--- title: "Cybersecurity Updates For The Week 17 of 2020 | Phish Protection" description: "Cybersecurity Updates For The Week 17 of 2020: Here are the most recent developments in phishing prevention across the globe. The attacks from the past week." image: "https://phishprotection.com/og/blog/cybersecurity-updates-for-the-week-17-of-2020.png" canonical: "https://phishprotection.com/blog/cybersecurity-updates-for-the-week-17-of-2020/" --- Quick Answer Here are the most recent developments in \[phishing prevention\](/) across the globe. The attacks from the past week shall perhaps enable you to rectify all loose ends in your online networks. Share [ ](https://www.linkedin.com/sharing/share-offsite/?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-17-of-2020%2F "Share on LinkedIn") [ ](https://twitter.com/intent/tweet?text=Cybersecurity%20Updates%20For%20The%20Week%2017%20of%202020&url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-17-of-2020%2F "Share on X/Twitter") [ ](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-17-of-2020%2F "Share on Facebook") [ ](https://reddit.com/submit?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-17-of-2020%2F&title=Cybersecurity%20Updates%20For%20The%20Week%2017%20of%202020 "Share on Reddit") [ ](mailto:?subject=Cybersecurity%20Updates%20For%20The%20Week%2017%20of%202020&body=Check out this article: https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-17-of-2020%2F "Share via Email") ![Phish Protection blog post image](https://media.mailhop.org/phishprotection/images/2020/04/stop-phishing-emails-8102.jpg) Here are the most recent developments in [phishing prevention](/) across the globe. The attacks from the past week shall perhaps enable you to rectify all loose ends in your online networks. ### Hacker Impersonates White House Home Page In another COVID 19 cyber attack, the adversaries have sent out emails to American citizens from a “Valentina Robinson” [impersonating the White House](https://www.darkreading.com/endpoint/emails-impersonating-trump-white-house-seek-to-exploit-pandemic-fears/d/d-id/1337533?&web%5Fview=true). _The email comes with grammatical and spelling errors_ (“carantine” for quarantine and “pamdemic” for pandemic) and instructs users to download an attached document containing new guidelines related to the epidemic. _Downloading the document installs malware into a user’s system_. Two emails are being circulated. One is titled “The White House Instruction for coronavirus”, and the other is titled “President Guidance for coronavirus”. Users are advised to take email [phishing prevention](/) measures to ensure safety. ### Hacking Prank Targets Kremez And Malwarehunterteam The security researchers Kremez and Malwarehunterteam are now targeted by [MBRLockers to tarnish their image](https://www.bleepingcomputer.com/news/security/new-wiper-malware-impersonates-security-researchers-as-prank/?&web%5Fview=true) by first _making a backup of the original MBR of the computer to a safe location and then replacing it_. The malware downloads itself from free software and cracks sites before people realize that they are getting locked out of their computer before Windows starts. The PC then displays a message saying that Vitali Kremez and MalwareHunterTeam have launched a **malware attack** on their system, which is bogus. Although there are no [anti-phishing solutions](/products/advanced-threat-defense/) for this right now, research is ongoing, and victims can expect a recovery method soon. ![Stop phishing emails](https://media.mailhop.org/phishprotection/images/2020/04/stop-phishing-emails-8102.jpg) ### SBI Warns Of Scammers The State Bank of India (SBI) has warned its customers via Twitter to watch out for attackers using (a fake website) and asking them to update their password or account information. These scammers are also [impersonating SBI’s net banking page](https://www.livemint.com/money/personal-finance/sbi-warns-account-holders-this-website-is-fake-11586753407705.html). _Protect yourself from phishing and verify the authenticity of a URL before clicking on it_. With so much that is similar to the real app, users get swayed by these fake apps. Customers must inform about such fake pages through e-mail at _[epg.cms@sbi.co.in](mailto:epg.cms@sbi.co.in)_ and _[phishing@sbi.co.in](mailto:phishing@sbi.co.in)_. They may also report such messages to the government’s [cybercrime branch](https://cybercrime.gov.in/Default.aspx). ### Pakistani Hackers Post 115 Million Users’ Data Online The Pakistani cybersecurity company, Rewterz Threat Intelligence recently found a database on the **dark web** selling [data belonging to 115 million mobile phone users](https://pk.mashable.com/tech/2575/data-of-115-million-of-pakistans-mobile-users-up-for-sale-on-dark-web?