---
title: "Cybersecurity Updates For The Week 28 of 2020 | Phish Protection"
description: "Cybersecurity Updates For The Week 28 of 2020: Anti-phishing protection has become a primary concern for all organizations working online . Every individual."
image: "https://phishprotection.com/og/blog/cybersecurity-updates-for-the-week-28-of-2020.png"
canonical: "https://phishprotection.com/blog/cybersecurity-updates-for-the-week-28-of-2020/"
---

Quick Answer

Defying all \*\*phishing prevention\*\* measures, the \[Maze ransomware\](https://cyware.com/news/maze-ransomware-claims-new-victims-including-the-electronics-giant-lg-00296cbb) continues to terrorize the digital world with attacks and warnings. \_Maze warns its victims against trying to decrypt the locked files, failing which would mean an online auction of their company files\_.

Share 

[ ](https://www.linkedin.com/sharing/share-offsite/?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-28-of-2020%2F "Share on LinkedIn") [ ](https://twitter.com/intent/tweet?text=Cybersecurity%20Updates%20For%20The%20Week%2028%20of%202020&url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-28-of-2020%2F "Share on X/Twitter") [ ](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-28-of-2020%2F "Share on Facebook") [ ](https://reddit.com/submit?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-28-of-2020%2F&title=Cybersecurity%20Updates%20For%20The%20Week%2028%20of%202020 "Share on Reddit") [ ](mailto:?subject=Cybersecurity%20Updates%20For%20The%20Week%2028%20of%202020&body=Check out this article: https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-28-of-2020%2F "Share via Email") 

![Phish Protection blog post image](https://media.mailhop.org/phishprotection/images/2020/07/office-365-phishing-protection-2504.jpg) 

_[Anti-phishing protection](/) has become a primary concern for all organizations working online_. Every individual uses the internet, and hence vulnerability to cybercrime is the same for all. However, proper knowledge of the kinds of attacks happening around can help bring significant progress to an individual or organization’s **digital security**. Here are this week’s top cybersecurity headlines

### Maze Attacks LG

Defying all **phishing prevention** measures, the [Maze ransomware](https://cyware.com/news/maze-ransomware-claims-new-victims-including-the-electronics-giant-lg-00296cbb) continues to terrorize the digital world with attacks and warnings. _Maze warns its victims against trying to decrypt the locked files, failing which would mean an online auction of their company files_.

The newest victim of Maze is the electronic giant LG, and _the ransomware operators have released three screenshots of the stolen data_. While one screenshot contains source code files of LG products, the other two include the official firmware or software update of their products.

Maze’s most frequently targeted organizations are located in the US, South Korea, Thailand, Canada, Latin America, and Brazil.

### Infraud Members Plead Guilty

_Infraud is an organization that rules the carding market_. Their slogan goes, “[In Fraud We Trust](https://www.zdnet.com/article/russian-leader-of-568m-stolen-id-credit-card-ring-pleads-guilty/?&web%5Fview=true),” and they have caused financial losses to individuals exceeding **$568 million**. _Infraud conducts a plethora of frauds such as sale and exchange of credit card numbers, unauthorized purchases, and money laundering using the stolen card credentials_.

Infraud activities have been restricted since 2017\. In a recent trial and an endeavor to [prevent phishing attacks](/) saw a 33-year-old Russian leader plead guilty before the US District Court Judge James Mahan. Legal actions are now being taken against 36 individuals across the US, Australia, the UK, France, Italy, Kosovo, and Serbia for involvement in Infraud’s activities.

![Office 365 phishing protection](https://media.mailhop.org/phishprotection/images/2020/07/office-365-phishing-protection-2504.jpg) 

### Massive DDoS Attacks at Akamai

DDoS attacks are perennially striving to increase their impact, and a testimony to that is the frequent attacks that [Akamai has undergone recently](https://cyware.com/news/new-botnet-breaks-the-record-of-the-biggest-pps-ddos-attack-69aaa78d). The latest DDoS attack on Akamai happened on June 21, 2020, and generated traffic of **809 million packets per second** (Mpps). _The attack lasted for ten minutes and reached its peak size in two minutes_.

Akamai needs to incorporate the [phishing prevention best practices](/phishing-protection-best-practices-guide/) to avoid the kind of attacks it has been facing off-late.

