A week in security (July 12 – July 18)

Last week on Malwarebytes Labs:

• DNS-over-HTTPS takes another small step towards global domination
• Nope, that isn’t Elon Musk, and he isn’t offering a free Topmist Dust watch either
• Four in-the-wild exploits, 13 critical patches headline bumper Patch Tuesday
• Is crypto’s criminal rollercoaster approaching a terminal dip?
• Ransomware’s Russia problem
• SonicWall warns users of “imminent ransomware campaign”
• What is scareware?
• Does using a VPN slow down your Internet?
• US offers huge reward in fight against state-sponsored cybercriminals

Other cybersecurity news:

• Kaseya finally started moving on after the ransomware attack from REvil. (Source: Kaseya CSA Incident Response)
• Attackers use non-malicious documents to disable macro security warnings before executing the malicious macro. (Source: The Hackers News)
• MageCart criminal gang used odd concatenation technique to hide their malware. (Source: Sucuri Blog)
• Mint Mobile suffered a data breach. (Source: BleepingComputer)
• Guess, the fashion retailer, suffered a breach, too. (Source: SecurityMagazine)
• SpoofedScholars phishers targets professors and writers who are experts about the Middle East. (Source: TechRepublic)
• Meanwhile, REvil seem to have disappeared. (Source: Endgadget)
• At this point, we lost count at the number of times TrickBot has come back. (Source: Gizmodo)
• Twitter verifying bot accounts raised a lot of questions regarding their process. (Source: The Daily Dot)
• Adobe releases critical patches for Reader, Acrobat, and Illustrator. (Source: Security Week)

Stay safe!

The post A week in security (July 12 – July 18) appeared first on Malwarebytes Labs.