InfoSec News & Investigations

A week in security (March 2 – 8)

Last week on Malwarebytes Labs, we fired up part 1 of our series on child identity theft, asked how well law enforcement can deal with cybercriminals, and took a trip down the memory lane of moral panic. We also looked at the positives and negatives of VPNs and examined our own progress in the fight against stalkerware, spyware, and monitoring apps.

Other cybersecurity news

  • Trouble strikes for operating system gurus as more than 670 Microsoft subdomains are found to be vulnerable to account takeover. (Source: Vullnerability)
  • A certified mistake: Plans to drop some 3 million web security certificates are shelved. (Source: The Register)
  • Surprise app attacks: “Hidden” apps are on the prowl for mobile users. (Source: Help Net Security)
  • Cathay Pacific airline was fined £500,000 for data protection failure,  after a variety of factors contributed to data being exposed online. (Source: BBC)
  • Cut up your cards: TESCO reissues 600,000 membership cards in the fallout from a brute force attack. (Source: Infosecurity Magazine)
  • Phishing mail contains surprise package: Steer clear of this attack, which uses password-protected files as bait. (Source: ZDNet)
  • Zynga face a potential class action suit after hackers accessed a large number of user accounts. (Source: Naked Security)
  • Cyber crossfire: Big names such as Tesla and SpaceX have been caught up in a barrage of online attacks. (Source: Forbes)
  • The UK’s Home Office was found in breach of GDPR rules 100 times because of a botched EU settlement scheme. (Source: ZDNet)
  • More coronavirus email scams: Be just as mindful opening emails as you would shaking hands with a coughing coworker, as unscrupulous coronavirus scammers await. (Source: liveMint)

Stay safe, everyone!

The post A week in security (March 2 – 8) appeared first on Malwarebytes Labs.

Original Source