### Data Breach At Limeroad

Indian shopping app [Limeroad underwent a data breach](https://ciso.economictimes.indiatimes.com/news/personal-details-of-1-29-million-limeroad-customers-up-for-sale-on-darkweb-cyble/76715156) recently, which compromised the details of over **1.29 million users**. _These details are now being sold on the dark web_.

The stolen customer details include the full names, phone numbers, and email ids of users. From the sample put up by the adversary, these records seem to be legitimate. Online shoppers should strictly follow [phishing prevention](/) tips when attacks on shopping portals are escalating like never before.

### Chinese Companies Leak User Data

_Two Chinese companies have been leaking user information, and the incident came to light recently_. The [two exposed databases](https://cybernews.com/security/unsecured-chinese-companies-leak-users-sensitive-personal-and-business-data/?web%5Fview=true) belonged to the Chinese companies Xiaoxintong and Shanghai Yanhua Smartech. While Xiaoxintong offers services to the elderly, the latter is a service provider for artificial intelligent architecture.

The leaked databases compromised the GPS locations, mobile numbers, addresses, hashed passwords, easily-decoded audio files, names, employee ID numbers, heart rates, oxygen levels, etc. of **over 5 million users**.

To ensure [phishing attack prevention](/products/advanced-threat-defense/), the databases have been brought down. Still, it is uncertain whether the adversaries could access them.

### India Prepares For Chinese Cyber War

To ensure [protection from phishing](/) attacks, the Indian government recently banned [59 Chinese apps](https://ciso.economictimes.indiatimes.com/news/india-steps-up-vigil-for-cyber-attacks-from-china-after-apps-ban/76715098), including the widely used TikTok app.\_ This move comes as a security measure to guard against unauthorized access of Indian user’s data by the Chinese nation for various conspiracies and other attacks on the country\_.

_Physical wars are not to be seen these days, and that’s why cyber-attacks and digital espionage on governments have increased_. India anticipates cyber attacks from China and has deployed security experts in various sectors that used to depend on Chinese resources previously. Yet another group of experts feels that the sudden ban of the 59 apps would create other security hazards that may impact the nation and its people.

### Fakespy Returns, Complexity Increases

_The mobile data-stealing kit FakeSpy, which affected android users two years back, has now resurfaced with mainly the same code DNA_. Although FakeSpy comes with a few minor changes, it is dangerous as it [impersonates various postal services](https://www.cyberscoop.com/fakespy-android-cybereason-postal-service/).

The malware impersonates the U.S Postal Service and that of China and Europe and sends out fake messages to users, notifying them of a package pickup for them. _These messages come with codes that, upon clicking, install **malware that steals** financial data from mobile applications_.

Experts hint towards a Chinese origin of the mobile malware kit written and advise the receipts of the USPS messages to take [anti-phishing protection](/products/advanced-threat-defense/) measures.

### Bitcoin Scam Affects Thousands Of Users

A [multi-stage Bitcoin scam](https://securityaffairs.co/wordpress/105376/cyber-crime/bitcoin-scam.html?web%5Fview=true) has led to the compromise of the personal data of **248,926 users** belonging to the UK, Australia, South Africa, the US, and Singapore, among other regions.

_The scam lures victims in a fraud Bitcoin investment scheme and exfiltrated data such as their phone number, name, and email_. However, the concerned authorities have been notified, and [phishing protection](/) measures are now being taken.

![Office 365 phishing protection](https://media.mailhop.org/phishprotection/images/2020/07/office-365-phishing-protection-2505.jpg) 

### \*\*\*\* More Security Measures Equal Less Security, Says IBM

In its fifth Cyber Resilient Organization Report, [IBM states](https://www.zdnet.com/article/the-more-cybersecurity-tools-an-enterprise-deploys-the-less-effective-their-defense-is/?&web%5Fview=true) that _organizations are less prepared to detect and withstand a cyber attack these days_. They have too many tools and applications working towards ensuring **protection from phishing**. _All organizations with security walls have shown a 13% decline in their ability to stop a threat factor_.

IBM speculates that such an approach to cybersecurity will cause a loss exceeding **$1.2 billion** as compared to a cyber attack. The report also hints at the various aspects in which businesses have adopted a wrong or less effective approach.

