The Week in Cyber Security News, Nov. 9 - 15
01. The data of 20 million users of India's biggest online supermarket has been discovered for sale on the dark web, where it is selling for over $40,000.
02. A Brazil-based threat group is responsible for deploying the Ghimob remote access banking trojan - which invades Android mobile devices through email disguised as related to debt payment - in multiple countries.
03. The US Federal Trade Commission has announced that Zoom will be required to implement a "robust information security program" to ensure the ongoing security of its users.
04. A fake Facebook Group using the lure of a free hamper of Cadbury chocolate has tricked social media users into divulging their personal and financial details.
05. A wave of Magecart attacks against retailers running the Magento 1.x e-commerce platform in early September has been attributed to one single group.
06. Microsoft's Patch Tuesday fixes more than 100 security holes, including a zero-day vulnerability - CVE-2020-17087 - that has been exploited in active attacks against users of Windows 7 and Windows 10.
07. DNS cache poisoning, the Internet attack from 2008, is back from the dead ... a newly found side channel in a widely used protocol lets attackers spoof domains.
08. The government of Finland is preparing legislation that would allow citizens to change their personal identity codes in cases of gross data breaches that carry a high risk of identity theft.
09. Microsoft has said that three hacking groups connected to the Russian and North Korean governments targeted COVID-19 vaccine and treatment researchers across five nations in recent months, and some of their attacks were successful.
10. The contents of messages from encrypted chat service EncroChat may be admissible as evidence in English criminal trials, the High Court in London, England has ruled.
11. An insurance software maker has announced that it accidentally leaked Texas driver license information of almost 28 million people.
12. A hacker is sharing what they state are 3.2 million Pluto TV user records that were stolen during a data breach.
13. Cryptocurrency borrowing and lending service Akropolis says a hacker used a "flash loan" attack against its platform and stole roughly $2 million worth of Dai cryptocurrency.
14. Ransomware negotiation firm Coveware has placed the DarkSide operation on an internal restricted list after the threat actors announced plans to host infrastructure in Iran.
++
Thanks for visiting SecAlerts and reading our weekly cyber security news roundup. We offer a free weekly CVE alert service, or an hourly service from $US20/mth, both of which include software updates and news relating to your software stack. Join more than 1,500 other users and sign up.
. . .
If you want to stay notified of vulnerabilities that affect you, register for a weekly security report customised to your stack.
