Weekly Recap July 22 2022

  • By Patrick Ryan
  • Jul 22, 2022

People once thought that water was the new oil, as the availability of fresh, potable water was starting to dwindle while the population continued to soar. People now say that data is the new oil.

Safeguarding data is just as important as collecting and analyzing it. The challenge lies in preventing evildoers on the web from illegally accessing, stealing, and selling your personal data or that of your customers. If you haven't updated your digital security protections in recent years, now is the time to do so. Here's a quick recap of this week's digital security breaches of note.

Premint Hack

Digital criminals have hacked the Premint NFT platform. The hack resulted in the loss of about $400,000 worth of NFTs and cryptocurrency. Hackers used harmful JavaScript to perform the attack. The JavaScript was weaved into the site's code, generating pop-ups that prompted users to enter their personal information. Hackers stole the users' data, allowing hackers to access, and transfer NFTs and crypto into their own accounts.

CloudMensis Spyware

CloudMensis, a form of spyware, remained hidden until recently. No one is sure how long it hid, with best estimates being at least a year, possibly several. CloudMensis primarily zeroes in on Apple computers though there is the potential for computers with Intel architecture to also be targeted. The spyware steals valuable information, performs document exfiltration, obtains screen captures, and even records the computer user's keystrokes.

Google Eliminates Android Apps Laden With Malware

Google has deleted eight apps containing malware. After three million aggregate downloads, Google removed the Android apps from the online store. Suppose you have the Razer keyboard & Theme, the Gif Emoji Keyboard, the Vlog Star Video Editor, the Wow Beauty Camera, the Coco Camera, or the Funny Camera. In that case, your computing device might be laden with the threat, dubbed Autolycos.

Each of the apps is laden with Joker Spyware. Joker is a form of malware that replicates itself within apps, subscribing the compromised party's computer to costly services. Joker even gains access to text messages to boot.

Page Builder Plugin Exploitation

Cyber security professionals with Wordfence are warning computer users of the spike in web-based attacks that manipulate vulnerabilities in WordPress plugins. The addon in question is the Kaswara Modern WPBakery Page Builder. The worst-case outcome is a shifting of control of the WordPress website from the site owner/operator to the hacker. Researchers identified the bug last spring, but its effects have not been entirely resolved as of this publication.

Phishing Sidesteps MFA to Access Email

Microsoft officials have admitted hackers are successfully attacking thousands of organizations with a phishing scheme that overcomes MFA to obtain access to business email clients. The campaign sidesteps multifactor authentication to access messages in email inboxes and ultimately conduct illegal activity. The fraud centers on accessing the payment information of corporate vendors.

All in all, thousands of organizations have been hit by the campaign in less than a year. Aside from adding multifactor authentication, businesses are advised to bolster their digital safeguards and provide ongoing digital security training that helps team members identify phishing scams and other online threats.

About the Author
IDStrong Logo

Related Articles

Instagram Vulnerability Allowed Hackers Access to Control Your Phone

Security experts Check Point Research discovered a critical vulnerability while examining Instagra ... Read More

Alien Malware Infects More than 226 Mobile Apps and Steals Bank Data

As reported on September 24, 2020, by ZDNet and ThreatPost, a new strain of malware named “Alien ... Read More

Universal Health Systems Hit by Ransomware Attack

Universal Health Systems (UHS), a Fortune 500 company owning more than 400 hospitals across the co ... Read More

Exchange Server Bug Exposes a Big Risk to Hackers

Months after Microsoft released a patch to fix a serious flaw in MS Exchange Server, more than 61% ... Read More

Clients’ Bank Data Exposed in Blackbaud Ransomware Attack

Blackbaud software was victim to a ransomware attack last May, and new information suggests that c ... Read More

Latest Articles

Misconfigured Database Spurs Theft of 63 Million OneMoreLead Records

Misconfigured Database Spurs Theft of 63 Million OneMoreLead Records

OneMoreLead, a business-to-business (B2B) marketing enterprise, suffered a significant data breach late last year. The marketing company left a database misconfigured, prompting the unintentional leaking of 63 million records. 

How to Prevent Data Loss from a Phone Scam

How to Prevent Data Loss from a Phone Scam

When you think of scams, you probably think of them as someone trying to trick you out of money. While data loss is typically not the primary goal of a scam, it can be the outcome.

UNM Health Data Breach

UNM Health Data Breach

The personal information of nearly 700,000 individuals was stolen in a data breach at the University of New Mexico Health. The data breach was revealed in the second half of 2021.

Featured Articles

How to Buy a House with Bad Credit

How to Buy a House with Bad Credit

Buying your own home is the American Dream, but it might seem out of reach to those with bad credit. However, the good news is, if your credit is less than perfect, you do still have options and in most cases, can still buy a home.

How Secure Is Your Password? Tips to Improve Your Password Security

How Secure Is Your Password? Tips to Improve Your Password Security

Any good IT article on computers and network security will address the importance of strong, secure passwords. However, the challenge of good passwords is that most people have a hard time remembering them, so they use simple or obvious ones that pose a security risk.

Top 10 Senior Scams and How to Prevent Them

Top 10 Senior Scams and How to Prevent Them

Senior scams are becoming a major epidemic for two reasons. First, seniors often have a lot of money in the bank from a life of working hard and saving.