The Week in Cyber Security News, Apr 27 - May 3
01. Cybersecurity researchers have shown how a subdomain takeover vulnerability in Microsoft Teams, combined with a malicious .GIF file, could be used to "scrape a user's data and ultimately take over an organization's entire roster of Teams accounts.'
02. Even though it wasn't 'Patch Tuesday,' Adobe this week released emergency updates that patch 35 vulnerabilities (each one is affected with multiple critical arbitrary code execution flaws) in some of its widely used products, including Adobe Illustrator, Adobe Bridge, and Magento e-commerce platform.
03. Attackers are spoofing the Small Businee Administration in emails, trying to install a remote hacking tool capable of stealing passwords and accessing webcams.
04. The design of Australia’s COVIDSafe contact-tracing app creates some unintended surveillance opportunities, according to a group of four security pros who unpacked its .APK file.
05. The US National Security Agency and its Australian counterpart the Australian Signals Directorate have published a set of guidelines to help companies avoid a common kind of attack: web shell exploits.
06. Microsoft warns that malicious actors are taking advantage of pirate streaming services and movie piracy, which have seen a huge surge of incoming traffic during the COVID-19 pandemic, by trying to infect potential victims with malware delivered via fake movie torrents.
07. Researchers have discovered a high-severity cross-site request forgery (CSRF) vulnerability in Real-Time Find and Replace, a WordPress plugin installed on more than 100,000 sites, which could lead to cross-site scripting and the injection of malicious JavaScript anywhere on a victim site.
08. Microsoft's Threat Protection Intelligence Team is warning that 'non-automated' ransomware attacks continue to target healtchare and critical service providers during the pandemic crisis.
09. A Philadelphia chain of sandwich shops is facing a class-action lawsuit over a data breach that went undetected for seven months.
10. Email credential phishing campaigns are starting to use reCaptcha walls to prevent automated URL analysis systems from accessing the actual content of phishing pages.
11. Suspected Chinese hackers are behind a phishing campaign apparently aimed at collecting data about Vietnamese government officials amid an ongoing territorial dispute between the two nations.
12. A white supremacist from Florida who felt threatened by an African American man announcing his candidacy for city council has pleaded guilty to cyber-stalking and interfering with an election.
13. The first quarter of 2020 recorded a 33% increase of the average amount ransomware operators demand from their victims, with the average payment now more than $111,000.
14. A hacker is selling a database containing the information of 91 million Tokopedia accounts on a dark web market for as little as $5,000, while other threat actors have already started to crack passwords and share them online.
. . .
If you want to stay notified of vulnerabilities that affect you, register for a weekly security report customised to your stack.
