Tue. May 26th, 2020

Layer 7 Weekly Round Up: 10/24 Edition

THE BIG STORY

1. Facebook’s antitrust headache gets worse: 47 attorneys general now investigating

An antitrust probe into Facebook that began earlier this year with the support of eight states’ attorneys general has grown to include the backing of 47 attorneys general — from 46 states and the District of Columbia. Each state will now be looking for reports from constituents that may constitute evidence against the company — both in terms of anti-competitive practices and data safety. In a statement, Letitia James, the attorney general leading the charge, said: “Facebook may have put consumer data at risk, reduced the quality of consumers’ choices, and increased the price of advertising.” Following the announcement, Facebook shares were trading down as much as 4.4 percent. — CNN

 

WE’RE KEEPING AN EYE ON

2. Phishing campaign targeting United Nations, Red Cross, UNICEF, and other charities

Researchers at  Lookout Phishing AI have discovered an ongoing phishing campaign targeting various human rights organizations. Like other phishing campaigns, this particular campaign uses landing pages to impersonate Microsoft Office 365 login pages, but that’s where the similarities end. Unlike a vast majority of phishing sites, the phishing pages for this campaign are mobile-friendly and contain code that collects users’ password in real-time.

 

INCIDENTS

3. Avast confirms breach of internal network

In a blog post, antivirus maker — Avast — confirmed a breach of its internal network. The “extremely sophisticated” attack happened earlier this year when a malicious actor compromised an employees VPN credentials. Even more, the attacker seemed to target users of Avast’ CCleaner application. As a result, the company had to push back the release date for updates to the CCleaner software until it verified that no malicious alterations had been made.

 

4. NordVPN confirms hack

NordVPN, a virtual private network provider confirmed that it was hacked. The attack, occurred when a server at one of the company’s data center’s in Finland, which it was renting, “was accessed without authorization.” In the same statement, the company said that the attacker “gained access to the server by exploiting an insecure remote management system left by the datacenter provider.” However, NordVPN said it was unaware that such a system existed.

 

INTERESTING READ

5. Lawmakers ask US intelligence chief to investigate if TikTok is a national security threat

This year, lawmakers have launched investigations into several tech companies — Google, Facebook, and Amazon, to name a few. However, this week, TikTok was added to the mix. According to this article from TechCrunch, two top lawmakers —Charles Schumer (D-NY) and Tom Cotton (R-AR) — have asked the government to investigate if TikTok is a national security threat. — TechCrunch