MASSIVE DATA LEAKS AND BANKING TROJAN ATTACKS
Term of the month: Malware Malware is a collective word for malicious software variants ranging from viruses, spyware, trojans etc. The shared goal of the software being that it is designed to cause damage to the infected computer, server or network it infects. That is why it is always important to specify what type of malware is discussed.
BRIEF UPDATE The most influential news story of this month stems from the personal data leak of over 500 million Facebook users and included e-mail addresses, locations and phone numbers. The data has already been added to the haveibeenpwnd website for easy checking. Ransomware gangs have found a new revenue source by promising to sell the information to stock traders so they can profit of the fall of share prices once a successful attack has happened and pressure the target to pay out. Currently there is no information if this type of attack has happened but it sets a precedent for the future. The Royal Mail related phishing scams have increased by 645% in a month with over 138 malicious sites trying to mislead people to submit personal information to them while posing as the mail service. The Brazilian Remote Access Tool Android has been spreading havoc across the US and Spain masquerading as a security tool on Google Play store with the goal of stealing banking data. LinkedIn is being used to spread malware contained in a zip file disguised as a job offer that corresponds to the job position of the target.
CYBER SECURITY IN THE NEWS
• Ransomware gang is selling intel to traders to extort victims
• Personal data of 533 million Facebook users found on hacking forum
• Royal Mail-related phishing scams surge by 645%
• BRATA malware disguises itself as security tools on Google Play
• Cyber-attack hackers threaten to share US police informant data
• LinkedIn users targeted with fake job offers to spread malware
• Hackers Inject Malware Into Passwordstate
• Ransomware extortion demands are growing
• NCSC warns 15% of Brits use their pet's name as a password
• Over Half of Malware Delivered via Cloud Applications
• A software bug let malware bypass macOS’ defences