---
title: "Cybersecurity Updates For The Week 49 of 2020 | Phish Protection"
description: "Cybersecurity Updates For The Week 49 of 2020: Another week in the cyber world has passed, and there have been hundreds of phishing attacks and data."
image: "https://phishprotection.com/og/blog/cybersecurity-updates-for-the-week-49-of-2020.png"
canonical: "https://phishprotection.com/blog/cybersecurity-updates-for-the-week-49-of-2020/"
---

Quick Answer

Another week in the cyber world has passed, and there have been hundreds of \*\*phishing attacks\*\* and data breaches. The following news headlines testify to the growing need to adopt \[anti-phishing protection\](/products/advanced-threat-defense/) for home and office systems

Share 

[ ](https://www.linkedin.com/sharing/share-offsite/?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-49-of-2020%2F "Share on LinkedIn") [ ](https://twitter.com/intent/tweet?text=Cybersecurity%20Updates%20For%20The%20Week%2049%20of%202020&url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-49-of-2020%2F "Share on X/Twitter") [ ](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-49-of-2020%2F "Share on Facebook") [ ](https://reddit.com/submit?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-49-of-2020%2F&title=Cybersecurity%20Updates%20For%20The%20Week%2049%20of%202020 "Share on Reddit") [ ](mailto:?subject=Cybersecurity%20Updates%20For%20The%20Week%2049%20of%202020&body=Check out this article: https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-49-of-2020%2F "Share via Email") 

![Phish Protection blog post image](https://media.mailhop.org/phishprotection/images/2020/12/protection-from-phishing-5352.jpg) 

Another week in the cyber world has passed, and there have been hundreds of **phishing attacks** and data breaches. The following news headlines testify to the growing need to adopt [anti-phishing protection](/products/advanced-threat-defense/) for home and office systems 

### \*\*\*\* Hackers Use Credential Stuffing To Compromise Spotify Accounts

In recent research by vpnMentor, a database with more than **380 million Spotify users**‘ records has been discovered. It is believed that the _adversaries have used credential stuffing to decrypt weak or recycled passwords_.

Research further revealed that the leaked database belonged to a third-party who stored [Spotify login credentials](https://www.vpnmentor.com/blog/report-spotify-scam/?&web%5Fview=true). _The exposed details include the PII and login credentials of Spotify users_. All those who think they might have been victims of this breach must immediately change their passwords to something substantial and unique. Healthy password habits are one of the most effective measures to [prevent phishing](/) attacks.

### \*\*\*\* Data Breach At Peatix

_Popular event organizing platform Peatix recently underwent a data breach which has exposed the personal information of **over 4.2 million** Peatix users_. The adversaries used Instagram and Telegram ads and hacking forums to leak this multitude of user data stored on the [systems of Peatix](https://www.zdnet.com/article/hacker-leaks-the-user-data-of-event-management-app-peatix/?&web%5Fview=true).

The compromised data included the names, usernames, email addresses, and hashed passwords of users; no financial information was compromised in the attack. _Peatix is in the process of informing all affected users about the breach_. They have also conducted investigations and traced the vulnerability leading to the attack. The **security flaw** is now fixed, and Peatix has adopted [anti-phishing solutions](/products/advanced-threat-defense/) to prevent such an attack in the future.

### \*\*\*\* Ransomware Hits Banijay Group

The French Entertainment Company Banijay Group, which produces television shows such as Fear Factor, Keeping up with the Kardashians, Mr. Bean, The Island with Bear Grylls, and LEGO Masters, recently underwent a **ransomware attack**. _The adversaries compromised their employees’ financial and personal details and demanded a huge ransom for the decryption key_.

![Protection from phishing](https://media.mailhop.org/phishprotection/images/2020/12/protection-from-phishing-5352.jpg) 

The attackers targeted the Endemol Shine Group (the latest acquisition of the Banijay Group) and [accessed other networks](https://www.cybersecurity-insiders.com/france-banijay-group-hit-by-ransomware/?web%5Fview=true) using Endemol’s database. On its part, Banijay Group has informed the UK and Netherlands law enforcement and adopted necessary measures for [protection from phishing](/) attacks. However, _it is uncertain whether they will pay the ransom or resist the threats from the adversaries_.

