Internet Security Week - Issue 81

In the 81st edition of Internet Security Week , Brazilian banking trojan, millions of Microsoft servers are at risk, INEP leaks data and much more.

News

Hackers leak passwords for 500,000 Fortinet VPN accounts

A hacker leaked a list of nearly 500,000 Fortinet VPN logins and passwords that were allegedly copied from exploitable devices last summer. While the hacker claims the exploited Fortinet vulnerability has since been patched, they claim many VPN credentials are still valid.

By Lawrence Abrams in Bleeping Computer

New Brazilian banking Trojan allows total control of smartphones

Experts have discovered another family of mobile banking Trojans: TwMobo. Furthermore, they confirmed three important trends: growing interest among cybercriminals in mobile fraud, the internationalization of Brazilian mobile threats to Latin America, Europe, and the US, and the preference for RATs (Remote Access Trojans)—malware that allows two-factor authentication (2FA) to be bypassed—using fingerprints, facial recognition, or digital tokens on mobile phones.

In Kaspersky Daily

Lack of updates puts millions of Microsoft servers at risk

Highlighting once again the danger of outdated infrastructures without proper support from their administrators, a new digital security study has found more than two million vulnerable servers.

By Felipe Demartini on Canaltech

INEP leaks data on more than 5 million Brazilians and foreigners

The Hack has exclusively discovered that more than 5 million Brazilian students had their data improperly exposed on the web due to a series of configuration errors in the systems of the National Institute of Studies and Educational Research Anísio Teixeira (INEP), a federal agency linked to the Ministry of Education (MEC).

By Ramon de Souza in The Hack

Ransomware exposes data if victim calls the police

The Ragnar Locker ransomware group, known for a series of attacks on major companies like ADATA and Capcom, has found a new way to influence victims. The group is now threatening to release stolen data if they seek help from authorities.

In CISO Advisor

4 resources to increase your company's data security

As connectivity between businesses, people, and devices increases, so does the vulnerability of systems and users to hackers, viruses, and many other threats. To reduce the risk of cyberattacks, learn about four resources to increase the security of data traveling across your company's network and computers, increasing protection and productivity when using the internet.

By Heini Thomas Geib on Lumiun Blog

Largest DDoS in Internet History in Russia

A Russian media report says the attack is the largest in the short history of the Russian internet. The attack was confirmed by a US-based company.

By Ionut Ilascu in Bleeping Computer

Education suffers 380 attacks per week in Brazil

The education sector, combined with research, was the most targeted in July 2021, according to Check Point's customer monitoring: there was an average of 1,739 weekly attacks on each organization. In Brazil, during the month of July, the number of weekly attacks per organization increased by 19%, totaling an average of 377 attacks; it is the 17th most targeted country by this trend of attacks on the education sector.

In CISO Advisor

New cybercriminal campaign by the TeamTNT group has already infected more than 5,000 victims.

The TeamTNT group is expanding its cybercriminal operations with the adoption of new tools, which increase the group's threat level beyond the start of a new campaign called "Chimaera", recently identified (but which began in July 2021) and already "is responsible for thousands [more than 5 thousand] of victims around the world".

By Guilherme Petry in The Hack

Income Tax Return Software Had Serious Security Breach

A vulnerability in the Personal Income Tax (IRPF 2021) reporting software may have exposed users to risks, especially when using shared or insecure networks.

By Felipe Demartini on Canaltech