Internet Security Week - Edition No. 81

In edition No. 81 of Internet Security Week , Brazilian Banking Trojan, millions of Microsoft servers are at risk, Inep lets data and more.

News

Hackers leak passwords of 500,000 Fortinet VPN accounts

A hacker leaked a list of almost 500,000 Fortinet VPN login and passwords that were allegedly copied from exploitable devices last summer. Although the hacker claims that the exploited Fortinet vulnerability has already been corrected, they claim that many VPN credentials are still valid.

By Lawrence Abrams in Bleeping Computer

New Brazilian Banking Trojan allows full control of the smartphone

Experts discovered another family of mobile bank trojans: TWMOBO. In addition, they have confirmed three important trends: growth in cybercriminals' interest in cell phrases via cellular, internationalization of Brazilian mobile threats to Latin America, Europe and the US, and the preference for Rats (Remote Access Trojan) - malware that allows you to circumvent double authentication mechanisms - that use digital, facial recognition or digital tokens on mobile.

In Kaspersky Daily

Lack of update puts millions of servers with Microsoft system at risk

Highlighting the danger of outdated infrastructure and without proper support for its administrators, a new digital security survey located more than two million vulnerable servers.

By Felipe Demartini in Canaltech

Inep lets data from more than 5 million Brazilians and foreigners

The Hack found, exclusively, that more than 5 million Brazilian students had their data unduly exposed on the web because of a series of configuration failures in the systems of the National Institute for Educational Studies and Research Anísio Teixeira (Inep), federal authority linked to the Ministry of Education (MEC).

By Ramon de Souza in The Hack

Ransomware exposes data if you call the police

The ransomware group Ragnar Locker, known for a series of attacks on large companies such as Adata and Capcom, has found a new way to influence victims. The group now threatens to disclose stolen data from the victims if they seek help from the authorities.

In Ciso Advisor

4 resources to increase your company's data security

With increasing connectivity of companies, people and devices, it also increases the vulnerability of systems and users to hackers, viruses and many other threats. To decrease the risk of virtual attacks, learn 4 resources to increase data security that travels on your company's network and computers, expanding protection and productivity in the use of the internet.

By Heini Thomas Geib in Lumun Blog

Greatest DDOS in Internet history in Russia

A report on the Russian media says the attack is the greatest in the short history of the Russian internet. The attack was confirmed by a company based in the United States.

By ionut ilasu in bleeding computer

Education suffers 380 attacks per week in Brazil

The education sector, combined with the research, was the most targeted in July 2021, according to the check point in monitoring its customers: there was an average of 1,739 weekly attacks on each organization. In Brazil, during July, the number of weekly attacks by organization increased by 19%, totaling an average of 377 attacks; It is the 17th country most targeted by this tendency to attack the education sector.

In Ciso Advisor

New Cybercriminous Campaign of the Teamtnt group has infected more than 5,000 victims

The TeamTNT group is expanding its cybercriminal operations with the adoption of new tools, which expand the group's threat level in addition to the beginning of a new recently identified (but began in July 2021) and is already responsible for thousands of victims around the world. ”

By Guilherme Petry in The Hack

Income tax declaration software had a serious security breach

A breach of Individual Income Tax Declaration software (IRPF 2021) may have exposed users to risk, especially during use in shared or insecure networks.

By Felipe Demartini in Canaltech