In the 45th edition of Internet Security Week , the FBI takes down a VPN service, an ethical hacker wins $2 million, employee phishing tests, and more.
News
Bug allowed viewing private documents in Google Docs
A security vulnerability in Google Docs may have allowed attackers to steal screenshots of your confidential documents. The cause was a post-message security misconfiguration.
In Savebreach
2020 in Review: A Look Back at the Worst Cyberattacks
If any sector has benefited from the coronavirus pandemic, it's certainly cybercrime. Hackers have exploited weaknesses and lack of security during the home-working era, significantly increasing attacks against companies, employees, and servers.
By Igor Shimabukuro in Olhar Digital
Self-Sent Email Scams with False Threat of Disclosing Intimate Video
A Q&A team comments on a scam that uses a fake message to try to scare and convince victims of the existence of an alleged intimate video. The message demands payment to keep the images from being released.
By Altieres Rohr in G1
Kawasaki discloses security breach, potential data leak
Japan's Kawasaki Heavy Industries announced a security breach and potential data leak following unauthorized access to a Japanese company's server from several overseas offices.
By Sergiu Gatlan at Bleeping Computer
How to identify security weaknesses on the company’s internet?
A company can only protect itself if it knows where attacks might come from. There's no point in having a giant shield in front of you if your back is unprotected.
By Kelvin Zimmer on Lumiun Blog
Whirlpool Corporation data is open on the dark web
The operators of the Nefilim ransomware have dumped data on the dark web that they say belongs to Whirlpool Corporation, the parent company of a large number of white goods manufacturers, whose brands include the Brazilian Brastemp and Consul.
In CISO Advisor
British police arrest 21 suspects for buying leaked passwords
The house fell for 21 British citizens who decided to buy credentials — that is, login and password combinations — leaked on the web.
By Ramon De Souza on Canaltech
FBI Takes Down VPN Service Used by Hackers
The action prevents access to a useful tool for cybercrime, the agencies say.
By Laura Hautala on CNET
Ethical hacker earns $2 million in bounty
Romanian Cosmin Iordache is the first ethical hacker to accumulate this amount. In the last 90 days alone, Iordache has earned around $300,000 in bounties.
In Savebreach
GoDaddy sparks controversy by conducting phishing tests on employees
They were promised a $650 vacation bonus from their company. It wasn't an act of corporate goodwill, however, but a particularly tone-deaf phishing test. And instead of extra money, those who failed received extra work.
By Karissa Bell at Engadget
Nintendo set up surveillance operation against hacker
Leaked Nintendo documents revealed a chilling surveillance operation carried out against a hacker researching exploits for the 3DS handheld. In addition to monitoring his private life, including aspects of his education, his home life, and his travels, the company followed its target from his workplace to pressure him to stop his activities.
By Andy Maxwell in Torrent Freak
Apple loses copyright battle against security startup Corellium
Corellium, the security research firm sued by Apple, has won a major legal victory against the iPhone maker.
By Reed Albergotti in The Washington Post
Ransomware attack takes down websites and customer service at Cemig, the Minas Gerais Energy Company
All Cemig services hosted on the cemig.com.br domain, including both the institutional website and the customer service website, have been taken offline.
In CISO Advisor
Attacks on suppliers, the Internet of Things, 5G, and fake pages: what to expect from digital security in 2021?
The General Data Protection Law will come into effect with the action of a regulatory agency, but new challenges and gaps in the legislation are already on the horizon.
By Altieres Rohr in G1
Company internet security: what is the employee’s role?
There's no doubt that information for companies of all sizes is an irreplaceable asset. Losing it can diminish their competitiveness and certainly lead to financial losses. Therefore, investing in internet security for companies, especially for employee use, is becoming increasingly important.
By Kelvin Zimmer on Lumiun Blog
Events
Data Protection Workshop | Free | 100% online | Compliance Training with a Focus on LGPD
- January 13, 2021, 7:00 PM – 9:15 PM
- Videoconferencing via Sympla Streaming
- Free
Not yet subscribed to our newsletter to receive this content weekly in your email? Then sign up using the link below:
https://conteudo.lumiun.com/semana-da-seguranca-na-internet
Share the link with your colleagues and friends.
