---
title: "Cybersecurity Updates For The Week 37 of 2020 | Phish Protection"
description: "Cybersecurity Updates For The Week 37 of 2020: The cyber-world faces constant attacks from the bad actors . These breaches reveal companies"
image: "https://phishprotection.com/og/blog/cybersecurity-updates-for-the-week-37-of-2020.png"
canonical: "https://phishprotection.com/blog/cybersecurity-updates-for-the-week-37-of-2020/"
---

Quick Answer

\*\*Skimming malware\*\* exploited a vulnerability in the content management system of the \[American Payroll Association (APA)\](https://www.infosecurity-magazine.com/news/skimming-attack-hits-american/?&web\_view=true). The APA noticed unusual activity on their login and checkout pages of their online store, which has existed since May 2020.

Share 

[ ](https://www.linkedin.com/sharing/share-offsite/?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-37-of-2020%2F "Share on LinkedIn") [ ](https://twitter.com/intent/tweet?text=Cybersecurity%20Updates%20For%20The%20Week%2037%20of%202020&url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-37-of-2020%2F "Share on X/Twitter") [ ](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-37-of-2020%2F "Share on Facebook") [ ](https://reddit.com/submit?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-37-of-2020%2F&title=Cybersecurity%20Updates%20For%20The%20Week%2037%20of%202020 "Share on Reddit") [ ](mailto:?subject=Cybersecurity%20Updates%20For%20The%20Week%2037%20of%202020&body=Check out this article: https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-37-of-2020%2F "Share via Email") 

![Phish Protection blog post image](https://media.mailhop.org/phishprotection/images/2020/09/spear-phishing-protection-4125.jpg) 

_The cyber-world faces constant attacks from the bad actors_. These breaches reveal companies’ and individuals’ private information and expose them to many online threats while also causing them financial losses. Hence, ensuring **phishing attack prevention** is a necessity in current times. The following updates of cyberattacks from the past week prove why having [anti-phishing solutions](/products/advanced-threat-defense/) is pivotal for an organization’s smooth functioning

### Data Breach At American Payroll Association (APA)

**Skimming malware** exploited a vulnerability in the content management system of the [American Payroll Association (APA)](https://www.infosecurity-magazine.com/news/skimming-attack-hits-american/?&web%5Fview=true). The APA noticed unusual activity on their login and checkout pages of their online store, which has existed since May 2020.

In the breach, the adversaries could steal the names, email addresses, job titles and roles, gender, DOB, card details, address, and company name of customers, among other sensitive information.

The APA is now adopting the [phishing prevention best practices](/resources/phishing-prevention-best-practices/). It has installed additional antivirus software on its servers, _updated the required security patches_, and is offering free credit monitoring for a year to all victims along with [identity theft](/products/email-impersonation-protection/) insurance worth $1,000,000.

### Pioneer Kitten Expands Domain To Corporate VPNs

The [Iranian APT group](https://cyware.com/news/stolen-corporate-network-credentials-on-sale-26a49908) linked with the Iranian government’s intelligence team, Pioneer Kitten, has been _attacking the VPNs of US-based private and government sector firms for the last month_. They usually target North American and Israeli organizations that seem like a threat to the Iranian government.

They have now expanded their domain, perhaps for extra income, and are also helping other hacker groups such as APT33 (Shamoon), Oilrig (APT34), or Chafer to exploit corporate networks.

![Spear phishing protection](https://media.mailhop.org/phishprotection/images/2020/09/spear-phishing-protection-4125.jpg) 

_Organizations need to be cautious and regularly change their security logins_ to [prevent phishing](/) attacks.

### Lawsuit Filed Against Morgan Stanley For Two Major Security Blunders

Timothy Smith, a client at Morgan Stanley, has filed a **$5 million lawsuit** against the firm at the [US District Court](https://www.govinfosecurity.com/morgan-stanley-hit-5-million-data-breach-suit-a-14927?&web%5Fview=true) for the Southern District of New York, representing a 100 other customers. These _people had their personal information breached in two incidents_ in 2016 and 2019, where Morgan Stanley was careless with its [phishing protection](/) measures.

