Welcome to neoRhino IT Solutions' This Week in Cyber, where we provide weekly cybersecurity news and data breaches in snippets for you to keep you informed and aware of what's happening in the world of cybersecurity.
For the week ending on January 8th, 2021:
- New Malware Targeting Windows and Other Operating Systems: Researchers on the Global Research and Analysis Team (GReAT) at Kaspersky Lab have recently discovered a new malware strain dubbed PyMICROPSIA, currently being used by a Middle Eastern group tracked as AridViper. Their malware was designed specifically to attack Windows-based machines. The malware utilizes various info-stealing capabilities, which include the ability to steal credentials from browsers, clearing browser histories, keylogging and more. (Kaspersky)
- Millions of Windows 7 Users Remain Despite Support Ending: We’ve discussed the EOL process of Windows 7 several times and how it can be a major security risk. However, recent reports show that even a year after Microsoft ended support for the OS, there are still more than a hundred million Windows 7 machines in use. Considering that, it moves to something well beyond terrifying. Hackers almost always attack the low hanging fruit first, and it doesn't get any easier than breaking into a Windows 7 machine.
- Whirlpool Suffers Ransomware Attack: Whirlpool, one of the largest home appliance manufacturers in the world and employer of nearly 80,000 people, is the latest company to fall victim to this type of attack. In their case, the hackers that breached their system utilized the Nefilim ransomware strain, managing to exfiltrate a variety of sensitive data before encrypting files on a number of company servers.
- Kawasaki Motors Endured Data Breach: Kawasaki Heavy Industries is the latest company to fall victim to a security breach. The company discovered that one or more unauthorized parties accessed a company server in Japan from an office in Thailand on June 11th, 2020. Kawasaki's IT security staff halted all communications between the two sites the same day the discovery was made. A spokesman for the company stressed that although no evidence was found that any data was exfiltrated from corporate servers, it is possible that some information was stolen.
- T-Mobile Suffers Yet Another Security Issue: According to T-Mobile, the cellular company is currently notifying a small number of customers (allegedly less than 0.2 percent) that some information related to their account may have been illegally accessed. The good news is that the data accessed did NOT include any names associated with the account, financial data, credit card information, social security numbers, passwords, PINs or physical or email addresses. However, any type of data leak, especially for a large company such as T-Mobile, is always a cause for keeping a close eye on your account activity.
neoRhino’s Remote Managed Services and Security Awareness Team are here so you can focus on your business needs. You can relax knowing that we are here to protect your technology. Call us at (281) 779-4850 for a FREE consultation and we can help your business today.
