Chinese users face a targeted malvertising campaign through malicious Google ads promoting restricted messaging apps like Telegram. Malwarebytes' Jérôme Segura revealed that threat actors exploit Google advertiser accounts to create these deceptive ads, leading users to download Remote Administration Trojans (RATs). The ongoing campaign, known as FakeAPP, is a continuation of a prior assault that initially targeted Hong Kong users searching for messaging apps in late October 2023. The attackers have expanded their tactics by adding LINE to the list of targeted messaging apps, redirecting users to fraudulent websites on Google Docs or Google Sites.

The malicious Google infrastructure embeds links controlled by threat actors, delivering installer files that deploy trojans like PlugX and Gh0st RAT. Malwarebytes traced the fraudulent ads to two advertiser accounts, Interactive...

It's always a good idea to regularly clear your cache and browsing history to safeguard your online privacy. This is because web browsers tend to store sensitive information such as login credentials, browsing history, and cookies, which cybercriminals can easily exploit to gain access to your data. By removing this information periodically, you protect your online privacy and reduce the risk of falling prey to cyber threats like identity theft, phishing attacks, and malware infections. So, make it a habit to clear your cache and browsing history regularly to keep your online activities secure and private.

Got questions? Submit a ticket at [PB8324.3] Data Security Support.

To safeguard your login credentials from malicious attacks, it's important to avoid clicking on suspicious links, type in the website's address manually, ensure the presence of "https://" and a padlock symbol, enable two-factor authentication, keep an eye on account activity, and report any unusual activity immediately. Stay alert to prevent credential harvesting.

Got questions? Submit a ticket at [PB8324.3] Data Security Support.

Hello and welcome to this week's Securi-Trivia! This quiz is designed to test your knowledge and reinforce the cybersecurity tips we send out every day. Each week, we'll ask you 10 multiple-choice questions based on the daily tips and awareness we've sent out during the week. The questions will cover a range of topics, including understanding data security and more. To pass the quiz and receive dreampoints, you'll need to get at least an 80% passing score.

Remember, staying safe online is a shared responsibility. Answer the questions to test your knowledge. Don't worry if you don't get them all right on the first try - you can retake the quiz as many times as you like!

Click this link to take the quiz: https://securitytips.cloudstaff.com/quizzes/view/113

It is crucial to use passwords that are long and intricate to ensure the security of your online accounts. Today, hackers use sophisticated password-cracking programs that can try thousands of password combinations every second, making it much easier for them to break into your account. If your password is simple and easy to guess, it may take only a few seconds for these programs to crack. 

To prevent such unauthorized access, it is recommended to use strong passwords that are as long as possible. The longer the password, the more difficult it is for a hacker to break it. To make your password even more secure, include a combination of uppercase and lowercase letters, numbers, and special characters such as "&" and "%".

January 25, 2024 22:19 (on 1/26/24) |  0 | QR Ready | 1 minute read

Autofill is a useful feature that can simplify the process of filling out forms and save you time. By automatically populating fields with information you've previously entered, it can be a real-time-saver. However, it's important to be aware of the potential risks associated with Autofill. If someone gains unauthorized access to your phone or computer, they could potentially access your personal information. To prevent this from happening, it's a good idea to consider disabling the Autofill feature when not needed. 

Got questions? Submit a ticket at [PB8324.3] Data Security Support.

In recent times, fake money transfer scams have become increasingly common. Scammers use various tactics to trick individuals into believing that they have received funds when in reality, no such transfer has taken place. These scams can have severe financial and emotional consequences, leaving victims feeling helpless and violated. To protect yourself from such schemes, it is essential to take necessary precautions such as verifying transactions before accepting them, using secure payment methods, staying informed about scams, monitoring accounts for unusual activity, and promptly reporting any suspicious activities to prevent fraud. 

Got questions? Submit a ticket at [PB8324.3] Data Security Support.

Stay skeptical of unexpected emails or messages requesting sensitive information. Verify the legitimacy of the sender by checking email details. Hover over links to confirm secure (https) connections and avoid pop-ups requesting personal information. Enable Two-Factor Authentication (2FA) for added security. Prioritize HTTPS for website security, and regularly update software to counter vulnerabilities.

Got questions? Submit a ticket at [PB8324.3] Data Security Support.

To improve the security of your location-tracking app, follow these steps: review app permissions, download from official sources, update regularly, enable two-factor authentication, customize privacy settings, be cautious on public Wi-Fi, clear location history, limit real-time sharing to trusted contacts, and monitor account activity for suspicious behavior.

Got questions? Submit a ticket at [PB8324.3] Data Security Support.

Background: This zero-day vulnerability represents the first actively exploited flaw patched by Google in Chrome in 2024. In the previous year, Google successfully addressed eight actively exploited zero-days in the browser.

Summary: Google has released critical updates addressing four security vulnerabilities in the Chrome browser, one of which is a zero-day flaw actively exploited by threat actors. Tracked as CVE-2024-0519, this vulnerability involves an out-of-bounds memory access in the V8 JavaScript and WebAssembly engine, posing a significant risk of remote code execution.

Details: The CVE-2024-0519 vulnerability allows attackers to read out-of-bounds memory, potentially obtaining sensitive values like memory addresses. Exploiting this flaw can bypass protection mechanisms such as ASLR, increasing the likelihood of achieving code execution rather than just causing a denial of service. The issue was reported...