Morgan Stanley shut down two data centers in 2016 and hired a vendor to **erase all data** from the discarded computer systems. However, the task wasn’t done appropriately, leaving behind **unencrypted data** belonging to Morgan Stanley’s customers. A similar incident happened again in 2019, _where several computer systems at one of the company’s branches were carelessly replaced_. The data left unerased and unencrypted in both incidents included the names, phone numbers, social security number, passport number, contact information, DOB, asset value, and customers’ data.

Smith’s lawsuit accuses Morgan Stanley of being incompetent to uphold its customers’ interest, repeating similar blunders, and _failing to prevent an avoidable data breach_. While the firm has extended free credit monitoring of two years to all victims, nothing compensates for the lifelong threat the victims would face.

Morgan Stanley claims that they are taking **anti-phishing measures** and continually monitoring access to the previously unencrypted data.

### Telegram Becomes A Means Of Executing Magecart Attacks

_[Skimming codes](https://cyware.com/news/magecart-hackers-use-telegram-enabled-skimmer-code-c0515a03) have been hiding inside payment portals and stealing users’ card credentials for a long time now_. The hacker group Keeper stole card details from as many as **570 payment portals** in July 2020\. These hackers use Magecart to steal the credit card credentials of users.

In the scam, the threat actors are using Telegram’s encrypted messaging platform to exfiltrate stolen data. Recently, Magecart actors were found involved in attacking e-commerce platforms to steal the banking details of customers. The details they exfiltrate include the name, address, credit card number, expiry, and users’ CVV. This stolen information is sent to a private Telegram Channel, thus exploiting a messaging platform’s security for malicious purposes.

### View Media Exposes Over 38M User Records

Researchers at CyberNews discovered an **unsecured bucket** on [Amazon Web Services (AWS)](https://cybernews.com/security/online-marketing-company-exposes-data-of-millions-americans/?web%5Fview=true) server belonging to the online marketing company View Media. _The bucket was publicly available for an unknown duration_ and could have been downloaded by anyone with basic knowledge of Amazon buckets’ functioning. 

_The breach exposed the personal information of around 39 million US users and contained 5,302 files in total._ It had 59 CSV and XLS files with records of **38,765,297 US citizens** along with many marketing materials like banner advertisements, newsletters, and promotional flyers. These details include their names, email and street addresses, phone numbers, and ZIP codes.

![Office 365 phishing protection](https://media.mailhop.org/phishprotection/images/2020/09/office-365-phishing-protection-0341.jpg) 

All US citizens who suspect their email accounts to be affected by this breach are advised to take measures for [protection against phishing](/) and change their passwords to something more substantial immediately.

### Cyberattack Hits Northumbria University, Exams Cancelled

_A cyberattack brought down the systems of the [Northumbria University](https://www.infosecurity-magazine.com/news/northumbria-uni-campus-closed/?&web%5Fview=true) campus in Newcastle-Upon-Tyne_. The university notified students about the breach and informed them of a disruption in their operations, which was expected to be settled ‘soon.’ To ensure [protection from phishing](/) attacks, students won’t be able to access the student portal, blackboard, and other university systems until things get restored.

It is believed to be a **ransomware attack** that has compelled the university to cancel exams and consider removing parts of the academic calendar. Institutions must take [phishing prevention](/) seriously and audit their machines and the data regularly. They must impart [cyber training and awareness](/blog/phishing-awareness-training-is-getting-some-large-investments/) among students and teachers so that they don’t fall prey to any online scams.

### Twitter Account Of Indian PM Modi’s Personal Website Hacked

_Twitter accounts of [renowned figures](https://news.bitcoin.com/indian-prime-minister-modi-twitter-hacked-bitcoin/) have been on the radar of cybercriminals lately_. The most recent figure to have his verified Twitter account compromised is the Indian Prime Minister Narendra Modi. Although the breached account belonged to the PM’s website, @narendramodi\_in and wasn’t his personal Twitter handle (@narendramodi), _it had about 2.5 million followers subjected to a series of tweets from the attackers_ for about an hour before they were taken down and the account was restored.

