Friday Five: 12/11 Edition



Happy Friday! Close out the work week with our picks for the hottest articles from the IT and security presses:

  1. "Hacker Leaks Customer Data After a United Arab Emirates Bank Fails to Pay Ransom" by Kim Zetter
    Recently there was a breach at one of the largest banks in the United Arab Emirates. A hacker who goes by the name Hacker Buba has breached the bank’s systems and started releasing customer transaction and account records on Twitter. The leaks started after the bank refused to pay a bitcoin ransom worth about $3 million. To learn more about this data breach, read this article.
  2. "Adobe, Microsoft Each Plug 70+ Security Holes by Brian Krebs
    Adobe and Microsoft have recently released vulnerability patches which fix up to 70 security holes – each. Adobe’s patch is more focused on the Flash Player software, whereas Microsoft’s patch is more focused on its browser, Internet Explorer, and bugs that existed within Microsoft Office. To learn more about these critical security patches from both Adobe and Microsoft, read this article.
  3. "Phony WhatsApp update could cost you much more than a dollar" by John Zorabedian
    A bank industry group in Singapore has warned that there might be yet another piece of malware targeting Android users. The malware can steal users’ personal information such as credit card numbers and other personal details. To learn more about this potential Android threat, read this article.
  4. "Watch out for malware disguised as unpaid invoices!" by Graham Cluley
    Phishing scams have long used posed as overdue invoices to instill a sense of urgency when tricking users into falling victim to an attack. Recently there has been a new wave of phishing emails with attached zip files labeled as “invoices.” The compressed attachments also contain infected JavaScript files which could steal personal information from victims’ devices. To learn more about this malware disguised as unpaid invoices, read this article.
  5. "Airline Customers' Data Exposed by HTTPS Hole – Report" by Phil Muncaster
    HTTPS, also known as HTTP secure, is widely used by many websites to encrypt information sent over the internet. Recently, critical security holes resulting from a lack of HTTPS implementation have been discovered within apps and mobile sites of 16 airline companies; including Aer Lingus, AirAsia, and Air Canada. The companies were notified by security vendor Wandera, claiming that PII may have been exposed. To learn more about this discovery, read this article.
Susan Xu

Please post your comments here

Digital Guardian for Advanced Threat Protection Whitepaper

Learn how DG ATP prevents and stops advanced threats throughout the threat lifecycle.

Download Now

Related Articles
Thanks For Nothing, 2017

2017 was marked by global ransomware outbreaks, seemingly countless data breaches, and little legislative movement from Congress.

Senate Banking Bill Would Make Credit Freezes Free

The Senate is expected to approve a banking bill next week that includes a provision which would make credit report freezes free.

Friday Five: 4/29 Edition

It’s Friday! Catch up on the top infosec headlines with our weekly news roundup.