In issue 165 of Windows Safety Week, Malware Scripts, kidnapping of commercial emails, Brazil is “leader” in WhatsApp attacks and more.
News
Malware uses PDF files and Windows scripts in attacks against companies
A new file dissemination tactic is being used by cybercriminals to spread QBOT malware against corporate networks. Using answers to emails whose boxes have been compromised, bandits send supposed files in PDF format that actually hide Windows scripts that are used to download and install pests that promote initial access to infected systems.
By Felipe Demartini in Canaltech
Qbot campaign uses malware to kidnap commercial email
A new Cybercriminous Company that operate QBOT family bank trojans uses a combination of PDF and Windows Script File (WSF) to install malware and steal the victim's bank credentials.
In Ciso Advisor
Brazil is the country with the most phishing attacks by Whatsap in 2022
Phishing attacks are strongly growing and the total attacks is twice the amount recorded in 2021.
By Nathalia Sica in Kaspersky Daily
As a discarded router can reveal secrets of a company to cybercriminals
Second -hand routers available on the market have not often undergone a data cleaning process and are full of sensitive (and even confidential) information, highlights a survey conducted by ESET.
In We Live Security
What is a sniffer and how to protect your company and employees
Unlike many think, Sniffer was not created for malicious purposes. However, due to its functionality, it can also be used by cybercriminals very dangerously, facilitating the exposure of all its digital activity.
By Kelvin Zimmer in Lumiun Blog
Payment company accused of helping scammers 'contact Microsoft about a virus' should pay $ 650,000
Two executives and a multinational payment processing company must pay US $ 650,000 to the US government, says FTC, which accuses them of consciously processing credit card payments for Microsoft theme support scammers.
By Jude Karabus in The Register
March 2023 broke records of ransomware attacks with 459 incidents
March 2023 was the most prolific month recorded by cyber security analysts in recent years, measuring 459 attacks, an increase of 91% over the previous month and 62% compared to March 2022.
By Bill Toulas in Bleeping Computer
Github repositories are removed to block malware
Four Github repositories used by Redline Malware Control panels were suspended, interrupting the operations of the program that steals saved in internet browsers, said Cyberetica Eset security company. It is active commodity malware since at least the beginning of 2020.
In Ciso Advisor
5 most common digital blows against small and medium businesses
According to a Kaspersky security firm survey, digital attacks targeted to small and medium enterprises (SME) in the country increased by 140% by 2022. This proves that cybercriminals not just remain large groups, and are increasingly eyeing smaller businesses, which usually do not have resources or not usually invest in security.
By Claudio Yuge in Canaltech
Leak exhibits health data of almost 6 million Brazilians
The incident exposed data from employees from 21 Brazilian companies. The leaked information is data on consultations, procedures and exams performed.
By Francisco suede in We Live Security
Podcast
SEGINFOCAST #87 - SECURITY AS SERVICE: An agile, comprehensive and accessible strategy for security and privacy
- In this webinar, we approach everything you need to know about the dry model to increase the level of maturity of your organization's safety and privacy, building an effective cyber security corporate security program.
Are you not yet registered on our newsletter to receive this content weekly in the email? Then subscribe through the link below:
https://br.lumiun.com/semana-da-eguranca-na-internet
Share the link with your colleagues and friends.
