INFOSEC IN BRIEF Scammers have exploited Google’s advertising system to promote a malicious version of the Authenticator software.
A team at Malwarebytes identified the deceptive ads, which appear to originate from a Google-approved domain and a verified user. The ads misleadingly list the download domain as google.com, but actually redirect users multiple times before landing on a site, chromeweb-authenticators.com, hosting the fake app on GitHub. Some of the code is written in Russian, adding to the suspicion.
“Some unknown individual was able to impersonate Google and successfully push malware disguised as a branded Google product,” said Jérôme Segura, principal threat researcher at Malwarebytes. Ironically, users trying to enhance their security by downloading the trusted Google Authenticator may end up compromised. To avoid such threats, users should refrain from downloading software through ads.
AI-written Emails Dominate BEC Cases According to VIPRE Security, AI-generated emails now account for 40% of business email compromise (BEC) cases, often displaying better spelling and grammar than human-written emails.
CISA Appoints First AI Officer CISA has appointed Lisa Einstein as its first chief artificial intelligence officer, emphasizing the importance of addressing AI threats and leveraging AI for threat detection across sectors.
ServiceNow Vulnerabilities Alert CISA has flagged two critical vulnerabilities, CVE-2024-4879 and CVE-2024-5217, in ServiceNow’s platform, urging federal agencies to patch them by August 19 to prevent remote code execution attacks.
Google gamed into advertising a malicious version of Authenticator https://t.co/aioz45boqF
— The Register (@TheRegister) August 5, 2024
China Targets Taiwanese Institute APT41, a Chinese state-sponsored group, has targeted a Taiwanese research institute using ShadowPad trojan and Cobalt Strike. The campaign, uncovered by Cisco Talos, has been active for over a year, exploiting vulnerabilities to access sensitive technologies.
Toronto Police Bust SIM Swappers Toronto police arrested ten individuals in a SIM swapping scheme, seizing over $1 million in stolen funds and 400 pieces of fake ID. The suspects face charges of fraud and possession of property obtained by crime.
This incident highlights the ever-evolving tactics of cybercriminals and underscores the need for vigilance in digital security practices.
Abdul Rehman
Abdul is a tech-savvy, coffee-fueled, and creatively driven marketer who loves keeping up with the latest software updates and tech gadgets. He's also a skilled technical writer who can explain complex concepts simply for a broad audience. Abdul enjoys sharing his knowledge of the Cloud industry through user manuals, documentation, and blog posts.
