In issue #131 of Internet Security Week , the following topics are covered: Pop-up about DDoS protection is fake, hackers hit over 130 organizations in one attack, an organization was attacked by 3 ransomware attacks in sequence, and much more.
News
Meta is ordered to pay R$ 6.6 million for leaking Brazilians' data.
Meta, the parent company of Facebook, has been fined R$6.6 million for leaking data from Brazilian users of the platform. The decision was made by the National Consumer Secretariat (Senacon), an agency linked to the Ministry of Justice and Public Security. However, if the company does not appeal the conviction, it may have the fine reduced by up to 25%.
By Kaique Lima on Canaltech
The dilemma between data security and application permissions.
Starting July 20th, all developers publishing Android apps on the Google Play Store must detail what data they collect and how they use it. However, this undeniably positive innovation has been overshadowed by the forces of "optimization": now, before installing an app, you have no way of knowing what data it is accessing.
By Enoch Root on Kaspersky Daily
Pixel: Meta's tool is involved in cases of exposure of sensitive data.
Due to an error, the Meta Pixel tool, used to monitor the performance of Facebook ads, allowed the collection of sensitive data on more than 1.3 million users.
By Juan Manuel Harán in We Live Security
Fake DDoS protection pop-up spreads Trojan.
Researchers at the cybersecurity firm Sucuri have discovered a new threat campaign designed to trick users into downloading malware capable of "hijacking" their machines. The attacks begin with a malicious JavaScript injection to target websites like WordPress, using a fake Cloudflare DDoS protection pop-up.
In CISO Advisor
Hackers target over 130 organizations in massive phishing attack.
Hackers responsible for a series of recent cyberattacks, including those on Twilio, MailChimp, and Klaviyo, compromised more than 130 organizations in the same phishing campaign.
By Bill Toulas on Bleeping Computer
Rio de Janeiro city government systems have been offline for a week following a cyberattack (Monday, the 22nd).
The online services of the Rio de Janeiro City Hall have been offline for a week due to a cyberattack on the municipal administration's system. According to the city hall, teams from the Municipal Informatics Company (IplanRio) are working in a crisis management team to minimize the impact of the intrusion and restore operations as quickly as possible.
By Kaique Lima on Canaltech
The Andariel group attacks companies using various malicious tools.
Our experts investigated the activity of Andariel, a suspected subgroup within the Lazarus APT Group. The cybercriminals use the DTrack malware and the Maui ransomware to attack companies worldwide. As is typical of Lazarus, the group attacks for financial gain – this time through ransom demands.
By Hugh Aver in Kaspersky Daily
"Cybersecurity in times of global threats" was the theme at Black Hat USA 2022.
After the first day of the Black Hat USA 2022 security conference, someone asked me the following question: “What are your conclusions about the first day?” Experts spoke about the conflict in Ukraine and the role of cybersecurity during the Black Hat USA 2022 security conference.
By Tony Anscombe in We Live Security
The organization was attacked by three ransomware attacks in sequence.
A report authored by researcher Matt Wixey of Sophos indicates a rise in the incidence of organizations being attacked multiple times by ransomware. One organization was attacked three times: by Hive, LockBit, and BlackCat.
In CISO Advisor
eBook
A guide to safe internet use for professionals and businesses.
- In this material, we cover the main ways to use the internet and how to protect yourself in each case. We also show the different types of internet connections that exist and how to identify online threats.
- Available for download
- Free
Not yet subscribed to our newsletter to receive this content weekly in your email? Then sign up using the link below:
https://br.lumiun.com/semana-da-seguranca-na-internet
Share the link with your colleagues and friends.
