At a glance.
- Spyware identified in Chrome extensions.
- Phishing for Microsoft Office 365 credentials.
- End-to-end encryption in Zoom.
- Executive 1 and Executive 2 identified by eBay in Natick cyberstalking case.
Spyware identified in Chrome extensions.
Reuters reports that Awake Security has found a massive spyware infestation among Chrome extensions, about thirty-two-million downloads' worth. Google removed seventy of the extensions from its store after they were notified of the problem last month. The extensions, which were for the most part offered free of charge, represented themselves as able to warn users of questionable websites, or to convert files to different formats. What in fact they did was capture browsing histories and data that ultimately provided the extensions’ operators with credentials for accessing various business tools.
Why Google itself didn’t detect and remove the malicious extensions is unclear. It’s also unclear who was behind the malicious extensions. As the Reuters piece points out, the operation could equally well be the work of criminals or nation-state espionage services.
Phishing for Microsoft Office 365 credentials.
Check Point describes a phishing campaign directed toward acquiring Microsoft Office 365 credentials; it made heavy use of redirection. The phishing emails weren’t particularly polished--they told recipients they had some voicemail waiting for them--but the use of hijacked servers and domains were. The criminals used an Oxford University email server to send their messages. The recipients were directed to malicious sites in a hijacked Samsung domain hosted on an Adobe server. The goal was to steal targeted network access credentials, and the hijacked servers and domains facilitated the passage of the phishing emails through enterprise security systems.
Zoom decides to offer all users end-to-end encryption after all.
Zoom, hearing the customers speak, has decided to reverse itself: the company will henceforth offer end-to-end encryption to all users of its remote conferencing service.
Some clarification in the strange case of alleged eBay cyberstalking.
According to an updated report in WIRED, eBay has confirmed that the two unnamed executives mentioned but not charged in the Federal indictment alleging conspiracy in the case of the cyberstalking of two bloggers. "Executive 1" is former eBay CEO Devin Wenig, who left eBay last September. "Executive 2" is the company's former chief communications officer Steve Wymer.
According to court documents reported by Business Insider, Executive 2 texted Executive 1,"We are going to crush this lady." Executive 1 subsequently texted Executive 2, "Take her down."
Mr. Wenig emailed the New York Times a statement: “As confirmed by the company following a thorough, independent investigation, I did not direct or know anything about the acts that have been charged in Boston. I have spent my career defending press freedoms. What these charges allege is unconscionable.”
While the investigation is active, neither Mr. Wenig nor Mr. Wymer have been charged with any crime.