In issue #98 of Internet Security Week , a new virus bypasses Microsoft authentication, hackers steal over a million dollars from 17 companies, the president's data is published on the web, and much more.
News
The 10 worst cybersecurity habits to leave behind in 2022.
A new year is a great opportunity to recalibrate your digital life. An increasingly important part of this process is cybersecurity. In fact, 2021 already looks to be one of the most productive years for cybercriminals: almost 19 billion records were exposed in the first half of the year alone.
By Phil Muncaster at Welivesecurity
New virus version bypasses Microsoft security authentication.
A digital threat is exploiting digital signature verification methods to steal victims' personal and sensitive data, already affecting more than 2,000 victims in 111 countries, with 21 of them located in Brazil.
By Dácio Castelo Branco on Canaltech
Hackers stole 1.1 million customer accounts from 17 companies.
The New York State Attorney General's Office has alerted 17 well-known companies that approximately 1.1 million of their customers have had their user accounts compromised in credential stuffing attacks.
By Sergiu Gatlan at Bleeping Computer
Lapsus$ publishes sensitive data of the president and his family.
The Lapsus$ group, the same one that claimed responsibility for attacks on the Ministry of Health, the Post Office, and Claro (a Brazilian telecommunications company), published this morning on its Telegram channel an 835MB file containing sensitive information about the President of Brazil and members of his family. This included document numbers, bank information (with details including monetary values), information on family relationships, and information on movable and immovable property.
By Paulo Brito in CISO Advisor
The most common spear phishing tricks
To be prepared against attacks targeting their company, information security departments need to be aware of spear phishing emails they receive.
By Roman Dedenok in Kaspersky Daily
Blocking employee websites: synonymous with security and productivity
Blocking employee websites is undoubtedly one of the best practices in corporate internet security. This is especially true because the lack of control over employee internet access is the source of most data security incidents or breaches.
By Kelvin Zimmer on Lumiun Blog
How to prevent corporate data leaks in the cloud.
In addition to cybercriminals using exploits for zero-day vulnerabilities, a much more real risk for organizations – especially when embarking on ambitious digital transformation projects – is human error.
By Phil Muncaster at Welivesecurity
'Elephant Beetle' spends months in victims' social media accounts to divert transactions.
A financially motivated actor nicknamed 'Elephant Beetle' is stealing millions of dollars from organizations worldwide using an arsenal of over 80 unique tools and scripts.
By Bill Toulas Branco on Bleeping Computer
Group claims to have hacked into Claro and displays screenshots.
The Lapsus$ hacker group, the same one that claimed responsibility for the attack on the Ministry of Health on December 10th, announced that it had hacked into computers belonging to the telecommunications operator Claro.
By Paulo Brito in CISO Advisor
These are the digital threats that are expected to gain more prominence in 2022.
2022 has arrived, and in the digital security landscape, it's expected that fraud and crime will continue to make headlines in the coming months. However, what are the threats that are most likely to stand out during this period?
By Dácio Castelo Branco on Canaltech
Material
Not yet subscribed to our newsletter to receive this content weekly in your email? Then sign up using the link below:
https://br.lumiun.com/semana-da-seguranca-na-internet
Share the link with your colleagues and friends.
