In the 96th edition of Internet Security Week, the Post Office suffers a cyberattack, a live broadcast on information security, two Windows flaws discovered, Outlook attracts attackers, the advantages of blocking websites in the company, and much more.
News
Lapsus$ Group Attacks, But Correios Restores Services
From the moment of the attack, all services at 26 Correios IP addresses were disrupted. Experts consulted by CISO Advisor indicated that the company had also suspended services for maintenance.
In CISO Advisor
Two more Windows flaws discovered that allow attackers to take control
Microsoft has issued an alert to its customers warning that a combination of two privilege escalation flaws in Windows could be used by attackers to take control of domains. The company emphasizes that both vulnerabilities have already been fixed in the latest system security updates.
By Dácio Castelo Branco on Canaltech
Microsoft Teams bug that allows phishing has been unpatched since March
Microsoft has said it will not fix or is delaying patches for several security flaws affecting the Microsoft Teams link preview feature reported since March 2021.
By Sergiu Gatlan on Bleepingcomputer
Black Friday 2021 doesn't sell, but cyberattacks have soared
Black Friday and Cyber Monday 2021, two of the most anticipated dates of the year for digital commerce, were marked by a decrease in sales and a drastic increase in the number of cyberattacks, scams, and fraud.
By Guilherme Petry in The Hack
Outlook on the web version attracts attackers
A malicious Internet Information Services (IIS) module is turning the web version of Outlook into a tool for stealing credentials and a remote access panel. Unknown actors have used the module, which our researchers call OWOWA, in targeted attacks.
In Kaspersky Daily
Aviation to be targeted by ransomware in 2022, predicts Avast
Cybersecurity experts at Avast predict that in 2022, cybercriminals will make strides in ensuring the effectiveness of ransomware, fraud, continuation scams, and cryptocurrency mining malware.
In CISO Advisor
How to block websites: discover the benefits of managing internet access
More than just a necessity, figuring out how to block websites more effectively and efficiently is a requirement for any company. After all, it directly impacts productivity.
By Kelvin Zimmer on Lumiun Blog
PYSA Ransomware Behind Most Double Extortion Attacks in November
Security analysts at NCC Group report that ransomware attacks in November 2021 increased last month, with double extortion continuing to be a powerful tool in the threat actors' arsenal.
By Bill Toulas at Bleepingcomputer
Grindr fined €6.5 million for selling data without consent
The sale of user data to advertisers without explicit consent cost Grindr €6.5 million (R$41.7 million). The fine came from the Norwegian Data Protection Authority (DPA) and was based on a serious violation of the General Data Protection Regulation (GDPR).
By Roseli Andrion on Canaltech
Live
Not yet subscribed to our newsletter to receive this content weekly in your email? Then sign up using the link below:
https://br.lumiun.com/semana-da-seguranca-na-internet
Share the link with your colleagues and friends.