&web%5Fview=true). This data included the full name, complete address, mobile numbers, CNIC and NTN numbers of the victims. _The attackers have put up this database for sale and are demanding USD 2.1 million for it_. _The [phishing protection](/) service suspects the breach to be channelled through telecom companies_ who are perhaps not transparent about the same to their customers. ### SFO Discloses Data Breach The [San Francisco International Airport (SFO)](https://www.darkreading.com/attacks-breaches/sfo-hit-by-web-compromise/d/d-id/1337544?&web%5Fview=true) recently _disclosed a data breach that hacked two of its websites_, SFOConnect.com and SFOConstruction.com, in March 2020\. The SFO suspects that the attackers may have **compromised login credentials** of users registered on the two breached sites. _All those users who accessed the compromise websites from outside the SFO network through Internet Explorer on a Windows-based device are more vulnerable to this hacking scheme_. To ensure **protection from phishing**, SFO has instructed users to reset passwords for all SFO-related email and network. ### 500,000 Zoom Account Details Up For Sale _[Hackers are selling over 500,000 Zoom accounts](https://www.bleepingcomputer.com/news/security/over-500-000-zoom-accounts-sold-on-hacker-forums-the-dark-web/?&web%5Fview=true) for less than a penny each and even giving away details for free_. While some of these account details were collected in previous data breaches, they are still selling these details for giving hackers the option to try and see if people are again using the same passwords. However, _the cybersecurity intelligence firm Cyble has managed to purchase 530,000 Zoom credentials_ (email address, password, personal meeting URL, and the HostKey) for less than a penny each at $0.0020 per account. They are now informing the affected users of probable breaches. ### Ransomware Hits Manitoba Law Firms [Maze ransomware hit two Manitoba law firms](https://www.cbc.ca/news/canada/manitoba/winnipeg-law-firms-computer-virus-ransomware-1.5530825?&web%5Fview=true) recently. T\_he CEO Kristin Dangerfield hasn’t disclosed which the two firms are or whether they will pay the undisclosed amount of ransom\_. The computer systems of both firms have been brought down which has locked all their client lists, emails, accounting and financial information, photos and other digital files. The CEO expects the law firms to inform affected customers and take necessary [phishing protection](/) measures. ### Ransomware Hits Energias De Portugal A significant energy producer [Energias de Portugal (EDP) was recently hit by the Ragnar Locker ransomware](https://www.bleepingcomputer.com/news/security/ragnarlocker-ransomware-hits-edp-energy-giant-asks-for-10m/?&web%5Fview=true) which has locked all their files. The attackers have stolen more than **10TB of confidential company data** and have demanded a 1580 BTC ransom ($10.9M or €9.9M), failing to pay which will lead to a leak of this data. No **anti-phishing measures** seem feasible to EDP at this point as _the adversaries have openly threatened them and have already leaked some files_ including an edpradmin2.kdb file which is a KeePass password manager database exposing login names, passwords, accounts, URLs, and notes of EDP employees. ![Stop phishing emails](https://media.mailhop.org/phishprotection/images/2020/04/stop-phishing-emails-8103.jpg) ### 12,706 Apps With Backdoors Identified A recent study by researchers at Ohio State University, New York University and CISPA Helmholtz Center for Information Security identified [12,706 Android apps with hidden backdoors](https://hotforsecurity.bitdefender.com/blog/cyber-security-researchers-uncover-hidden-backdoors-and-secret-commands-in-12000-android-apps-22983.html?web%5Fview=true). These include secret access keys, master passwords, and hidden commands enabling users to access admin-only functions. But most importantly, _these flaws allow an attacker to gain unauthorized access to a user’s account_. These findings were shared with the app developers, some of whom are already working on fixing these patches and ensuring [protection against phishing](/products/advanced-threat-defense/). ### New York’s Govt. Network Hacked The [computer network of New York’s state