Cybersecurity

As of Mar 23rd 2020. Microsoft has become aware of limited targeted Windows 7 based attacks that could leverage un-patched vulnerabilities in the Adobe Type Manager Library, and is providing the following guidance to help reduce customer risk until the security update is released. We appreciate the efforts of our industry partners and are complying…

https://www.infosecurity-magazine.com/news/virgin-media-compensation-data/?&web_view=true Due to an exploit in Virgin Media's database, 900,000 customers information was exposed for free online and was exploited by hackers. Their identities were stolen as well as their online accounts. There is currently a lawsuit ongoing for compensation for the distress that the victims faced due to this breach. Lawyers argue that Virgin…

https://threatpost.com/emerging-apt-mounts-mass-iphone-surveillance-campaign/154192/ iPhone users in Hong Kong are being infected with a newly created surveillance malware. The malware is downloaded through websites that users are tricked into browsing. When visiting these websites, the malware is being downloaded onto the iOS without the user's knowledge. This virus completely compromises the iOS device and allows the target to…

https://www.scmagazine.com/home/security-news/ransomware/maze-ransomware-group-claims-chubb-as-victim/?web_view=true the group put a notice on its news site claiming that it had encrypted the insurance network

https://cyware.com/news/hackers-use-fake-corona-antivirus-software-to-distribute-malware-backdoor-23924b69 there are currently two sites where this is happening and this is mainly due to bot management and how they use them

hackers have begun targeting home and small office routers with presumably weak passwords to change the DNS settings and redirect users to malicious websites masquerading as legitimate resources for Covid-19. The link is : https://www.pcgamer.com/hackers-are-hijacking-routers-to-push-malware-laden-covid-19-apps/

Zoom meetings have been targeted by attackers. If Zoom meeting links are shared publicly, they are susceptible to disruptions by people who were not supposed to be part of the meeting. Threats have been given to meeting members by attackers, and meetings have been ended suddenly. https://threatpost.com/as-zoom-booms-incidents-of-zoombombing-become-a-growing-nuisance/154187/

The agency was hit with a cyber attack, more specifically a DoS attack on the 16th of march. They suffered no breaches, only the denial of service. More here: https://www.bloomberg.com/news/articles/2020-03-16/u-s-health-agency-suffers-cyber-attack-during-covid-19-response

https://thehackernews.com/2020/03/android-apps-ad-fraud.html Google Play Store apps that were made for kids and that had about a million downloads have been discovered to be tricking users into clicking their advertisements. The virus, which has been named "Tekya" mimics as being the user and clicks the ads so that the app owner will make money from the advertising…

Experts are fighting the COVID-19 scams There is currently a high volume of phishing attacks many being sent through messages. The priority is to combat attacks toward medical facilities.

This surge in cyberspying comes from a Chinese hacker group dating back to January when the coronavirus started to spread outside of China.

Launching on Monday a virtual cyber school plans to host daily live streams about topics such as coding, online safety, and ethical hacking. This program is directed towards children who are out of school due to Covid-19 concerns in order to get kids interested in technology.

https://threatpost.com/trickbot-app-bypasses-non-sms-banking-2fa/154080/ Hackers have found a new a new way to bypass the updated two-factor authentication (2FA) that banks use to help keep their customers safe. They do so by tricking customers into downloading Android apps that contain viruses. Researchers are calling these apps "TrickMO." It's becoming an issue in Germany but the researchers believe it…

Researchers have discovered sites that are exploiting the current COVID-19 pandemic to target computer systems using a fake "Corona Antivirus". Here is the link: https://cyware.com/news/hackers-use-fake-corona-antivirus-software-to-distribute-malware-backdoor-23924b69

Cyber-researchers have found a new threat actor dubbed “WildPressure” targeting the industrial sector in the Middle East. Here is the link: https://cyware.com/news/new-wildpressure-apt-group-targets-industries-in-the-middle-east-5fdc3610

https://cyware.com/news/hackers-use-fake-corona-antivirus-software-to-distribute-malware-backdoor-23924b69 Researchers have discovered sites that are exploiting the current COVID-19 pandemic to target computer systems using a fake "Corona Antivirus".

A group pf hackers used the current pandemic to mask their true intentions. They would invite people to "Check out" their lifesaving AI software. Come to find out this is just a way for hackers to gain access to computers. https://cyware.com/news/hackers-use-fake-corona-antivirus-software-to-distribute-malware-backdoor-23924b69

https://www.pcmag.com/news/amds-navi-arden-graphics-technology-may-have-been-stolen-in-hack Recently it seems that AMD has fallen victim to a hacker who claims to have the code for the company's current and future GPU's including those being used in the upcoming Xbox Series X. The hacker is said to have found this information on a computer that she herself hacked and claims the information…

LabCorp experienced a data breach in July of 2019, exposing 7.7 million records. Then again near the end of January 2020, this time exposing 10,000 patient records. Security actions were taken after the first breach happened, but proved the actions taken were not strong enough to withstand another attack. website: https://selfkey.org/data-breaches-in-2019/

The NAS devices are remotely exploitable and once infected with Mukashi they have the capability to participate in coordinated ddos attack. The new Mukahi variant checks to see if the device is already infected before it installs to prevent fighting itself for resources. https://threatpost.com/new-mirai-variant-mukashi-targets-zyxel-nas-devices/153982/