dcsimg
July 28, 2020

TikTok is being discouraged and the app may be banned

In recent news retail giant Amazon sent a memo to employees telling them to delete the popular social media app TikTok from their phones. In the memo it stated that the app would pose a security risk without going into details. Later the memo was withdrawn without an explanation except that it was sent in error. Are we curious yet, my dear Watson? What is TikTok For those of us that can’t … [Read more...]

Filed Under: amazon, Australia, ban, bytedance, china, india, privacy, reddit, social media, tiktok, usa
July 27, 2020

A week in security (July 20 – 26)

Last week on Malwarebytes Labs, our Lock and Code podcast delved into Bluetooth and beacon technology. We also dug into APT groups targeting India and Hong Kong, covered a law enforcement bust, and tried to figure out when, exactly, a Deepfake is a Deepfake. Other cybersecurity news Insecure email addresses resulted in big-bucks sporting targets (Source: Silicon)What do you do when a lack of … [Read more...]

Filed Under: a week in security, advanced persistent threats, Android, android malware, APT, atm attacks, awis, bitcoin, Bitcoin hack, blackrock, blog recap, cybersecurity violations, deepfakes, hong kong, india, jackpotting, phishing, ransomware, scams, stolen data, twitter, weekly blog roundup, YouTube scams
July 21, 2020

Chinese APT group targets India and Hong Kong using new variant of MgBot malware

This blog post was authored by Hossein Jazi and Jérôme Segura On July 2, we found an archive file with an embedded document pretending to be from the government of India. This file used template injection to drop a malicious template which loaded a variant of Cobalt Strike. One day later, the same threat actor changed their template and dropped a loader called MgBot, executing and injecting … [Read more...]

Filed Under: APT, china, chinese apt, government of india, hong kong, india, loader, MgBot, mgbot malware, state sponsored cyberattack, Threat analysis
April 1, 2020

GDPR: An impact around the world

A little more than one month after the European Union enacted the General Data Protection Regulation (GDPR) to extend new data privacy rights to its people, the governor of California signed a separate, sweeping data protection law that borrowed several ideas from GDPR, sparking a torch in a legislative data privacy trend that has now spanned at least 10 countries. In Chile, lawmakers are … [Read more...]

Filed Under: Argentina, Bill No. MEN-2018-147-APN-PTE, Brazil, British Airways, California, California Consumer Privacy Act, CCPA, Chile, CNIL, Data Protection Directive, Data Protection Directive of 1995, European Commission, GDPR, general data protection regulation, Google, india, Lei Geral de Proteção de Dados Pessoais, National Data Protection Commission, Personal Data Protection Bill, privacy, Privacy Shield, Safe Harbor, Washington, Washington Data Privacy Act
July 26, 2019

Good Twitter Samaritans accidentally prevent shoeshine scam

A few days ago, Indian news portals were buzzing with tales of a well-worn shoeshine scam making its way into social media. It’s a great example of how good-natured gestures can unwittingly aid scammers when we combine high-visibility accounts with potential lack of fact checking. Thankfully, it comes with a happy ending for a change. What happened? A Twitter user dragged this offline scam into … [Read more...]

Filed Under: india, scam, shoe shine, Social engineering, social media, travel, travelling, twitter