A rumor surfaced that phone numbers of Clubhouse users have been put on sale on the dark web. The voice chat app said there was no data breach. The company has assured users that its investment in security is solid. A Clubhouse spokesperson said that a series of bots have been generating billions of random phone numbers. In case any number matches with those generated numbers, the Clubhouse API returns no user identifiable information.
A warning has been issued by Microsoft to all its customers regarding a crypto-mining malware that can steal credentials and remove security controls. It is being spread via email and can drop tools for human-operated activity. The malware is called ‘LemonDuck’ and is being used to target Windows and Linux systems. The malware uses older and newer vulnerabilities in the system to gain access to run effective malicious campaigns.
A malware worth just Rs 3,600 on the dark web is being sold which helps to steal data of mac and windows users. The malware is known as ‘Xloader’ as reported by Check Point Research. Using this malware the hackers can get access to log-in credentials, collect screenshots, log keystrokes, and execute malicious files. Over 50% of victims are from the US, while hackers in 69 countries have requested the evolved malware.
After the recent allegations of the spyware sold by Israeli cyber firm NSO being abused on a global scale, an inter-ministerial team has been set up to “look into” the matter. Israel’s National Security Council is heading this team. NSO has denied the allegations and said the claims were just assumptions made by journalists and Pegasus software is used only to fight terrorism and crime.
SonicWall has sent an alert to all its customers regarding an incoming ransomware attack. The targets seem to be its Secure Mobile Access 100 series and Secure Remote Access products running unpatched. The ransomware group responsible is still unknown but customers have been asked to disconnect from the network immediately. A similar kind of targeting has happened with a few vendors earlier.
Google has uncovered four zero-day bugs in browsers of Apple, Microsoft, and their own Chrome that may put users’ data at risk. Quick action was taken and the bugs were fixed by the three tech firms. The H1 2021 has seen 33 zero-day bugs being discovered, 11 more than the entire year of 2020. Google said the increase in numbers was due to the improved rate of detection of zero-day bugs, which can enable it to protect users better.
Microsoft, during the April-June quarter, was the most imitated brand for phishing attacks. 45% of all phishing attacks were related to Microsoft, six percent point more than Q1. Following Microsoft were DHL with 26% and Amazon with 11%. Amazon Prime Day in Q2 saw 2,300+ domains registered in the name of Amazon. According to CheckPoint Research, hackers have been taking advantage of online shopping.
With the pandemic overhead, the country is facing the issue of rising cyberattacks. The number of breaches in India has increased by 2000% during the pandemic according to experts at Pursuit 2021. Almost 90% of attacks were traditional ones and 9% were targeted attacks. The NCPR recorded over four lakh cases, with financial frauds being half of them. India’s cybersecurity coordinator Gulshan Rai said, “cyberwar has started.”
The cyberattack on SolarWinds was the brainchild of a group from China, said Microsoft. Its team has detected a zero-day remote code execution exploit, being used to attack SolarWinds software which has been connected to DEV-0322, a group operating out of China. Hackers installed malware in the Orion software and hacked at least 250 federal agencies and top firms in the US after exploiting the CVE-2021-35211 vulnerability.