A week in security (April 02 – April 08)

A week in security (December 16 – 22)

Last week on Malwarebytes Labs, we signalled that Mac threat detections have been on the rise in 2019, discussed how a new Consumer Online Privacy Rights Act (COPRA) would empower American users, warned that the Spelevo exploit kit debuts a new social engineering trick, and let our own Statler and Waldorf take you through a decade in cybersecurity fails: the top breaches, threats, and ‘whoopsies’ of the 2010s.

Other cybersecurity news

  • Much aligned with our own findings Amazon’s Ring security was found to be below par, awful even. (Source: Vice.com)
  • A Canadian clinical laboratory services provider has suffered a data breach that exposed sensitive information and admitted to paying the hackers to retrieve the stolen data. (Source: TechSpot)
  • 22-year old Londoner Kerem Albayrak was sentenced after attempting to blackmail Apple by threatening to factory reset 319 million iCloud accounts and selling the users’ data. (Source: BleepingComputer)
  • Hackensack Meridian Health paid an undisclosed amount in ransom to stop a cyber-attack that has disrupted the hospital owner’s computer network. (Source: Seclists.org)
  • If you stopped at a Wawa mini mart recently, your payment card details may have been snatched. (Source: TheVerge)
  • Contractor admits planting logic bombs in his software to ensure he would get new work. (Source: ArsTechnica)
  • Frankfurt, one of the largest financial hubs in the world had to shut down its IT network following an infection with the Emotet malware. (Source: ZDNet)
  • The Maze ransomware gang started a campaign to pressure victims into paying ransom by publicly listing successful attacks and threatening to leak data. (Source: TechTarget)
  • Every minute of every day, everywhere on the planet, dozens of companies are logging the movements of millions of people with mobile phones and storing the information in gigantic data files. (Source: The New York Times)
  • A United Kingdom national appeared today in federal court on charges related to his role in a computer hacking collective known as The Dark Overlord. (Source: Department of Justice)

Stay safe, everyone!