In issue #104 of Internet Security Week , we cover a new attack that takes Americanas and Submarino offline, malware in fake Windows 11 installers, the most common cybersecurity errors in startups, and much more.
News
New attack takes Americanas and Submarino offline.
The Lapsus group has once again attacked Americanas' internet operations, forcing the company to temporarily suspend its e-commerce operations on the Americanas and Submarino domains.
In CISO Advisor
Ransomware attack infects Gafisa's systems.
The construction company Gafisa issued a statement warning that its technology sector was the victim of a ransomware cyberattack. According to the statement, Gafisa took all necessary protective measures as soon as it identified the attack, in addition to seeking ways to mitigate the damage.
By Dácio Castelo Branco on Canaltech
Hackers can crash Cisco email gateways using malicious emails.
Cisco addressed a high-severity vulnerability that could allow remote attackers to crash Cisco Secure Email devices using email messages crafted with malicious code.
By Sergiu Gatlan at Bleeping Computer
Protect your smartphone from Pegasus and other mobile malware.
Possibly the biggest story of 2021 — an investigation by The Guardian and 16 other media organizations, published in July — revealed that more than 30,000 human rights activists, journalists, and lawyers worldwide may have been targeted in an attack using Pegasus.
By Costin Raiu in Kaspersky Daily
Researchers detect malware in fake Windows 11 installers.
Experts have detected a campaign attempting to spread RedLine Stealer, a threat that steals login data stored in the browser and is distributed as a fake Windows 11 update installer.
By Juan Manuel Harán in We Live Security
Google Chrome emergency update fixes security flaws.
Google has released Chrome version 98.0.4758.102 for Windows, Mac, and Linux to fix a high-severity zero-day vulnerability used by threat actors in attacks.
By Lawrence Abrams in Bleeping Computer
Hackers enter Teams chats to distribute malware.
Security researchers warn that some attackers are compromising Microsoft Teams accounts to enter chat rooms and spread malicious executables among conversation participants. More than 270 million users utilize Teams every month, many of them trusting the platform implicitly despite the absence of protections against malicious files.
In CISO Advisor
Fraud attempts by companies increased by 102% during the pandemic.
A survey by ClearSale, a specialist in anti-fraud solutions, indicates that the use of companies for attempted fraud grew by 102% during the pandemic. During this period, many new businesses emerged: according to the Brazilian Micro and Small Business Support Service (Sebrae), more than 2.6 million new individual micro-entrepreneurs (MEIs) were created in 2020.
By Roseli Andrion on Canaltech
The most common cybersecurity mistakes in startups.
There are over a million tips on the internet about how to keep a startup afloat. As a general rule, those responsible for the tips highlight problems in business planning, marketing strategy, attracting additional investment, etc., but the problem of developing a solid cybersecurity system is rarely discussed.
By Anastasia Starikova in Kaspersky Daily
Material
Complete Guide: How to Block Websites in the Company
Not yet subscribed to our newsletter to receive this content weekly in your email? Then sign up using the link below:
https://br.lumiun.com/semana-da-seguranca-na-internet
Share the link with your colleagues and friends.