### \*\*\*\* Baidu Search Box Makes A Comeback

Security researchers at Palo Alto Networks discovered a data collection code in the Baidu Push SDK, responsible for showing notifications in Baidu Search Box and Baidu Maps. Resultantly, the [two Android apps](https://www.zdnet.com/article/baidus-android-apps-caught-collecting-sensitive-user-details/?&web%5Fview=true) were removed from Google Play Store last month. In its defense, Baidu said that though information such as users’ MAC address, phone model, IMSI number, or carrier information is collected, it is never without a user’s permission. _The two Baidu apps were removed from the Play Store because of some unspecified violations and not because of its data collection code_.

Baidu has been working on its security flaws and taking measures for [protection against phishing](/). The Baidu Search Box app has already made its comeback to Play Store, and they hope to do the same for Baidu Maps. The issue may seem to have been fixed, but _malicious actors often misuse data collected by SDKs_. **Sensitive information** is collected by several apps today, but its impact on users poses a big question!

### \*\*\*\* Cyberattack Hits Ritzau News Agency

Ritzau news agency has been providing the Danish media companies and organizations with text, photos, information, and news since 1866\. It is the most significant news agency in Denmark and was unfortunately [hit by a cyberattack](https://au.news.yahoo.com/ritzau-news-agency-hit-cyber-attack-150448121--spt.html?&web%5Fview=true&guccounter=1&guce%5Freferrer=aHR0cHM6Ly9jeXdhcmUuY29tLw&guce%5Freferrer%5Fsig=AQAAABVybiwbvNlxkCCvTXXPJHBpNxc5nWD286Mp4PjI8P8Lu744Zs3alucPRngb-OGwIcFGPtQzcUGdSPsxUTg) on 24th November. _The attack which brought down the systems at Ritzau is said to be a ‘professional attack’ by its CEO Lars Vesterloekke_.

Ritzau has shut down all their servers, email, and telephones to ensure [phishing attack prevention](/) and damage control. The attackers remain unidentified, and the servers of Ritzau are not operating again either. _News is now being sent through an emergency email system_.

### \*\*\*\* Belden Loses Confidential Details to Data Breach

_Popular specialty networking solutions provider Belden underwent a serious cyberattack recently_, which has compromised sensitive data related to its present and former employees and business partners.

The organization had [detected suspicious activity](https://www.securityweek.com/belden-discloses-data-breach-affecting-employee-business-information?&web%5Fview=true) on some of its servers and deployed third-party forensic experts to investigate the issue. _The research revealed that the adversaries had accessed and compromised some of Belden’s file servers_. The good news is that Belden’s manufacturing plants and quality control or shipping units remain unaffected by the security incident.

![Email phishing protection](https://media.mailhop.org/phishprotection/images/2020/12/email-phishing-protection-7896.jpg) 

The **compromised data** includes the names, DOBs, addresses, social security or national insurance numbers, email ID, bank details of North American employees, etc. Besides, business partner details such as bank information and taxpayer ID numbers were exposed. Belden was following the [phishing prevention best practices](/resources/phishing-prevention-best-practices/) and locked the adversaries out of its network. It is informing all affected employees and business partners about the incident and offering free credit monitoring and support services wherever possible.

### \*\*\*\* Illinois Valley Community College Sends Data Breach Notifications

Exemplifying the saying, “Precaution is better than cure,” the Illinois Valley Community College (IVCC) is sending out over [160,000 notifications](https://www.newstrib.com/2020/11/24/illinois-valley-community-college-sends-letter-warning-of-data-breach/a65oecs/?&web%5Fview=true) to present and former students, faculty members, and applicants regarding a **data breach** that hit its servers back in April. Although _the college isn’t sure which parts of their systems were affected by the attack_ or the nature of the data compromised, they are taking ‘an abundance of caution.’

As part of its [phishing protection](/) strategy, IVCC has hired the **risk prevention** firm Kroll to provide free credit and identity monitoring, [identity theft](/products/email-impersonation-protection/) restoration, and fraud consultation services to victims. So far, 750 people have signed up for the free **security service** (details elaborated in the notification letter). The IVCC believes that it is better prepared now to handle security issues with its proactive cybersecurity strategies.

### \*\*\*\* Beware Of Zoom Thanksgiving Invites

With the holiday season, _cyber defenses remain off-guard, which enables the adversaries to launch sophisticated cyberattacks_. The latest in line is Zoom invites asking people to join a ‘Thanksgiving Meeting.’ Once a user clicks on the meeting link, they are redirected to a [spoofed Microsoft login page](https://www.bleepingcomputer.com/news/security/warning-massive-zoom-phishing-targets-thanksgiving-meetings/?&web%5Fview=true) that makes the user give out their email address and password. More than **3,600 unique user** credentials (IP addresses, email addresses, and passwords, geographic location) have already been compromised this Thanksgiving.

