Google Chrome is one of the most popular browsers today with more than 2 billion users. Photo: EarnGurus Recently, a security researcher from the Project Zero team discovered a critical security vulnerability (CVE-2021-30551) in Google Chrome, affecting many users. Not much is known about this vulnerability, instead, it is only briefly described: “Confusion in V8”. This is a JavaScript engine, used quite commonly on Google Chrome and browsers using Chromium source code (including Microsoft Edge). In a blog post, Google confirmed that the CVE-2021-30551 vulnerability exists in the wild. To limit future attacks, Google Chrome users should update their browser immediately by going to Settings – Help – About Google Chrome (about Google Chrome). When the update to version 91.0.4472.101 is complete, simply press Relaunch to restart the browser. Update Google Chrome browser to the latest version. Photo: Tieu MINH This is the sixth zero day vulnerability found on Google Chrome since the beginning of the year. The latest version of the browser also contains a total of 10 security patches, seven of which are listed as High threat and one is described as Critical. Sharing with BleepingComputer, Kaspersky warned that a new group of hackers calling themselves PuzzleMaker successfully hacked both Chrome and Windows this month, prompting Microsoft to issue an urgent upgrade notice for Windows users. In addition, Kaspersky also recommends that users update their browser and operating system to the latest version to limit future attacks.

This malicious application is called Mods Minecraft. The app doesn’t function like an ad at all, instead it turns the victim’s smartphone and tablet into an ad-player in an extremely sophisticated way. (Photo: Kaspersky) Accordingly, after the first run, the application will hide its icons from the screen and continuously open the browser to display ads. The app can also play videos from YouTube, access the Google Play app store, and more. Security experts at Kaspersky found that the app opens the browser every two minutes, rendering the device essentially inoperable. use to be. (Photo: Kaspersky) What’s especially worrisome is that it’s hard for users to know what’s going on with their devices, which apps are responsible for the trouble, and how to prevent it. The security experts at Kaspersky informed Google of their findings and the malicious app was quickly removed from the store. Minecraft is one of the best-selling games in the world with about 180 million copies worldwide. (Photo: Mojang) However, removing this app from Google’s app store does not mean the removal of all malware. In the past, developers of this type would simply upload new, slightly modified versions, using different names, from different developer accounts to further trick victims. An example can be mentioned is the VK Music Trojan. This app stole VK user accounts, but despite being reported, the app has survived on the Google Play app store for several years. (Artwork: Unsplash) Kaspersky ran a search for malicious Minecraft Mods-like apps – and found a few. In addition to the malicious application Mods Minecraft, a utility called File Recovery was also found to contain malware in version 1.1. However, that version has since been removed and version 1.1.1 of the app, available on Google Play, is safe.

The device has long been popular among people of all ages. Around the world, children use devices to view content and play games, adults use devices to stay in touch with friends and family. However, it’s important to keep every device up to date in a timely manner to maintain a high level of reliable security and high performance. It’s no surprise that family members argue about their lack of interest or reluctance to make regular updates, as 34% of adults surveyed feel that installing updates makes them uncomfortable. and uncomfortable. The survey also found that, regardless of whether they live alone or with family, 77% of adults often manually install updates on devices at home. Cases in which individuals are responsible for their own devices are less common (12%). At the same time, according to those surveyed, spouses (7%) and children (4%) rarely update their devices. Marina Titova, Head of Consumer Product Marketing at Kaspersky, commented: “As nearly all members of modern households use technological devices, installing updates has become a reality. becoming a household chore. Research results show that practically all family members are involved in this updating process to some extent. More than a third (35%) of respondents said that they even argue with family members about the importance of updates, which may indicate that users take it very seriously. value the online safety of yourself and your loved ones. Timely installation of updates not only allows access to new functions and interfaces, but also maintains a high level of device security. Updating this device will keep the personal data of all family members safe, as well as ensure all devices operate quickly and optimally.”

