Round Up of Major Breaches and Scams
TikTok denied Tuesday sharing Indian users’ data with the Chinese government, after New Delhi banned the wildly popular app in a sharp deterioration of relations with Beijing two weeks after a deadly border clash. TikTok is owned by China’s ByteDance and was one of 59 Chinese mobile apps banned late Monday by Prime Minister Narendra Modi’s government.
Group-IB, a global threat hunting and intelligence company headquartered in Singapore, has discovered thousands of personal records of users from the UK, Australia, South Africa, the US, Singapore, Spain, Malaysia and other countries exposed in a targeted multi-stage bitcoin scam.
Fraudsters are continuing to exploit self-employed people with advancements in already-established COVID-related HMRC phishing scams. Uncovered by Griffin Law, the latest variation of this attack is now targeting the passport details of self-employed people, along with other information including personal and bank details.
Morrison and government officials said the country would spend an additional Aus$1.35 billion ($928 million) on cybersecurity, around a 10 percent hike, taking the budget for the next decade to Aus$15 billion. The largest chunk of the new money will help create 500 jobs within the Australian Signals Directorate, the government’s communications intelligence agency.
Instagram has over 1 billion active users and that makes the photo and video-sharing social networking service from Facebook a lucrative target for hackers. Lately, a verified Instagram account has been targeting unsuspecting users with copyright infringement phishing scam aiming at their account credentials.
Google has removed this month 25 Android applications from the Google Play Store that were caught stealing Facebook credentials. Before being taken down, the 25 apps were collectively downloaded more than 2.34 million times. The malicious apps were developed by the same threat group and despite offering different features, under the hood, all the apps worked the same.
Round Up of Major Malware and Ransomware Incidents
Security researchers have discovered this week a new ransomware strain targeting macOS users. Named OSX.EvilQuest, this ransomware is different from previous macOS ransomware threats because besides encrypting the victim’s files, EvilQuest also installs a keylogger, a reverse shell, and steals cryptocurrency wallet-related files from infected hosts.
The server of government’s highway construction arm–the National Highway Authority of India (NHAI) was attacked by a malware Sunday night, according to officials aware of the development. When the malware attacked the email server of the authority, it may have also impacted the huge pool of data on highways and confidential information over the past decade, officials said.
Round Up of Major Vulnerabilities and Patches
Earlier this month, JSOF security researchers disclosed the “Ripple20” vulnerabilities, a series of flaws affecting connected devices in the enterprise, industrial, and healthcare industries. Experts worry about the implications for connected medical devices, which could provide attackers with a gateway into a hospital network or enable them to affect patient care.