Weekly Recap July 22 2022

  • By Steven
  • Jul 22, 2022

People once thought that water was the new oil, as the availability of fresh, potable water was starting to dwindle while the population continued to soar. People now say that data is the new oil.

Safeguarding data is just as important as collecting and analyzing it. The challenge lies in preventing evildoers on the web from illegally accessing, stealing, and selling your personal data or that of your customers. If you haven't updated your digital security protections in recent years, now is the time to do so. Here's a quick recap of this week's digital security breaches of note.

Premint Hack

Digital criminals have hacked the Premint NFT platform. The hack resulted in the loss of about $400,000 worth of NFTs and cryptocurrency. Hackers used harmful JavaScript to perform the attack. The JavaScript was weaved into the site's code, generating pop-ups that prompted users to enter their personal information. Hackers stole the users' data, allowing hackers to access, and transfer NFTs and crypto into their own accounts.

CloudMensis Spyware

CloudMensis, a form of spyware, remained hidden until recently. No one is sure how long it hid, with best estimates being at least a year, possibly several. CloudMensis primarily zeroes in on Apple computers though there is the potential for computers with Intel architecture to also be targeted. The spyware steals valuable information, performs document exfiltration, obtains screen captures, and even records the computer user's keystrokes.

Google Eliminates Android Apps Laden With Malware

Google has deleted eight apps containing malware. After three million aggregate downloads, Google removed the Android apps from the online store. Suppose you have the Razer keyboard & Theme, the Gif Emoji Keyboard, the Vlog Star Video Editor, the Wow Beauty Camera, the Coco Camera, or the Funny Camera. In that case, your computing device might be laden with the threat, dubbed Autolycos.

Each of the apps is laden with Joker Spyware. Joker is a form of malware that replicates itself within apps, subscribing the compromised party's computer to costly services. Joker even gains access to text messages to boot.

Page Builder Plugin Exploitation

Cyber security professionals with Wordfence are warning computer users of the spike in web-based attacks that manipulate vulnerabilities in WordPress plugins. The addon in question is the Kaswara Modern WPBakery Page Builder. The worst-case outcome is a shifting of control of the WordPress website from the site owner/operator to the hacker. Researchers identified the bug last spring, but its effects have not been entirely resolved as of this publication.

Phishing Sidesteps MFA to Access Email

Microsoft officials have admitted hackers are successfully attacking thousands of organizations with a phishing scheme that overcomes MFA to obtain access to business email clients. The campaign sidesteps multifactor authentication to access messages in email inboxes and ultimately conduct illegal activity. The fraud centers on accessing the payment information of corporate vendors.

All in all, thousands of organizations have been hit by the campaign in less than a year. Aside from adding multifactor authentication, businesses are advised to bolster their digital safeguards and provide ongoing digital security training that helps team members identify phishing scams and other online threats.

About the Author
IDStrong Logo

Related Articles

Instagram Vulnerability Allowed Hackers Access to Control Your Phone

Security experts Check Point Research discovered a critical vulnerability while examining Instagra ... Read More

Alien Malware Infects More than 226 Mobile Apps and Steals Bank Data

As reported on September 24, 2020, by ZDNet and ThreatPost, a new strain of malware named “A ... Read More

Universal Health Systems Hit by Ransomware Attack

Universal Health Systems (UHS), a Fortune 500 company owning more than 400 hospitals across the co ... Read More

Exchange Server Bug Exposes a Big Risk to Hackers

Months after Microsoft released a patch to fix a serious flaw in MS Exchange Server, more than 61% ... Read More

Clients’ Bank Data Exposed in Blackbaud Ransomware Attack

Blackbaud software was victim to a ransomware attack last May, and new information suggests that c ... Read More

Latest Articles

Industrial Services Company ABB Gets Breached Suffering Serious Project Delays

Industrial Services Company ABB Gets Breached Suffering Serious Project Delays

ABB is a Swiss-based technology company that has contracts with the US government along with other local governments and major companies in different parts of the world.

Almost 2 Million Patients Exposed By Apria Healthcare Data Breach

Almost 2 Million Patients Exposed By Apria Healthcare Data Breach

Apria Healthcare is a healthcare equipment provider that works with more than 2 million patients annually. The company offers services in more than 280 different locations in the United States and specializes in home healthcare equipment.

Over 39,000 Individuals Exposed in Marine Corps Data Breach

Over 39,000 Individuals Exposed in Marine Corps Data Breach

The US Marine Corps is a military service department that serves the US Department of Defense. The organization is responsible for provisioning and overseeing the marine troops and for most ground-based operations.

Featured Articles

How to Buy a House with Bad Credit

How to Buy a House with Bad Credit

Buying your own home is the American Dream, but it might seem out of reach to those with bad credit. However, the good news is, if your credit is less than perfect, you do still have options and in most cases, can still buy a home.

How Secure Is Your Password? Tips to Improve Your Password Security

How Secure Is Your Password? Tips to Improve Your Password Security

Any good IT article on computers and network security will address the importance of strong, secure passwords. However, the challenge of good passwords is that most people have a hard time remembering them, so they use simple or obvious ones that pose a security risk.

Top 10 Senior Scams and How to Prevent Them

Top 10 Senior Scams and How to Prevent Them

Senior scams are becoming a major epidemic for two reasons. First, seniors often have a lot of money in the bank from a life of working hard and saving.

Free Identity Threat Scan
Instantly Check if Your Personal Information is Exposed
All fields below are required
Please enter first name
Please enter last name
Please enter a city
Please select a state
Please enter an email address