Introduction
Welcome to this week's edition of Security news weekly round-up. As usual, I am your host Habdul Hazeez.
This week's review is about privacy and malware.
Let's begin.
Breach Exposed Dallas Student, Parent, Teacher Personal Data
Data breaches could happen to anyone or any company. It's how you handle the response that matters.
Excerpt from the article:
According to the website statements, an unauthorized third party downloaded the data and stored it temporarily on an encrypted cloud storage site. Social Security numbers, birth dates, contact information and grades were among the data exposed
Traffic Exchange Networks Distributing Malware Disguised as Cracked Software
Beware of cracked software.
Excerpt from the article:
The attacks work by taking advantage of a number of bait pages hosted on WordPress that contain "download" links to software packages, which, when clicked, redirect the victims to a different website that delivers potentially unwanted browser plug-ins and malware that masquerade as antivirus solutions
ProtonMail Logs Activist's IP Address With Authorities After Swiss Court Order
You ain't anonymous if the "Law" wants you.
Excerpt from the article:
Despite its no IP logs claims, the company acknowledged that while it's illegal for the company to abide by requests from non-Swiss law enforcement authorities, it will be required to do so if Swiss agencies agree to assist foreign services such as Europol in their investigations
ProtonMail removed “we do not keep any IP logs” from its privacy policy
Still on ProtonMail with some twist.
Excerpt from the article:
After providing the activist's metadata to Swiss authorities, ProtonMail removed the section that had promised no IP logs, replacing it with one saying, "ProtonMail is email that respects privacy and puts people (not advertisers) first"
New 0-Day Attack Targeting Windows Users With Microsoft Office Documents
It's a Remote Code Execution flaw and it's pretty scary.
Excerpt from the article:
Tracked as CVE-2021-40444 (CVSS score: 8.8), the remote code execution flaw is rooted in MSHTML (aka Trident), a proprietary browser engine for the now-discontinued Internet Explorer and which is used in Office to render web content inside Word, Excel, and PowerPoint documents
WhatsApp “end-to-end encrypted” messages aren’t that private after all
I know what you are thinking: You got to be kidding me 😅.
Excerpt from the article:
The loophole in WhatsApp's end-to-end encryption is simple: The recipient of any WhatsApp message can flag it. Once flagged, the message is copied on the recipient's device and sent as a separate message to Facebook for review
SOVA: New Android Banking Trojan Emerges With Growing Capabilities
Keep on the lookout.
Excerpt from the article:
Dubbed S.O.V.A. (referring to the Russian word for owl), the current version of the banking malware comes with myriad features to steal credentials and session cookies through web overlay attacks, log keystrokes, hide notifications, and manipulate the clipboard to insert modified cryptocurrency wallet addresses
Support me
Writing makes me thirsty. I'll appreciate a cup of coffee 😉.
Credits
Cover photo by Debby Hudson on Unsplash.
That's it for this week, I'll see you next Friday.