In edition No. 54 of the Week Week on the Internet Trainee Guilty by Password, Hacked Social Network, 7 Lessons from 2020 on Email Security and much more.
News
Former CEO of Solarwinds Guilt by the Password of 'SolarWinds123' password
The password in question, “SolarWinds123”, was discovered in 2019 on the public internet by an independent security researcher who warned the company that the leak had exposed a solarwinds file server.
By Brian Fung and Geneva Sands in CNN
Figure Surprise: Brazil is the country that suffers the most attempts at phishing
Kaspersky's latest survey serves to confirm what we all were already suspicious: the Russian company has officialized that Brazil is the country that suffers the most from phishing attacks worldwide.
By Ramon de Souza in Canaltech
New attacks aim at Amazon and Slack
Hackers are aiming at Amazon, Zillow, Lyft and Slack Nodejs applications using a new vulnerability 'dependence' confusion to steal Linux password files.
By Lawrence Abrams in Bleeping Computer
Critical vulnerability is identified in the Pjeoffice, software of the National Council of Justice
A critical vulnerability in Pjeoffice was identified, software used by lawyers and judges from all over Brazil to sign documents digitally before sending them to the Electronic Judicial Process platform (PJe).
By Ramon de Souza in The Hack
Serasa asks for a bank password for research, and Procon wants to know why
The agency will assess whether the requirement (and possible use) of the Internet Banking password has violated the Consumer Protection Code and LGPD (General Data Protection Law).
By Hygino Vasconcellos in UOL
Gab social network is hacked
Gableaks includes 70,000 messages in over 19,000 chats for over 15,000 users. One of the hacked accounts was from former President Trump.
By Dan Goodin in Ars Technica
Microsoft says Chinese hackers are invading Exchange servers
Microsoft says hackers supported by Beijing are exploring four zero vulnerabilities at Exchange Server to steal data from defense companies, law firms, and infectious diseases researchers from the United States.
By Simon Sharwood in The Register
Email Security: 7 Lessons from 2020
In 2020 we had several learnings, and perhaps the greatest of them is work at a distance. But, moreover, the data collected by cyber security research companies brought us other major sources of knowledge to 2021.
By Kelvin Zimmer on Lumiun Blog
Discovered trackers in password management application
Seven trackers and eight suspicious permissions were found at Lascpass, a password management app with more than 10 million downloads on Google Play Store.
By Guilherme Petry in The Hack
Data from 10,000 Brazilian financial customers are exposed on the internet
A serious exposure has compromised personal and financial data from more than 10,000 Brazilians, Prisma Promotora and partners financial services clients.
By Felipe Demartini in Canaltech
Ransomware is a multibillionaire industry and continues to grow
An analysis of the Global Cyber Security company Group-IB reveals that ransomware attacks more than doubled last year and increased on scale and sophistication.
By ionut ilasu in bleeding computer
Events
Redweek 2.0 - Information Security Techs
- March 16, 2021, 09h30 - 10h30
- Online Event via Youtube
- Free
Are you not yet registered on our newsletter to receive this content weekly in the email? Then subscribe through the link below:
https://conteudo.lumiun.com/semana-da-eguranca-na-internet
Share the link with your colleagues and friends.
