Go to listing page

Daily Cybersecurity Roundup, June 26, 2020

Nation-state actors could go to any length with their self-serving malicious objectives. In a recent incident, researchers suspect a similar motive behind a Chinese bank coercing two UK-based firms into installing a malware-loaded tax software. In other news, Aspire news, a domestic violence app, suffered a data breach revealing the confidential information of the victims of domestic violence stored in 4000 voice recordings. On that note, let’s glance through the top cybersecurity highlights from the past 24 hours.

01

Trustwave researchers disclosed that a Chinese bank forced at least two U.K.-based companies to install Intelligent Tax, a malware-laced tax software on their systems.

02

Misconfigured cloud storage bucket at Aspire News divulged around 4000 voice recordings of domestic violence victims. The recordings contained highly-sensitive details, including the victims’ addresses, harassers’ names, and more.

03

More than 1,400 German police personnel raided 15 German states, neighboring Austria and Poland, and recovered over 300 TB of data from the users of an illegal cybercrime marketplace.

04

Researchers reported a Facebook phishing scam that targets users with a threat about an explicit video of them, which then triggers an automatic message into the inboxes of their friend list.

05

The U.S. Department of Justice convicted a 22-year-old hacker for creating multiple DDoS botnets and compromising hundreds of thousands of home routers and other IoT devices worldwide.

06

Security analysts at Avanan uncovered an ongoing email phishing attack campaign loaded with a trojan, which put over 200 million users of Microsoft 365 security at risk.

07

With a secret list of research institutions to provide prioritized protections, the DHS has alerted the medical sector about the potential security vulnerabilities since the beginning of the coronavirus pandemic.

08

TikTok agreed to suspend its clipboard snooping activity after Apple’s new privacy feature highlighted its activity of reading copied data without permission.

09

Tanium, a cybersecurity company, raised $100 million (estimated) in a new funding round from Salesforce Ventures, taking its valuation to $9 billion.

10

Belgium-based Intigriti, an ethical hacking security company, secured around $4.5 million in Series A round led by ETF Partners.

Get the Daily Cybersecurity Roundup delivered to your email!