A week in security (June 18 – June 24)
Last week, we took a deep dive into SamSam ransomware, looked at ways how to identify and delete malicious emails, recognized that there are now risks affecting job recruitment portals, analyzed a malicious Android app banking on the popularity of Fortnite, and identified causes and solutions for the skills shortage in cybersecurity.
- Security researchers pointed a finger at China for a sophisticated hacking campaign that breached satellite operators, telco companies, and defense contractors. (Source: Reuters)
- Latest Netflix phishing campaign started using valid TLS certificates. Typical. (Source: SANS InfoSec Forum)
- Two studies reveal that most websites and web apps are poorly secured. (Source: Dark Reading)
- An artist-cum-programmer realized that streaming devices are vulnerable to DNS rebinding, a weakness that has been known within the security industry for years. (Source: Wired)
- An information stealer malware on Android is found to particularly fond of Japanese- and Korean-speaking users. (Source: The TrendLabs Security Intelligence Blog)
- Mylobot, a new malware, is so sophisticated that it made experts see botnets in a new light. (Source: Dark Reading)
- Andy Android OS Emulator was in hot water after being found to drop a cryptocurrency miner on affected smartphones. (Source: TechRepublic)
- Researchers found a phishing campaign targeting soccer fans who were tuning in to the World Cup. (Source: Check Point)
- An Android RAT (remote administration tool) was found capable of abusing the Telegram protocol. (Source: ESET’s We Live Security Blog)
- A new email scam was banking on the popularity of the WannaCry ransomware to threaten and force recipients to pay up in advance. (Source: Sophos’s Naked Security Blog)
Stay safe, everyone!