Breach Bug Cyber Security Data leak Spyware Vulnerability

Welcome Chat spies on users, exposes data, Google release Chrome 84 with security enhancements, and more

Major cybersecurity events on 15th July (Morning Post): Cyber intel firm KELA detects a trove of 4.8 million UK ticket site records on sale. Catalonian politician Roger Torrent and two others claims to be targets of espionage. Microsoft urges Windows server users to patch severe-impact flaw.

Round Up of Major Breaches and Scams

Android chat app uses public code to spy, exposes user data

A chat application for Android claiming to be a secure messaging platform comes with spying functionality and stores user data in an unsecured location that is publicly available. Welcome Chat targets users from a specific region of the world and relies on open source code for recording calls, stealing text messages, and tracking. The developers of Welcome Chat promoted it as a secure communication solution that is available from the Google Play store.

Millions of Logins from UK Ticket Site for Sale on Dark Web

Security researchers have discovered a database containing millions of emails and usernames up for sale on the dark web, linked to a well-known UK ticketing provider. Analysts at Israeli cyber-intelligence firm KELA detected the trove of 4.8 million records, posted to an underground site on July 8. A spokesperson for the company told Infosecurity that they managed to get hold of a sample of 10,000 emails and just 300 (3%) were duplicates.

Round Up of Major Malware and Ransomware Incidents

Senior Catalonian Politician’s Phone Allegedly Targeted By Government Spyware

A senior Catalonian politician has claimed his phone was targeted with spyware by the Spanish government in a case of possible domestic political espionage. Roger Torrent and at least two other pro-independence supporters, have reportedly been told their phones were targeted last year using ‘Pegasus’ spyware that is only sold to governments to track criminals and terrorists.

Round Up of Major Vulnerabilities and Patches

Adobe fixes over a dozen flaws in Media Encoder, Download Manager

Adobe has addressed over a dozen vulnerabilities in its Creative Cloud, Media Encoder, Genuine Service, ColdFusion, and Download Manager products. Adobe has published security bulletins for Adobe Creative Cloud Desktop Application, Adobe Media Encoder, Adobe Genuine Service, Adobe ColdFusion and Adobe Download Manage. “Adobe recommends users update their product installations to the latest versions using the instructions referenced in the bulletin.”

Microsoft urges patching severe-impact, wormable server vulnerability

Microsoft is urgently advising Windows server customers to patch a vulnerability that allows attackers to take control of entire networks with no user interaction and, from there, rapidly spread from computer to computer. The vulnerability, dubbed SigRed, resides in Windows DNS, a component that automatically responds to requests to translate a domain into the IP address computers need to locate it on the Internet.

Chrome 84 released with important security enhancements

Google has released Chrome 84 today, July 14th, 2020, to the Stable desktop channel, and it includes numerous security enhancements and new APIs for developers. This massive release does not include many new features but offers increased protection against browser notification scams, mixed-content downloads, and the removal of insecure TLS protocols.