A week in security (July 9 – July 15)
Last week, we talked about domestic abuse fuelled by IoT, doing threat intel programs right, blocking ICO fraud, and man-in-the-middle attacks. We also explained why we block shady ad blockers and provided tips to online shoppers for Prime Day.
Other news:
- Reports revealed that low-end Android devices sold in Egypt, Brazil, South Africa, Myanmar, and other developing markets contain pre-installed malware. (Source: Help Net Security)
- The breach in Ticketmaster was found to be part of a larger card fraud campaign. (Source: Dark Reading)
- Significant increases in Microsoft and virtualization software bugs seen. (Source: CSO Online)
- Two new Spectre-style CPU attacks uncovered by researchers. (Source: ZDNet)
- Sextortion is in the news once again, and scammers behind it get the attention of their targets by revealing old passwords tied to their account. (Source: KrebsOnSecurity)
- Almost half of organizations worldwide were hit by crypto mining attacks, report says. (Source: Help Net Security)
- Researchers from the Oxford Internet Institute revealed that Internet filters rarely keep adolescent kids away from adult entertainment material. (Source: TechCrunch)
- A Chrome extension allowed marketers to access sensitive data of Facebook users in closed groups. (Source: Computing)
- A mobile malware campaign in India was found to use an open-source mobile device management (MDM) system to take over devices. (Source: Talos Intelligence)
- The importance of multi-factor authentication highlighted in recent breaches concerning Timehop and Macy’s. (Source: Dark Reading)
Stay safe, everyone!
*** This is a Security Bloggers Network syndicated blog from Malwarebytes Labs authored by Malwarebytes Labs. Read the original post at: https://blog.malwarebytes.com/security-world/week-in-security/2018/07/week-security-july-9-july-15/