_The numbers will keep increasing if people don’t think twice before giving away their email credentials_ to a Zoom Meeting. Reaching the Microsoft landing page while joining the meeting with the link should bring back all the [phishing prevention tips](/content/phishing-prevention/) we’ve come across time and again because Zoom invite links are supposed to open the app and not lead you to another webpage!

### Protect Your Organization

- [Learn how phishing attacks work and how to spot them](/learn-what-is-phishing/)
- [See how Phish Protection blocks threats in real time](/anti-phishing-tools/)

## Topics

[ Announcements ](/tags/announcements/) 

![Brad Slavin](https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg) 

[ Brad Slavin ](/authors/brad-slavin/) 

General Manager

Founder and General Manager of DuoCircle. Product strategy and commercial lead across DuoCircle's 2,000+ customer base.

[LinkedIn Profile →](https://www.linkedin.com/in/bradslavin) 

## Protect your inbox from phishing attacks

Real-time email security with 60-day free trial. No credit card required.

[Start Free Trial](https://portal.duocircle.com/cart.php?a=add&pid=101&brand=phishprotection) [View Pricing](/pricing/) 

## Related Articles

[  Intermediate 5m  Cybersecurity Updates For The Week 33 of 2022  Aug 22, 2022 ](/blog/cyber-security-news-update-week-33-2022/)[  Intermediate 6m  Cybersecurity Updates For The Week 41 of 2022  Oct 21, 2022 ](/blog/cybersecurity-news-21-oct-2022/)[  Intermediate 5m  Cybersecurity Updates For The Week 1 of 2021  Jan 1, 2021 ](/blog/cybersecurity-updates-for-the-week-1-of-2021/)[  Intermediate 6m  Cybersecurity Updates For The Week 1 of 2022  Jan 7, 2022 ](/blog/cybersecurity-updates-for-the-week-1-of-2022/)

```json
{"@context":"https://schema.org","@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]}
```

```json
{"@context":"https://schema.org","@type":"WebSite","name":"Phish Protection","url":"https://phishprotection.com","description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]}}}
```

```json
{"@context":"https://schema.org","@type":"BlogPosting","headline":"Cybersecurity Updates For The Week 49 of 2020","description":"Cybersecurity Updates For The Week 49 of 2020: Another week in the cyber world has passed, and there have been hundreds of phishing attacks and data.","url":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-49-of-2020/","datePublished":"2020-12-04T13:46:11.000Z","dateModified":"2026-04-17T15:43:10.000Z","dateCreated":"2020-12-04T13:46:11.000Z","author":{"@type":"Person","@id":"https://phishprotection.com/authors/brad-slavin/#person","name":"Brad Slavin","url":"https://phishprotection.com/authors/brad-slavin/","jobTitle":"General Manager","description":"Brad Slavin is the founder and General Manager of DuoCircle, the company behind DMARC Report, AutoSPF, Phish Protection, and Mailhop. He founded DuoCircle in 2014 and has led the company's growth to 2,000+ customers across its email security product family. Brad's focus is product strategy, customer relationships, and the commercial and compliance side of email authentication (DPAs, SLAs, enterprise procurement).","image":"https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg","knowsAbout":["Email Security Strategy","SaaS Product Management","Enterprise Compliance","Customer Success","Email Deliverability Business"],"worksFor":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com"},"sameAs":["https://www.linkedin.com/in/bradslavin"]},"publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-49-of-2020/"},"articleSection":"intermediate","keywords":"Announcements","wordCount":1133,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/phishprotection/images/2020/12/protection-from-phishing-5352.jpg","caption":"Phish Protection blog post image","width":1200,"height":630},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}}
```

```json
{"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://phishprotection.com/"},{"@type":"ListItem","position":2,"name":"Blog","item":"https://phishprotection.com/blog/"},{"@type":"ListItem","position":3,"name":"Intermediate","item":"https://phishprotection.com/intermediate/"},{"@type":"ListItem","position":4,"name":"Cybersecurity Updates For The Week 49 of 2020","item":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-49-of-2020/"}]}
```