A week in security (April 02 – April 08)

A week in security (May 20 – 26)

Last week on Malwarebytes Labs, we took a look at a skimmer pretending to be a payment service provider, gave an overview of what riskware is, took a deep dive into concerns about PACS leaks, and dug around in the land of “These Governments said fix it…hurry up”.

Other cybersecurity news

  • Changes inbound for Microsoft network admins: If you’re managing Windows 10 updates, you’ll need to make some tweaks to System Center Configuration Manager. (Source: Microsoft)
  • AI animates static images: First we had Deepfakes, now we have the Mona Lisa’s eyes following you around the room in a more literal way than you may be accustomed to. (Source: The Register)
  • Baltimore Ransomware woes: An update on how Baltimore is coping two weeks after a devastating Ransomware attack. (Source: New York Times)
  • Huge title insurance leak: First American Financial Corp. find themselves in the middle of a story involving unsecured documents dating back to 2003. (Source: KrebsOnSecurity)
  • Trouble for T-Mobile: The telecommunications giant run into an issue which allowed people in the know to potentially view customer names / account numbers freely. (Source: Daley Bee)
  • Security pros on the way out: Large amounts of pros have considered quitting the field due to a lack of resources. (source: Help Net Security)
  • Party political security: Security Scorecard take a look at how robust political parties are in terms of their security prior to major elections. (Source: Security Scorecard)
  • Canada, popular with phishers: Why is Canada a favourite for people launching fake mail campaigns? (Source: Tech Republic)
  • But is it art: Is this laptop containing some of the most notorious pieces of malware around worth one million dollars? (Source: BBC)
  • School’s out: TrickBot gives the kids an early recess as a school’s IT infrastructure can’t cope with the attack. (Source: ZDNet)

Stay safe, everyone!