### The North Face’s IG Compromised, Hacker Launches Phishing Scam

An unsuspecting user seldom questions the authenticity of a message from a [verified Instagram account](https://www.hackread.com/verified-instagram-account-copyright-infringement-phishing-scam/?web%5Fview=true). This time, the adversaries have used this to trick people and run a copyright infringement **phishing scam**.

The verified Instagram account of the American outdoor recreation product company The North Face for Chile was recently compromised and used to send out messages with **phishing links** to users. Such messages aren’t easy to identify for an unsuspecting user, and hence [anti-phishing measures](/products/advanced-threat-defense/) must be carefully evaluated by every user to guard against such scams.

### Protect Your Organization

- [Learn how phishing attacks work and how to spot them](/learn-what-is-phishing/)
- [See how Phish Protection blocks threats in real time](/anti-phishing-tools/)

## Topics

[ Announcements ](/tags/announcements/) 

![Brad Slavin](https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg) 

[ Brad Slavin ](/authors/brad-slavin/) 

General Manager

Founder and General Manager of DuoCircle. Product strategy and commercial lead across DuoCircle's 2,000+ customer base.

[LinkedIn Profile →](https://www.linkedin.com/in/bradslavin) 

## Protect your inbox from phishing attacks

Real-time email security with 60-day free trial. No credit card required.

[Start Free Trial](https://portal.duocircle.com/cart.php?a=add&pid=101&brand=phishprotection) [View Pricing](/pricing/) 

## Related Articles

[  Intermediate 5m  Cybersecurity Updates For The Week 33 of 2022  Aug 22, 2022 ](/blog/cyber-security-news-update-week-33-2022/)[  Intermediate 6m  Cybersecurity Updates For The Week 41 of 2022  Oct 21, 2022 ](/blog/cybersecurity-news-21-oct-2022/)[  Intermediate 5m  Cybersecurity Updates For The Week 1 of 2021  Jan 1, 2021 ](/blog/cybersecurity-updates-for-the-week-1-of-2021/)[  Intermediate 6m  Cybersecurity Updates For The Week 1 of 2022  Jan 7, 2022 ](/blog/cybersecurity-updates-for-the-week-1-of-2022/)

```json
{"@context":"https://schema.org","@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]}
```

```json
{"@context":"https://schema.org","@type":"WebSite","name":"Phish Protection","url":"https://phishprotection.com","description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]}}}
```

```json
{"@context":"https://schema.org","@type":"BlogPosting","headline":"Cybersecurity Updates For The Week 28 of 2020","description":"Cybersecurity Updates For The Week 28 of 2020: Anti-phishing protection has become a primary concern for all organizations working online . Every individual.","url":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-28-of-2020/","datePublished":"2020-07-10T11:42:12.000Z","dateModified":"2026-04-17T15:43:10.000Z","dateCreated":"2020-07-10T11:42:12.000Z","author":{"@type":"Person","@id":"https://phishprotection.com/authors/brad-slavin/#person","name":"Brad Slavin","url":"https://phishprotection.com/authors/brad-slavin/","jobTitle":"General Manager","description":"Brad Slavin is the founder and General Manager of DuoCircle, the company behind DMARC Report, AutoSPF, Phish Protection, and Mailhop. He founded DuoCircle in 2014 and has led the company's growth to 2,000+ customers across its email security product family. Brad's focus is product strategy, customer relationships, and the commercial and compliance side of email authentication (DPAs, SLAs, enterprise procurement).","image":"https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg","knowsAbout":["Email Security Strategy","SaaS Product Management","Enterprise Compliance","Customer Success","Email Deliverability Business"],"worksFor":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com"},"sameAs":["https://www.linkedin.com/in/bradslavin"]},"publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-28-of-2020/"},"articleSection":"intermediate","keywords":"Announcements","wordCount":1068,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/phishprotection/images/2020/07/office-365-phishing-protection-2504.jpg","caption":"Phish Protection blog post image","width":1200,"height":630},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}}
```

```json
{"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://phishprotection.com/"},{"@type":"ListItem","position":2,"name":"Blog","item":"https://phishprotection.com/blog/"},{"@type":"ListItem","position":3,"name":"Intermediate","item":"https://phishprotection.com/intermediate/"},{"@type":"ListItem","position":4,"name":"Cybersecurity Updates For The Week 28 of 2020","item":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-28-of-2020/"}]}
```