WEEKLY CYBERSECURITY NEWSLETTER NO: 168
#Weekly Cybersecurity Tip: You shouldn’t ignore IT security procedures, even if it makes your job harder in any sense.
Download newsletter here. To receive these direct to your inbox, sign up here.
1- 100M Users’ Data Exposed via Third-Party Cloud Misconfigurations
Mobile app developers have potentially exposed the data of more than 100 million users due to misconfigurations of third-party cloud services, report researchers who analyzed Android apps.
2- ‘Data Poisoning’ May Be The Next Big Attack Vector
Data poisoning attacks against the machine learning used in security software may be attackers’ next big vector. Machine learning is based on pattern recognition in a pool of data. Data poisoning is adding intentionally misleading data to that pool so it begins to misidentify its inputs.
3- Mobile Stalkerware is On The Rise
Mobile stalkerware, which is software silently installed by stalkers onto victims’ mobile devices without their knowledge, is on the rise. Serious vulnerabilities were discovered in Android stalkerware apps and their monitoring servers that could result in serious user impact if exploited.
4- Cybercriminal Group Getting Taken to “Hackers’ Court” For Not Paying Affiliates
Cybercriminals who have worked as affiliates with ransomware group DarkSide, responsible for the Colonial Pipeline attack, are having a tough time getting paid for their work now that the group has had its operations interrupted; so, they’re turning to admins of the group’s Dark Web criminal forum to sort things out in what researchers call a shady version of the People’s Court.