Last week on Labs, we looked into PUPs stealing and using mainstream logos of security and tech companies to further gain user trust, GandCrab and Scarab ransomware variants in the wild, and a new Mac malware called OSX.CreativeUpdater that can be distributed via MacUpdate. We also profiled robocalling and ransomware, particularly how ransomware was named the “It” malware of early- to mid-2017, and then began to fizzle like a dying firecracker at end of the year onwards.
Other news
- Brian Krebs reminded everyone to file their taxes before threat actors do it for them. (Source: KrebsOnSecurity)
- Hold on to your digital wallets as attacks against them will likely increase, security experts say. (Source: The Express)
- Well, would you look at that? Scammers can get scammed, too! (Source: The Register)
- This low-budget, low technical know-how phishing campaign was able to spy on a community for more than a year. (Source: Dark Reading)
- With all the hoopla around Meltdown and Spectre, malware authors are beginning to take advantage of them. In fact, several malware samples are being detected by a number of security companies. (Source: Bleeping Computer)
- Finally, Google is weeding out bad apps from their Play Store. (Source: SecureWorld)
- A new Adobe Flash zero-day vulnerability was recently found in the wild, and it targets users in South Korea via a malicious Microsoft Word document file. (Source: Threatpost)
- Cryptomining named as the new threat in the enterprise environment. (Source: Dark Reading)
- Fact: There are good bots and bad bots. Here’s a deeper look at the bad ones that are rampant on Twitter. (Source: The New York Times)
- And the Spectre and Meltdown patching go on and on and on… (Source: TechRepublic)
Stay safe, everyone!