Users need to be cautious before providing personal information on social networks. According to Kaspersky’s “Building our place in the digital reputation economy”, social media users in Southeast Asia have become more aware of online risks. Netizens in Southeast Asia do not want to share identity information, family directly, where they live and work on their personal pages. Up to 76% of survey participants do not want to upload financial information online. This percentage is highest among Baby Boomers (people born two decades after World War II), accounting for 85%. Gen Z – the youngest generation – is the group with the lowest rate at 68%. Judging by the current tendency of young people to be more open to sharing information on cyberspace, Kaspersky believes that this is the main driver of the development of electronic payments in the region. However, this also poses a risk when young users do not pay much attention to information security. To best ensure privacy on social networks, especially financial information and personal data, Kaspersky has made a number of recommendations to users. The first is not to publish travel information, not to disclose too much personal information such as date of birth or workplace in the profile section. You should also not post your home address or phone number on any public forum. Second, you should check automatic positioning settings in posts, don’t share location publicly if it’s not absolutely necessary. Third, you should not participate in the quiz that appears on social networks. Usually, these games silently extract personal information with simple questions. That is the information commonly used in security questions. If you provide too much, hackers can use them to break into online accounts. Fourth, be wary of the contest or winning information, because they pose the risk of disguising fraud. If you share it on social media, you could inadvertently spread malicious code or pave the way for the disclosure of sensitive data. Hackers can take advantage of security holes on mobile devices to steal information. Artwork: BS Raise awareness about mobile device security According to a Kaspersky report, 71% of survey respondents in Southeast Asia use passwords to protect their mobile devices. However, just over half of them check and change privacy settings regularly and have internet security software installed on their devices. In order to keep financial information and personal data on your device safe, you need to take note of the following recommendations. Specifically, the most basic security method is to lock your phone with a password that is difficult to guess and update the system regularly. You absolutely do not jailbreak or root your phone. This can pave the way for hackers to enter the system and install malicious code. You should only use licensed and verified apps and games on reputable app stores. An application capable of remotely erasing data is also recommended, making it easy to erase information in case your phone is stolen.

Although Indonesia still ranks 5th globally in the number of ransomware attacks detected, it has dropped from 1,158,837 cases in 2019 to 439,473 cases in 2020. This downtrend also also appeared in other countries in the region including Vietnam, the Philippines, Malaysia and Thailand. China remains at the top of the list for the number of ransomware cases globally in both 2019 and 2020. Meanwhile, Brazil and Russia have swapped the 2nd and 3rd place in the rankings, with Brazil currently ranked 2nd by 2020. “When I look at the statistics for individual ransomware groups, I find that this trend is in line with an overall drop in the number of detected cases,” said Fedor Sinitsyn, security researcher at Kaspersky. This is mainly due to the decrease in the number of cases involving WannaCry. This group makes up a significant portion of all the ransomware discovered to date, although for more than three years these have not been supported by the “originator” and exist only as one. “zombie” “. One of the most persistent cyber threats facing small and medium businesses in the region is still ransomware, malicious code designed to infect the computers of organizations and individuals, and encrypting data. Data inside and block access to the computer. The attackers will then request a fee from the victim in exchange for re-activation of the system. Ransomware attacks may be on the decline, but Kaspersky has been warning businesses of all sizes in every sector about the increasing activity of Ransomware 2.0, also known as ransomware. have purpose. Mr. Yeo Siang Tiong, General Manager of Kaspersky Southeast Asia commented: “We should not be optimistic that the number of detected ransomware cases has decreased. Since last year, we have noticed a number of changes to this threat. The ransomware teams are now more concerned with quality than quantity. This means that instead of randomly and passively waiting for an unsafe user to bite, the attackers are now actively hunting for victims ”.

In particular, the number of attacks on Vietnamese enterprises fell sharply, from 536.6 thousand cases in 2019, to 204.7 thousand cases in 2020. This pulled Vietnam’s ranking to 11 worldwide. , improved from the 7th place in 2019. In Southeast Asia, Singapore remains the country with the least number of detected attacks, ranking 78 globally. However, out of six Southeast Asian countries, Singapore is the only one experiencing an increase in the number of ransomware infection attempts. Number of detected cases increased from 2,275 in 2019 to 3,191 in 2020. Number of attacks on SMEs detected by Kaspersky in Southeast Asian countries. Although Indonesia still ranks 5th globally in terms of the number of ransomware incidents detected, the country has dropped from 1,158,837 cases in 2019 to 439,473 cases in 2020. This downtrend also coincides with export. currently in other countries in the region including the Philippines, Malaysia and Thailand. China remains at the top of the list for the number of ransomware cases globally in both 2019 and 2020. Meanwhile, Brazil and Russia have swapped the 2nd and 3rd place in the rankings, with Brazil currently ranked 2nd by 2020. Ransomware is designed to infect organizations and individuals’ computers, encrypt the internal data and block access to the computer. The attackers will then request a fee from the victim in exchange for re-activation of the system. Ransomware attacks may be on the decline, but Kaspersky has been warning businesses of all sizes in every sector about the growing activity of ‘Ransomware 2.0’, also known as software. targeted extortion. In the new method, the criminals do not ask for ransom to unlock the data, they threaten to publicly disclose the data they hold, adding pressure to the victims to pay the ransom to protect their reputation. .

