In edition #133 of Internet Security Week , we cover the 0800 scam, the FNDE data leak, Itaú launching a campaign to prevent bank fraud, and much more.
News
0800 Scam | Criminals use hidden number in link to steal credit card data
The so-called "0800 scam" has gained a variation to become more stealthy, although the methods remain the same as those used by criminals for several years. Now, when sending fraudulent messages indicating high-value purchases on a potential victim's credit card, the numbers of the fake customer service centers are hidden behind links.
By Felipe Demartini on Canaltech
New malware for Linux manages to bypass detection at different stages.
A new stealthy malware for Linux known as Shikitega has been discovered infecting computers and IoT devices. The malware exploits vulnerabilities to elevate its privileges, adds persistence on the host, and eventually launches a cryptocurrency miner on infected devices.
By Bill Toulas on Bleeping Computer
RansomEXX hackers announce FNDE leak.
Cybercriminals operating the RansomEXX ransomware have listed the name of the "National Fund for Educational Development" (FNDE) on their list of victims, right above BRP, Bombardier Recreational Products. The FNDE's Communications Office informed CISO Advisor that "as soon as it learned of the potential information leak, the Directorate of Technology and Innovation acted promptly and there was no compromise to the agency's services. The only data that was released was already public."
In CISO Advisor
Six ways your password can be stolen.
Password leaks are one of the most annoying problems of the digital age. At first glance, it may not seem like a big deal: who cares if someone discovers the password to an old email account that is rarely used and doesn't contain any valuable information?
By Alexey Andreev in Kaspersky Daily
Google fixes new zero-day vulnerability in Chrome.
Google has released an update that fixes a new vulnerability being exploited by attackers. It is the sixth zero-day vulnerability patched in 2022.
By Juan Manuel Harán in We Live Security
Itaú launches campaign to prevent bank fraud.
For several weeks, Itaú has been running a campaign on the country's main open television networks warning about how to protect oneself against bank scams and fraud. Three videos are being broadcast depicting situations that simulate real strategies used by scammers and humorous ways to safely respond to these scams.
By Kaique Lima on Canaltech
Cyber threats increased by 52% in the first half of the year.
The escalation of cyber threats has been occurring at an exponential rate. Proof of this is that in the first half of this year alone, Trend Micro blocked 63 billion threats globally, representing a jump of more than 50% compared to the same period in 2021.
In CISO Advisor
Signal is secure. Hackers prove it.
Users of the Signal messaging app were hit by a hacker attack. We analyzed what happened and the reasons why the attack corroborates that Signal is trustworthy.
By John Snow on Kaspersky Daily
The Lampion malware returns in phishing attacks using WeTransfer.
The Lampion malware has been distributed in larger volumes lately, with threat actors using WeTransfer as part of their phishing campaigns.
By Bill Toulas on Bleeping Computer
Podcast
PodcasTI – #7 – Real-life LGPD
- We've simplified the General Data Protection Law (LGPD) and brought everything into the real-life context for companies, which now need to adapt to the changes to increase their competitiveness in the market and comply with the law.
- Free
Not yet subscribed to our newsletter to receive this content weekly in your email? Then sign up using the link below:
https://br.lumiun.com/semana-da-seguranca-na-internet
Share the link with your colleagues and friends.