These tweets asked for donations to the Prime Minister’s National Relief Fund for Covid-19 in bitcoins. The hackers behind the breach go by the name of ‘John Wick’ and clarified via a tweet that they weren’t responsible for the recent attack on Paytm Mall that they were held guilty of by intelligence firm Cyble.

Ironically, Twitter keeps reassuring people of its proactive [anti-phishing solutions](/products/advanced-threat-defense/), but time and again, the accounts of distinguished personalities keep getting compromised.

### Protect Your Organization

- [Learn how phishing attacks work and how to spot them](/learn-what-is-phishing/)
- [See how Phish Protection blocks threats in real time](/anti-phishing-tools/)

## Topics

[ Announcements ](/tags/announcements/) 

![Brad Slavin](https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg) 

[ Brad Slavin ](/authors/brad-slavin/) 

General Manager

Founder and General Manager of DuoCircle. Product strategy and commercial lead across DuoCircle's 2,000+ customer base.

[LinkedIn Profile →](https://www.linkedin.com/in/bradslavin) 

## Protect your inbox from phishing attacks

Real-time email security with 60-day free trial. No credit card required.

[Start Free Trial](https://portal.duocircle.com/cart.php?a=add&pid=101&brand=phishprotection) [View Pricing](/pricing/) 

## Related Articles

[  Intermediate 5m  Cybersecurity Updates For The Week 33 of 2022  Aug 22, 2022 ](/blog/cyber-security-news-update-week-33-2022/)[  Intermediate 6m  Cybersecurity Updates For The Week 41 of 2022  Oct 21, 2022 ](/blog/cybersecurity-news-21-oct-2022/)[  Intermediate 5m  Cybersecurity Updates For The Week 1 of 2021  Jan 1, 2021 ](/blog/cybersecurity-updates-for-the-week-1-of-2021/)[  Intermediate 6m  Cybersecurity Updates For The Week 1 of 2022  Jan 7, 2022 ](/blog/cybersecurity-updates-for-the-week-1-of-2022/)

```json
{"@context":"https://schema.org","@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]}
```

```json
{"@context":"https://schema.org","@type":"WebSite","name":"Phish Protection","url":"https://phishprotection.com","description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]}}}
```

```json
{"@context":"https://schema.org","@type":"BlogPosting","headline":"Cybersecurity Updates For The Week 37 of 2020","description":"Cybersecurity Updates For The Week 37 of 2020: The cyber-world faces constant attacks from the bad actors . These breaches reveal companies' and individuals'.","url":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-37-of-2020/","datePublished":"2020-09-13T09:43:27.000Z","dateModified":"2026-04-17T15:43:10.000Z","dateCreated":"2020-09-13T09:43:27.000Z","author":{"@type":"Person","@id":"https://phishprotection.com/authors/brad-slavin/#person","name":"Brad Slavin","url":"https://phishprotection.com/authors/brad-slavin/","jobTitle":"General Manager","description":"Brad Slavin is the founder and General Manager of DuoCircle, the company behind DMARC Report, AutoSPF, Phish Protection, and Mailhop. He founded DuoCircle in 2014 and has led the company's growth to 2,000+ customers across its email security product family. Brad's focus is product strategy, customer relationships, and the commercial and compliance side of email authentication (DPAs, SLAs, enterprise procurement).","image":"https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg","knowsAbout":["Email Security Strategy","SaaS Product Management","Enterprise Compliance","Customer Success","Email Deliverability Business"],"worksFor":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com"},"sameAs":["https://www.linkedin.com/in/bradslavin"]},"publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-37-of-2020/"},"articleSection":"intermediate","keywords":"Announcements","wordCount":1063,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/phishprotection/images/2020/09/spear-phishing-protection-4125.jpg","caption":"Phish Protection blog post image","width":1200,"height":630},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}}
```

```json
{"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://phishprotection.com/"},{"@type":"ListItem","position":2,"name":"Blog","item":"https://phishprotection.com/blog/"},{"@type":"ListItem","position":3,"name":"Intermediate","item":"https://phishprotection.com/intermediate/"},{"@type":"ListItem","position":4,"name":"Cybersecurity Updates For The Week 37 of 2020","item":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-37-of-2020/"}]}
```