Welcome to neoRhino IT Solutions' The Breacher Report, where twice a month we provide some of the biggest cybersecurity news and data breaches in snippets for you to keep you informed and aware of what's happening in the world of cybersecurity.
For March 1st-13th, 2020:
- New Malware Threat Uses Fake Coronavirus Tracking Websites to Spread: If you are a Windows user, be careful when visiting coronavirus map websites. A new threat called AZORult is using fake websites with maps that cover how the COVID-19 (Coronavirus) is spreading to spread its own virus threat. The virus lives as a malicious binary file that once installed on your computer can steal your login credentials, browsing history, cryptocurrencies, and even more. Always be sure to double check the web address before visiting the site. (The Next Web, Reason Labs)
- Fake Android Coronavirus Tracking Apps Run Wild: Android users are also being targeted during the Coronavirus crisis through fake tracking apps. A particular site called coronavirus(site) harbors a nasty threat that once visited, prompts the user to download an APK to track the threat in your area, but when installed infects the device with a ransomware called CovidLock that hijacks your lock screen password and demands victims to pay $100 in BitCoin, complete with fake logos from the World Health Organization (WHO) and Centers for Disease Control and Prevention (CDC). (The Next Web, Domain Tools)
- A 350% Rise in Healthcare Ransomware Attacks in 2019: A recent analysis revealed that healthcare IT vendors, hospitals, health systems, and covered entities has experienced a 350% rise in ransomware attacks in Q4 of 2019. A ransomware known as Zepplin was found to be the biggest culprit, nesting away after successful phishing attacks on various healthcare organizations. According to the report, this is the largest rise of attacks in healthcare since Q3 of 2017, and the trend continues into this year. (HealthITSecurity(.)com, Corvus, Blackberry Cylance)
- Microsoft Releases Fix for Unexpected Critical Vulnerability: An unscheduled patch has been issued by Microsoft to resolve a security flaw in its recent March 2020 patch. The flaw resides in the Server Message Block (SMB) on both 32- and 64-bit version of Windows 10. Microsoft has stated that the flaw has not been exploited but recommend applying the KB4551762 update as soon as possible. (TechCrunch)
- New Trojan Attack Looks to Steal Your Facebook User Info: Kaspersky Labs has released a new report that exposed a new Android-focused malware strain that intends to steal cookies from your browser and from Facebook. The trojan called (Trojan-Spy.AndroidOS.Cookiethief) hijacks the cookies for a cybercriminal to impersonate the victim as well as distributing spam through Facebook Messenger. According to Kaspersky, only around 1000 victims have been claimed by the threat but is expected to grow since the attack is difficult for websites to detect. It is recommended to clear your cookies over time and use private browsing when possible. (TechRepublic)
neoRhino’s Remote Managed Services and Security Awareness Team are here so you can focus on your business needs. You can relax knowing that we are here to protect your technology. Call us at (281) 779-4850 for a FREE consultation and we can help your business today.
