A week in security (October 28 – November 3)

Credit to Author: Malwarebytes Labs| Date: Mon, 04 Nov 2019 16:37:57 +0000

Last week on Malwarebytes Labs, we celebrated the birth of the Internet 50 years ago, highlighted reports about the US Federal Trade Commission (FTC) filing a case against stalkerware developer Retina-X, issued a PSI on disaster donation scams, looked at the top cybersecurity challenged SMBs face, and provided guidance to journalists on how they can defend themselves against threat actors.

A new infostealer called Raccoon emerged as the new malware-as-a-service (MaaS) that is causing a lot of buzz in the underground. (Source: SecurityWeek)
Notorious Russian APT, Fancy Bear, was found targeting sporting and anti-doping organizations worldwide. (Source: Microsoft)
Millions of Adobe Creative Cloud users exposed due to a misconfiguration. (Source: Sophos’s Naked Security Blog)
The online store of the American Cancer Society was found infected with malware by Magecart. (Source: TechCrunch)
According to a report from the FTC, younger adults are more susceptible to fraud compared to senior adults. (Source: The Washington Post)
Systems used in the state-run Nuclear Power Corp of India were found to contain malware. (Source: Reuters)
Sextortion scammers began hacking Blogger and WordPress sites to make threats more believable, which leads to a higher likelihood of paying up. (Source: Bleeping Computer)
MessageTap, a malware strain developed by Chinese APT threat actors, is capable of monitoring of SMS traffic and other mobile information to target individuals. (Source: SC Magazine UK)
Threat actors have their eyes set on esports tournaments. (Source: TechRadar)
Highly popular Android emoji app racks up millions of unauthorized purchases. (Source: The Register)
Gafgyt, an aggressive IoT malware, was found to force affected systems to join its botnet. (Source: ZDNet)

Stay safe!