Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days.
Below you’ll find a quick recap of topics followed by links to news articles and/or our blog posts providing additional insight. Be sure to check back each Friday for highlights of the goings-on each week!
ZNIU is the First Android Malware to Exploit Dirty COW Vulnerability
Dirty COW attacks on Android has been silent since its discovery, perhaps because it took attackers some time to build a stable exploit for major devices. Almost a year later, Trend Micro researchers captured samples of ZNIU.
The Underground Economy Is Using Coupon Fraud as a Form of Business Process Compromise
The fraudulent redemption of freebies, discounts, and rebates in the form of coupons is reportedly costing U.S. businesses $300–600 million every year. And where there’s money to be made, there are cybercriminals rustling up schemes to take advantage of it.
Fast-Food Chain Sonic Investigates Potential Card Breach
U.S. fast-food chain Sonic Drive-In is investigating a potential payment card breach. Its alert follows a large, potentially related batch of stolen card data appearing for sale on a cybercrime “carder” marketplace.
Deloitte Claims Recent Cyberattack Affected ‘Very Few Clients’
Global accounting firm Deloitte said on Monday it was the victim of a cyberattack that affected the data of a small number of clients, providing few details on the breach. This breach is the latest in a series of breaches involving organizations that handle sensitive financial data.
Tech Support Scam Is Being Used to Spread Cryptominer Coinhive’s Monero
An EITest campaign is using tech support scams to deliver Coinhive’s Monero Miner, the same JavaScript cryptocurrency miner silently being used to exploit visitors to The Pirate Bay site. The malware runs smoothly and a victim likely won’t notice that their device has been affected.
Equifax CEO Retires Amid Cyberbreach Fallout
Equifax CEO and Chairman Richard Smith stepped down Tuesday, becoming the latest executive of the credit-reporting giant to step down following a massive cyberbreach that compromised personal information for 143 million U.S. consumers.
Cybercrime-as-a-Service Is Becoming Mainstream
Purchasing cybercrime-as-a-service tools for threats is no longer just something for low level or aspiring hackers. Organized criminal gangs are taking advantage of these services as the underground criminal landscape continues to become more professionalized and mature.
ATM Malware Is a Lucrative Business
Today, there are 475,000 and 500,000 ATMs operating in the U.S. Trend Micro and Europol’s European Cybercrime Centre (EC3) released a report on the ATM malware landscape. The report digs into the depth and breadth of malware targeting ATMs, as well as the attack perpetrators.
Virtualized Network Security Helps Mobile Operators Keep Customers Safe
Mobile network operators (MNOs) are increasingly adopting virtualization and software acceleration technologies to become more agile in how they deploy and operate network services.
Freezing Your Credit Isn’t Enough to Prevent Identity Theft
In the wake of the Equifax breach, identity-theft horror stories have been easy to come by. The solution, according to many experts, is freezing your credit. But a credit freeze protects only against new accounts being opened in your name.
Trend Micro Introduces New Email Security Technologies Powered by XGen
On Monday, Trend Micro introduced new email security technologies powered by XGen™ and a new product, Smart Protection for Office 365.This new service combines the advantages of both an email gateway with an API service integrated solution.
Please add your thoughts in the comments below or follow me on Twitter; @JonLClay.