phished than to download malware. (Source: Help Net Security)