government](https://www.tripwire.com/state-of-security/government/bad-actors-infiltrated-new-yorks-state-government-computer-network/?web%5Fview=true) recently underwent a cyber attack. _This attack compromised motor vehicle records and payroll information for the 250,000 employees_ of New York’s state agencies and public universities. For ensuring [anti-phishing protection](/office-365-phishing-protection/), the state has collaborated with the FBI. Some sources claim that a foreign actor is responsible for the attack. Richard Azzopardi (senior advisor to NY Governor) has informed that **no personal data** of any New York resident, employee, or other individuals have been compromised in the attack. ### Protect Your Organization - [Learn how phishing attacks work and how to spot them](/learn-what-is-phishing/) - [See how Phish Protection blocks threats in real time](/anti-phishing-tools/) ## Topics [ Announcements ](/tags/announcements/) ![Brad Slavin](https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg) [ Brad Slavin ](/authors/brad-slavin/) General Manager Founder and General Manager of DuoCircle. Product strategy and commercial lead across DuoCircle's 2,000+ customer base. [LinkedIn Profile →](https://www.linkedin.com/in/bradslavin) ## Protect your inbox from phishing attacks Real-time email security with 60-day free trial. No credit card required. [Start Free Trial](https://portal.duocircle.com/cart.php?a=add&pid=101&brand=phishprotection) [View Pricing](/pricing/) ## Related Articles [ Intermediate 5m Cybersecurity Updates For The Week 33 of 2022 Aug 22, 2022 ](/blog/cyber-security-news-update-week-33-2022/)[ Intermediate 6m Cybersecurity Updates For The Week 41 of 2022 Oct 21, 2022 ](/blog/cybersecurity-news-21-oct-2022/)[ Intermediate 5m Cybersecurity Updates For The Week 1 of 2021 Jan 1, 2021 ](/blog/cybersecurity-updates-for-the-week-1-of-2021/)[ Intermediate 6m Cybersecurity Updates For The Week 1 of 2022 Jan 7, 2022 ](/blog/cybersecurity-updates-for-the-week-1-of-2022/) ```json {"@context":"https://schema.org","@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]} ``` ```json {"@context":"https://schema.org","@type":"WebSite","name":"Phish Protection","url":"https://phishprotection.com","description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]}}} ``` ```json {"@context":"https://schema.org","@type":"BlogPosting","headline":"Cybersecurity Updates For The Week 17 of 2020","description":"Cybersecurity Updates For The Week 17 of 2020: Here are the most recent developments in phishing prevention across the globe. The attacks from the past week.","url":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-17-of-2020/","datePublished":"2020-04-24T06:43:56.000Z","dateModified":"2026-04-17T15:43:10.000Z","dateCreated":"2020-04-24T06:43:56.000Z","author":{"@type":"Person","@id":"https://phishprotection.com/authors/brad-slavin/#person","name":"Brad Slavin","url":"https://phishprotection.com/authors/brad-slavin/","jobTitle":"General Manager","description":"Brad Slavin is the founder and General Manager of DuoCircle, the company behind DMARC Report, AutoSPF, Phish Protection, and Mailhop. He founded DuoCircle in 2014 and has led the company's growth to 2,000+ customers across its email security product family. Brad's focus is product strategy, customer relationships, and the commercial and compliance side of email authentication (DPAs, SLAs, enterprise procurement).","image":"https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg","knowsAbout":["Email Security Strategy","SaaS Product Management","Enterprise Compliance","Customer Success","Email Deliverability Business"],"worksFor":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com"},"sameAs":["https://www.linkedin.com/in/bradslavin"]},"publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-17-of-2020/"},"articleSection":"intermediate","keywords":"Announcements","wordCount":1011,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/phishprotection/images/2020/04/stop-phishing-emails-8102.jpg","caption":"Phish Protection blog post image","width":1200,"height":630},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}} ``` ```json {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://phishprotection.com/"},{"@type":"ListItem","position":2,"name":"Blog","item":"https://phishprotection.com/blog/"},{"@type":"ListItem","position":3,"name":"Intermediate","item":"https://phishprotection.com/intermediate/"},{"@type":"ListItem","position":4,"name":"Cybersecurity Updates For The Week 17 of 2020","item":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-17-of-2020/"}]} ```