Connect with us

Cyber Security

Hackers Using COVID-19 Training Lure to Attack Office 365 Users

Avatar

Published

on

COVID-19 Training Lure

Coronavirus poses a huge impact globally, most of the countries in lockdown and some countries returning to some sort of normality.

Organizations also under risk of being impacted by a malicious coronavirus-related website depends on whether the country it is located in has gone back to business or is still under lockdown.

New COVID-19 Training Lure

COVID-19 continues to pose a serious threat for organizations, so organizations implemented testing programs to prevent employees from infection.

Checkpoint researchers observed the Cybercriminals distributing phishing emails and malicious files disguised as Covid-19 training materials.

The email is trying to lure the victim in signing up for a fake employee training web page, once the victim enters the login credentials it will be sent to the attacker’s server.

When the user opens the email and clicks on the attachment it displays the following image. But in the background, it downloads two malicious files.

Cyberattacks found to be increased by 16% in May when compared to March and April. Starting from June 2,451 new domains registered, out of 91 found malicious and 66 are suspicious.

Attackers taking advantage of the Coronavirus fear to continuously exploit online users by infecting their mobile with various tactics and techniques.

Cybercriminals continue to create phishing emails with this Coronavirus as the email subject or put in the email body to lure victims to click on links or download unwanted files.

You can follow us on LinkedinTwitterFacebook for daily Cybersecurity, and hacking news updates.

Also Read

Hackers Using Zoom’s Popularity in Coronavirus Outbreak to Infect Computers With Malware

Beware of Coronavirus-themed Attack that Attacks Windows Computer to Install’s Lokibot Malware

Source: https://gbhackers.com/covid-19-training-lure/

Cyber Security

Facebook Flaw Allowed Thousands Of Developers To Gather Personal Data

Avatar

Published

on

5,000 developers were mistakenly allowed to gather information from people’s Facebook profiles after a time limit on their rights had expired, according to BBC News. Apps on Facebook are supposed to be prevented from accessing people’s personal data if the app has not been used for 90 days, but this lock-out has not always worked due to a flaw in how it recorded inactivity. Facebook gave an example of the error in action, explaining that if two Facebook friends had both used an app, and only one was still using it after 90 days, the app might gather personal information from the inactive friend. It also said that the information developers could access was restricted by the permissions users agreed to when they first signed up to the app.

Source: https://www.informationsecuritybuzz.com/expert-comments/facebook-flaw-allowed-thousands-of-developers-to-gather-personal-data/

Continue Reading

Cyber Security

Ripple20 Vulnerability – Expert Source

Avatar

Published

on

As of June 16, 2020, a total of 19 vulnerabilities, collectively called Ripple20, were found within an embedded TCP/IP stack software library. This library, developed by Treck, Inc. was used in the manufacturing chain across all industries and could affect several hundred million connected devices. There are at least 21 confirmed affected vendors including Aruba Networks, Cisco, Dell, Digi International, HP, Intel, as well as several OT device manufacturers, such as Rockwell Automation and Schneider Electric/APC.

Four vulnerabilities are considered critical and are tracked against CVE-2020-11896, CVE-2020-11897, CVE-2020-11898 and CVE-2020-11901. These four have a CVSS severity score greater than 9 and can lead to remote code execution if weaponized. It is recommended affected devices are updated to the latest Treck stack version 6.0.1.67 or greater.

Source: https://www.informationsecuritybuzz.com/expert-comments/ripple20-vulnerability-expert-source/

Continue Reading

Cyber Security

Has your Roblox account been hacked to support Donald Trump?

Avatar

Published

on

Has your Roblox account been hacked to support Donald Trump?

Bleeping Computer reports that over 2000 accounts on the Roblox gaming platform have been hacked…

…not to make money or steal information, but to support Donald Trump’s re-election as US President.

Hacked Roblox profiles are being modified to read:

“Ask your parents to vote for Trump this year! #MAGA2020.”

At the same time hacked users’ avatars are being kitted out with red baseball caps, and a white t-shirt emblazoned with an eagle and the United States’s flag.

Hacked roblox profile
Hacked Roblox profile. Source: Bleeping Computer.

Unfortunately they’re not also being given face masks.

Of course, the typical Roblox player is too young to vote in the US Presidential Race in November even if they were likely to be convinced by having their account hacked.

Mystery surrounds who is responsible for the defaced accounts, although it feels fairly safe to assume that they are a fan of the current occupant of the White House.

Email Sign up to our newsletterSign up to Graham Cluley’s newsletter – “GCHQ”
Security news, advice, and tips.

Affected Roblox users would be wise to change their passwords, and ensure that they are not using the same password anywhere else on the internet. Reusing passwords is always a bad idea.

In addition, I would recommend enabling two-step verification (2SV) on Roblox for a higher level of security. I don’t particularly love the way that Roblox has implemented 2SV but it’s better than nothing. Just be sure not to add someone else’s email address to your Roblox account, otherwise they’ll be sent your 2SV security code as well.

Roblox players may need reminding to never enter their username and password into an in-game form, which can be one way for fraudsters to steal credentials.

