Written by 2:06 PM Information Security

W32 – What’s happening in InfoSec – by Rishauna Gunning from Jamaica

Knock Knock !! Let’s talk about what’s new this week.

Developing Community for Woman Infosec Pros in India.

 Vandana Verma tells us how women in India are finding support, education and love of cybersecurity through the growing InfosecGirls community.

 https://www.darkreading.com/theedge/developing-community-for-woman-infosec-pros-in-india/b/d-id/1338555?_mc=rss_x_drr_edt_aud_dr_x_x-rss-simple

Is this an upgrade or downgrade? WhatsApp’s new fact-check feature lets users identify fake i̇nformation.

 WhatsApp’s “Search the Web” feature lets users perform web searches on viral messages to confirm their authenticity.

https://www.hackread.com/whatsapp-fact-check-feature-identify-fake-info/

17-Year-Old ‘Mastermind’, 2 Others Behind the Biggest Twitter Hack Arrested.

 A 17-year-old teen and two other 19 and 22-year-old individuals have reportedly been arrested for being the alleged mastermind behind the recent Twitter hack that simultaneously targeted several high-profile accounts within minutes as part of a massive bitcoin scam.

https://thehackernews.com/2020/07/twitter-hacker-arrested.html?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+TheHackersNews+%28The+Hackers+News+-+Cyber+Security+Blog%29

How safe are you chatting online? Facebook plugin bug lets hackers hijack WordPress sites’ chat.

 A high severity bug found in Facebook’s official chat plugin for WordPress websites with over 80,000 active installations could allow attackers to intercept messages sent by visitors to the vulnerable sites’ owner.

https://www.bleepingcomputer.com/news/security/facebook-plugin-bug-lets-hackers-hijack-wordpress-sites-chat/

Online exam tool ProctorU admits breach after hackers leak its database.

 A data breach has affected almost half a million users of an online examination tool ProctorU, which is widely used by educational institutions worldwide.

https://www.hackread.com/online-exam-tool-proctoru-breach-database-leak/

Hundreds of Uber Eats User records leaked on the Dark Web.

 User records of Uber Eats, an American online food ordering service, have been leaked by a threat actor on Dark Web. Cyble, a cybersecurity firm came across the data after its dark web and deep web monitoring.

https://www.hackread.com/uber-eats-user-records-leaked-dark-web/

Cybercrime Growing At An “Alarming Pace” Due To #COVID19.

 Cybercrime is growing at an “alarming pace” as a result of the ongoing COVID-19 crisis and is expected to accelerate even further, a new report from INTERPOL has found.

https://www.infosecurity-magazine.com/news/cybercrime-growing-alarming-pace/

FBI is warning of cyber attacks against Windows 7 systems that reached end-of-life.

 The FBI warned private industry partners of risks impacting companies running Windows 7 after the Microsoft OS reached the end of life on January 14.

https://securityaffairs.co/wordpress/106846/security/fbi-warning-windows-7-eof.html?utm_source=feedly&utm_medium=rss&utm_campaign=fbi-warning-windows-7-eof

Hackers can abuse Microsoft Teams updater to deliver malicious payloads.

 Threat actors can abuse Microsoft Teams updater to retrieve and execute malicious code from a remote location.

https://securityaffairs.co/wordpress/106821/hacking/microsoft-teams-updater-malware.html?utm_source=feedly&utm_medium=rss&utm_campaign=microsoft-teams-updater-malware

Digital Clones Could Cause Problems for Identity Systems.

 Three fundamental technologies chatbots, audio fakes, and Deep Fake videos have improved to the point that creating digital, real-time clones of people is merely a matter of integrating the systems.

https://www.darkreading.com/endpoint/digital-clones-could-cause-problems-for-identity-systems/d/d-id/1338615?_mc=rss_x_drr_edt_aud_dr_x_x-rss-simple

LG And Xerox Internal Data Published By Ransomware Gang.

The operators of the Maze ransomware have published today tens of GB of internal data from the networks of enterprise business giants LG and Xerox following two failed extortion attempts. The hackers leaked 50.2 GB they claim to have stolen from LG’s internal network, and 25.8 GB of Xerox data.

https://www.zdnet.com/article/ransomware-gang-publishes-tens-of-gbs-of-internal-data-from-lg-and-xerox/

 


Rishauna Gunning from Jamaica contributed this article. Rishauna is a member of WISC (Women in InfoSec Caribbean), a Discord group from the G5 Cyber Security Foundation Ltd. Learn more about WISC  at wiscaribbean.org. WISC is a non-profit initiative supporting Caribbean women and girls to develop a career in Information Security.

Close