A week in security (October 1 – 7)

October 8, 2018 admin adobe, Android, anti-swatting, BlockChain, bring your own security, byos, Chrome Extension, Fake Fortnite, Fortnite, hack the marine corps, IoT, IoT botnet, Lojack, national cybersecurity awareness month, ncsam, not botnet, password manager, phishing, phishing campaign, RDP, recap, rip attacks, SC Magazine, Security world, SWATting, Torii, voice phishing, vulnerabilities, Week in security, weekly blog roundup, ZDNet

Credit to Author: Malwarebytes Labs| Date: Mon, 08 Oct 2018 16:31:56 +0000

Last week, Malwarebytes welcomed National Cybersecurity Awareness Month by renewing our pledge to do what we do best: offer the best protection for our customers and promote security awareness for all.

On Labs, we raised the question of whether it is a good idea to bring your own security or not, talked a little bit more about fileless malware, homed in on a malware campaign targeting Fortnite gamers, and looked into LoJack, a bootkit malware that has been targeting government entities.

Other cybersecurity news:

Google Chrome extension developers were the target of a phishing campaign going after their credentials. (Source: ZDNet)
If you think you won’t fall for dubious links or email attachments, perhaps a real-life human on the phone—who speaks professionally, uses a trusted number, and assures you throughout the conversation that there’s nothing wrong—could. (Source: KrebsOnSecurity)
The FBI and DHS warned the American public of the rise of Remote Desktop Protocol (RDP) attacks. (Source: SC Magazine)
Researchers discovered that password managers in Android can be tricked into entering true valid credentials into phishing apps. (Source: Help Net Security)
Meet Torii, the new IoT botnet that puts the Mirai botnet to shame. (Source: Infosecurity Magazine)
That’s novel: Seattle law enforcement encourages techies and streamers to sign up to their anti-swatting service. (Source: Ars Technica)
Adobe patches more than 80 serious flaws in Acrobat and Reader. (Source: Sophos’s Naked Security Blog)
Five out of six routers are found to have inadequate security updates. Yikes! (Source: ZDNet)
Evil entrepreneurs in the hacking underground are using blockchain to improve their security posture. (Source: CSO)
Hack the Marine Corps, a challenge to hack public-facing Marine Corps websites, uncovers 150 vulnerabilities. (Source: Fifth Domain)

Stay safe, everyone!

The post A week in security (October 1 – 7) appeared first on Malwarebytes Labs.

https://blog.malwarebytes.com/feed/