In addition, gamers should be wary about what programs and browser extensions they install – they might be dressed up as ways of getting free Robux (Roblox’s in-game currency), prizes, or cheats but actually be designed to steal passwords.

And, for goodness sake, take that hat off your head and change your t-shirt.

You can listen to further conversation about this hack in this episode of the “Smashing Security” podcast:

Found this article interesting? Follow Graham Cluley on Twitter to read more of the exclusive content we post.

Source: https://www.grahamcluley.com/has-your-roblox-account-been-hacked-to-support-donald-trump/

Continue Reading
Gaming59 mins ago

Xur’s location and wares for July 3, 2020 – Destiny 2

Gaming1 hour ago

Destroy All Humans! Dependence Day trailer pokes fun at July 4

Gaming1 hour ago

Torchlight 3 hands-on preview: Burning brightly

The rolling plains of Colorado, drenched in the never-moving sun.
Gaming2 hours ago

Hunting Simulator 2 review: Doggone it

Gaming3 hours ago

All Mermaid DIYs And Clothing Items In Animal Crossing: New Horizons

Blockchain3 hours ago

Ransomware Targets Outdated Microsoft Excel Macros to Deploy Attacks

Gaming3 hours ago

What’s New In Animal Crossing: New Horizons’ Summer Update

Gaming4 hours ago

How To Find Pascal In Animal Crossing: New Horizons

Blockchain4 hours ago

Analyst Who Predicted Bitcoin’s V-Shaped Reversal at $3,700 Is Bullish

Blockchain4 hours ago

Here’s Why Ethereum’s Consolidation Could Result in an Explosive Move to $480

Gaming4 hours ago

Check On Your Black Gamer Friends

Blockchain5 hours ago

European Authorities Take Down Encryption-Based Criminal Group

venezuela-raises-petrol-prices-mandates-support-for-petro-at-gas-stations-3.jpg
Blockchain5 hours ago

Financial Services Dominate European Blockchain Dev: Report

Blockchain5 hours ago

Is Ripple exploring ODL between Europe, Mexico, Australia?

Blockchain5 hours ago

Vitalik: We Underestimated How Long Proof-of-Stake and Sharding Would Take to Complete

CovId195 hours ago

Major League Baseball Cancels 2020 All-Star Game Because Of Coronavirus

Blockchain5 hours ago

Tron (TRX) Jumps Into DeFi Frenzy with Three New Products

IOT5 hours ago

Sky Anchor Puts Radios Up High, No Tower Needed

CovId195 hours ago

When Your Dad Owns A Pizzeria, The Pandemic Means Learning To Make The Perfect Pie

jordan-henderson-i-changed-from-wanting-to-be-a-player-that-did-everything-jonathan-liew.jpg
CovId195 hours ago

Jordan Henderson: ‘I changed from wanting to be a player that did everything’ | Jonathan Liew

venezuela-raises-petrol-prices-mandates-support-for-petro-at-gas-stations-3.jpg
BBC5 hours ago

Celebrity MasterChef review – anyone for a giant lasagne?

Blockchain5 hours ago

Here’s the “Do or Die” Price That Will Determine Ethereum’s Macro Trend

Blockchain5 hours ago

UK Regulators Shut Down Crypto Exchange Following £1.5m Scam

Blockchain5 hours ago

2020 Top DeFi Projects to Follow

Mobility5 hours ago

Lime brings Jump bikes back to London

IOT5 hours ago

Must-See Cyberpunk Films: Hackers #cyberpunk

IOT5 hours ago

COMING SOON – Filtering Mask with Math Pattern

venezuela-raises-petrol-prices-mandates-support-for-petro-at-gas-stations-3.jpg
Blockchain5 hours ago

IRS Calls for Tools to Investigate Privacy Colin Transactions 

Gaming5 hours ago

New Sea Creatures Guide — Animal Crossing: New Horizons

Blockchain5 hours ago

In bitcoin, is anonymous really anonymous?

Blockchain6 hours ago

Telecom Giant Thinks Blockchain Can Make Phone Insurance More Convenient

Blockchain6 hours ago

Kyber Network (KNC) Price Skyrockets 28% Today, Here Is Why

venezuela-raises-petrol-prices-mandates-support-for-petro-at-gas-stations-3.jpg
Blockchain6 hours ago

Cryptocurrency News Roundup for July 3, 2020

Blockchain6 hours ago

This Binance Launchpad Alum Believes It Has Cardano, EOS & Algorand Beat

Blockchain6 hours ago

PnxBet Review – Cryptocurrency Online Sportsbook and Casino With Instant Deposits

Cyber Security6 hours ago

Facebook Flaw Allowed Thousands Of Developers To Gather Personal Data

Blockchain6 hours ago

OKEx Now Features Latin American Fiat Gateway with Latamex

Blockchain6 hours ago

Price Analysis 7/3: BTC, ETH, XRP, BCH, BSV, LTC, ADA, BNB, EOS. CRO

Blockchain6 hours ago

UK Regulators Shutter Phony Crypto Exchange GPay

Blockchain6 hours ago

Bitcoin’s price expectation depends on how much money you have

Trending