The week starts with: the cyberhit on Dunkin’ Donuts, hackers stopped by FBI with their own cyber weapons and a poorly secured popular messenger app


Last week we presented you the Marriott hack. The hotel giant disclosed that up to 500 million Starwood guests had their personal information stolen, including passport numbers for many.
It was an eventful news on other fronts as well. After a long quiet stretch, the special news carousel continued with new accusations that were targeting Russia’s connections to the Trump campaign.

It seems that the president’s former lawyer and “fixer” detailed the Trump Organization’s interest in a Moscow development that lasted deep into the 2016 presidential campaign—a time when Trump repeatedly denied any involvement with Russia.

Surprisingly is the fact that in the same period of 2016 the Justice Department was busy elsewhere, investigating two Iranian men in connection with the devastating SamSam ransomware attack that crippled the City of Atlanta and dozens of hospitals and other organizations.
In similarly disappointing but unsurprising news, Russia continues to probe the US power grid and gets a lot of out of it even without causing large-scale blackouts.

Remember everything can be hacked. In order to stay away from any threats related to the cyber world, we recommend the install of antivirus for Windows or antivirus for Mac on every device that you own, depending on which OS your device is running. If you are a company, it is also recommended to hire every year a specialized cybersecurity company that will run annual tests on your company’s network. These tests include penetration testing and ethical hacking tests;
For now, it is unknown how the new variants of Bladabindi spread to the core, infecting systems.

We continue with a moment of silence for our friends in New England. The venerable donut and coffee chain, Dunkin’ Donuts, had been compromised, potentially exposing names, email addresses, DD perks account numbers, and DD perks QR codes. Experts that are investigating Dunkin, suspect that the cyber attack is simple password reuse-based one; meaning that hackers took an existing database of exposed email address and password combinations and tried them at other institutions. That is why we always advocate using a unique password on every account.

Also, the FBI disclosed today that in 2017, their agents created a fake FedEx website as well as “rigged” Word documents, both designed to reveal the IP address of their targets. The effort proved to be successful wich indicate that the agency has become increasingly bold in its techniques to target online hackers with their own tactics.
In the end, we announce you that the popular startup Urban Message left its entire customer database exposed on the open web, which included names, email addresses, and phone numbers of clients. For the moment it is unclear if the hackers got their hands on any of it, but this doesn’t change the fact that companies with poor database security are becoming a “trend”

Keep in mind that our modern society is dependent on computers, mobile devices, and the use of the internet always stay safe and secured.
We would continue to monitor the cybersecurity world. Meanwhile, users should keep a keen eye out for any cyber attacks. Remember to use an antivirus for Windows or antivirus for Mac in every device that you own, depending on which OS your machine is running, If you are a company we recommend to hire every year a specialized cybersecurity company that will run annual tests on your company’s network, tests like this include: penetration testing and ethical hacking.