Breach Cyber Security Hacking Malware Phishing Scam Vulnerability

TikTok denies misuse of Indian user data, HMRC phishing scams target passport details, and more

Major cybersecurity events on 1st July 2020 (Morning Post): Verified Instagram account targets unsuspecting users with copyright infringement phishing scam. 25 Android apps removed from Play Store, following the theft of Facebook credentials. EvilQuest ransomware targets macOS users.

Round Up of Major Breaches and Scams

TikTok Denies Sharing Indian User Data With Chinese Govt

TikTok denied Tuesday sharing Indian users’ data with the Chinese government, after New Delhi banned the wildly popular app in a sharp deterioration of relations with Beijing two weeks after a deadly border clash. TikTok is owned by China’s ByteDance and was one of 59 Chinese mobile apps banned late Monday by Prime Minister Narendra Modi’s government.

Personal data of thousands of users from the UK, Australia, South Africa, the US, Singapore exposed in bitcoin scam

Group-IB, a global threat hunting and intelligence company headquartered in Singapore, has discovered thousands of personal records of users from the UK, Australia, South Africa, the US, Singapore, Spain, Malaysia and other countries exposed in a targeted multi-stage bitcoin scam.

#COVID19 HMRC Phishing Scams Persist, Begin Targeting Passport Details

Fraudsters are continuing to exploit self-employed people with advancements in already-established COVID-related HMRC phishing scams. Uncovered by Griffin Law, the latest variation of this attack is now targeting the passport details of self-employed people, along with other information including personal and bank details.

Australia Ramps Up Cyber Spending After State-Backed Attacks

Morrison and government officials said the country would spend an additional Aus$1.35 billion ($928 million) on cybersecurity, around a 10 percent hike, taking the budget for the next decade to Aus$15 billion. The largest chunk of the new money will help create 500 jobs within the Australian Signals Directorate, the government’s communications intelligence agency.

Verified Instagram account running copyright infringement phishing scam

Instagram has over 1 billion active users and that makes the photo and video-sharing social networking service from Facebook a lucrative target for hackers. Lately, a verified Instagram account has been targeting unsuspecting users with copyright infringement phishing scam aiming at their account credentials.

Google removes 25 Android apps caught stealing Facebook credentials

Google has removed this month 25 Android applications from the Google Play Store that were caught stealing Facebook credentials. Before being taken down, the 25 apps were collectively downloaded more than 2.34 million times. The malicious apps were developed by the same threat group and despite offering different features, under the hood, all the apps worked the same.

Round Up of Major Malware and Ransomware Incidents

New EvilQuest ransomware discovered targeting macOS users

Security researchers have discovered this week a new ransomware strain targeting macOS users. Named OSX.EvilQuest, this ransomware is different from previous macOS ransomware threats because besides encrypting the victim’s files, EvilQuest also installs a keylogger, a reverse shell, and steals cryptocurrency wallet-related files from infected hosts.

NHAI server attacked by malware, govt says no data loss

The server of government’s highway construction arm–the National Highway Authority of India (NHAI) was attacked by a malware Sunday night, according to officials aware of the development. When the malware attacked the email server of the authority, it may have also impacted the huge pool of data on highways and confidential information over the past decade, officials said.

Round Up of Major Vulnerabilities and Patches

Ripple20 Threatens Increasingly Connected Medical Devices

Earlier this month, JSOF security researchers disclosed the “Ripple20” vulnerabilities, a series of flaws affecting connected devices in the enterprise, industrial, and healthcare industries. Experts worry about the implications for connected medical devices, which could provide attackers with a gateway into a hospital network or enable them to affect patient care.