DEV Community

Cover image for Security news weekly round-up - 10th September 2021
Habdul Hazeez
Habdul Hazeez

Posted on

Security news weekly round-up - 10th September 2021

Introduction

Welcome to this week's edition of Security news weekly round-up. As usual, I am your host Habdul Hazeez.

This week's review is about privacy and malware.

Let's begin.

Breach Exposed Dallas Student, Parent, Teacher Personal Data

Data breaches could happen to anyone or any company. It's how you handle the response that matters.

Excerpt from the article:

According to the website statements, an unauthorized third party downloaded the data and stored it temporarily on an encrypted cloud storage site. Social Security numbers, birth dates, contact information and grades were among the data exposed

Traffic Exchange Networks Distributing Malware Disguised as Cracked Software

Beware of cracked software.

Excerpt from the article:

The attacks work by taking advantage of a number of bait pages hosted on WordPress that contain "download" links to software packages, which, when clicked, redirect the victims to a different website that delivers potentially unwanted browser plug-ins and malware that masquerade as antivirus solutions

ProtonMail Logs Activist's IP Address With Authorities After Swiss Court Order

You ain't anonymous if the "Law" wants you.

Excerpt from the article:

Despite its no IP logs claims, the company acknowledged that while it's illegal for the company to abide by requests from non-Swiss law enforcement authorities, it will be required to do so if Swiss agencies agree to assist foreign services such as Europol in their investigations

ProtonMail removed “we do not keep any IP logs” from its privacy policy

Still on ProtonMail with some twist.

Excerpt from the article:

After providing the activist's metadata to Swiss authorities, ProtonMail removed the section that had promised no IP logs, replacing it with one saying, "ProtonMail is email that respects privacy and puts people (not advertisers) first"

New 0-Day Attack Targeting Windows Users With Microsoft Office Documents

It's a Remote Code Execution flaw and it's pretty scary.

Excerpt from the article:

Tracked as CVE-2021-40444 (CVSS score: 8.8), the remote code execution flaw is rooted in MSHTML (aka Trident), a proprietary browser engine for the now-discontinued Internet Explorer and which is used in Office to render web content inside Word, Excel, and PowerPoint documents

WhatsApp “end-to-end encrypted” messages aren’t that private after all

I know what you are thinking: You got to be kidding me 😅.

Excerpt from the article:

The loophole in WhatsApp's end-to-end encryption is simple: The recipient of any WhatsApp message can flag it. Once flagged, the message is copied on the recipient's device and sent as a separate message to Facebook for review

SOVA: New Android Banking Trojan Emerges With Growing Capabilities

Keep on the lookout.

Excerpt from the article:

Dubbed S.O.V.A. (referring to the Russian word for owl), the current version of the banking malware comes with myriad features to steal credentials and session cookies through web overlay attacks, log keystrokes, hide notifications, and manipulate the clipboard to insert modified cryptocurrency wallet addresses

Support me

Writing makes me thirsty. I'll appreciate a cup of coffee 😉.

Buy Me A Coffee

Credits

Cover photo by Debby Hudson on Unsplash.


That's it for this week, I'll see you next Friday.

Discussion (0)