Doctor Web researchers discovered 10 seemingly harmless apps on AppGallery – Huawei’s official app market – that contain codes that connect to malicious C&C servers to take over additional configuration and components. These additional components bypass the user, automatically signing up for the paid service. To cover the phone’s owner, they demanded access to the notification and then interfered with the SMS verification code sent by the paid service. According to experts, the malicious code will subscribe to up to 5 such services, although developers can change the limit at any time. The list of infected applications range from virtual keyboards, photography, launchers, texting to stickers, games. Most have the same developer, Shanxi Kuailaipai Network Technology. In total, 10 apps were downloaded by more than 538,000 Huawei users. Doctor Web reported to Huawei and the company removing them from AppGallery. However, downloaders still have to manually delete the device. Below is a list of software that need to be removed immediately: Super Keyboard, Happy Color, Fun Color, New 2021 Keyboard, Camera MX – Photo Video Camera, BeautyPlus Camera, Color RollingIcon, Funney Meme Emoji, Happy Tapping, All-in-One Messenger. Experts say that modules downloaded from the malicious AppGallery also appear in other apps on Google Play. Once activated, they contact the remote server to receive the configuration file, which contains the task list, the paid service website, and the JavaScript mimics the user’s actions. The Joker malware was born in 2017, continuously detected in apps on Google Play Store. In October 2019, Kaspersky malware analyst Tatyana Shishkova tweeted about more than 70 malicious applications on the Google market. According to Google, they have removed about 1,700 Joker malicious apps since 2017. Du Lam (According to BleepingComputer)

A global customer survey conducted by Statista shows that Vietnam has the second highest cryptocurrency usage rate in the world, after Nigeria.

With millions of dollars traded every month, cryptocurrency exchanges are a good prey for cybercriminals. Fraudulent acts on electronic transactions include developer and investor information collection; attack with malware, phishing, malicious code, fake notification, navigate to fake website, DDoS … and steal electronic wallet security key.

A notorious cybercrime gang that targets cryptocurrencies is Lazarus and its members. Since 2019, Kaspersky researchers’ investigations show that Lazarus is behind the recent attacks in Singapore.

BlueNoroff, “family member” Lazarus specializing in the financial attack, is also said to be carrying out cryptocurrency-related attacks in Southeast Asia under the name SnatchCrypto.

The gang targeted banks, and was also accused of being involved in the theft of $ 81 million by Bangladeshi banks. Kaspersky researchers have been tracking SnatchCrypto since the end of 2019 and found that the guys behind the campaign have resumed operations with a similar strategy.

Chris Connell, Managing Director of Kaspersky Asia Pacific said: “In the near future there will be more new crypto investors across Southeast Asia as the bargains from different cryptocurrencies are undeniable, and Vietnam is one of the countries that are at the forefront of this transformation.

The development of cryptocurrencies is an integral part of digital transformation in the region and in Vietnam, so we encourage individuals who access these financial technologies to have a basic knowledge of security measures to keep our cryptocurrency safe ”.

Experts at Kaspersky share some basic ways to protect yourself against cybercriminals on cryptocurrency exchanges:

– Transaction research: Before investing, learn about cryptocurrency exchanges. These platforms provide the means for buying and selling virtual currency units, but there are over 500 transactions to choose from. Do research, read feedback and talk to experienced investors before going any further.

– Know how to keep your virtual currency: After purchasing cryptocurrency, you need to keep it. There are different types of wallets, each with different benefits, technical requirements and security. When trading, you should research your storage options before you invest.

– Diversification of investment: Diversification is the key to any smart investing strategy, and so is when you invest in cryptocurrencies. Don’t put all your capital into Bitcoin just because it’s the only name you know. There are thousands of options, and it’s best to divide your investments by a few different currencies.

– Prepare for instability: Cryptocurrency is a volatile market, be prepared for volatility. You will see amazing fluctuations in prices. If your investment ability or mental health cannot tolerate volatility, then cryptocurrencies may not be a wise investment.

Cryptocurrency is booming, but it’s still in its infancy. Investing in something new always presents challenges, so be prepared. If you are planning to invest, do your research carefully and invest carefully.

– Always give security: Transacting using your home network is safer than using a public network, but you need the right security. For starters, it’s a good idea to change the default router password because the root password is usually the same for all routers of the same model, making your WiFi vulnerable to attack.

In any case, it is best to do all electronic transactions over an encrypted VPN channel, which will add an extra layer of security.

When choosing a VPN service, pay attention to the connection speed (depending on the number and quality of the server group of the provider).