Internet Security Week – Issue 113

In the 113th edition of Internet Security Week , the Rio de Janeiro State Treasury Department is a victim of ransomware, an efficient and affordable solution against data leaks for companies, 6 YouTube channels on malware analysis and much more.

News

Ransomware announces Rio de Janeiro State Treasury as victim

The group operating the Lockbit ransomware has announced the Rio de Janeiro State Treasury Department as one of its victims. On its leak website, the group reported having seized a total of 420GB of data from the Department. The group's post adds that the data will begin to be published on April 25, 2022, at 8:00 a.m. (presumably GMT). The group does not disclose the contents of the 2,338,476 files allegedly in its possession.

In CISO Advisor

McDonald's details customer data leak in Brazil

McDonald's Brazilian operations were the victim of a cybercriminal attack, resulting in the exposure of some of its customers' personal data. The warning appears in an email sent to affected consumers since at least the 17th, informing them about the incident and the possibility of phishing scams via email or instant messaging.

By Felipe Demartini on Canaltech

Anti-Ransomware Strategies

Ransomware attacks no longer make headlines—new victims are reported daily. Therefore, it's more important than ever for companies to have a well-designed, multi-layered strategy to protect themselves against this threat.

By Hugh Aver in Kaspersky Daily

High-impact flaws discovered in Lenovo notebooks' UEFI

ESET researchers have discovered and analyzed three vulnerabilities affecting several Lenovo laptop models. The first two vulnerabilities—CVE-2021-3971 and CVE-2021-3972—affect UEFI firmware drivers, which were initially designed for use only during the manufacturing process of Lenovo consumer laptops. Unfortunately, these machines were also mistakenly included in the production of BIOS ISO images without being properly deactivated.

By Martin Smolár at We Live Security

The most efficient and affordable solution against data leaks in companies

Data breaches are a serious and current security incident that can be easily prevented. When companies take the right measures and take the right actions, this type of security incident can be resolved.

By Kelvin Zimmer on Lumiun Blog

Cybercrime opens industrial secrets marketplace

There's a new underground market created by cybercrime, exclusively for the sale of data and documents from companies whose networks and servers have been hacked: it's called Industrial Spy and is located on the deep web with a ".onion" address. The marketplace has enough material to even offer some data for free to its members.

In CISO Advisor

Emotet virus gains new capabilities and increases its spread rate by 10 times

The Emotet malware remains committed to maintaining its lead as one of the world's most widespread threats, increasing its spread rate more than tenfold in March. During the period, more than 30,000 phishing emails were sent with the virus, compared to just under 3,000 recorded in February 2022.

By Felipe Demartini on Canaltech

Fakecalls: Meet the Trojan that imitates phone calls

Cybercriminals are constantly creating increasingly sophisticated malware. Last year, for example, an unusual banking Trojan called Fakecalls emerged. In addition to its usual espionage capabilities, it has the intriguing ability to "converse" with the victim disguised as a bank employee.

By Igor Golovin on Kaspersky Daily

Channels

Reverse engineering is a complex task that can be difficult to master. The sheer number of software and tools available makes the process even more challenging. For this reason, we've compiled a list of seven YouTube channels created by ESET, which provide interesting and useful materials and content on how to apply reverse engineering to malware analysis.