The world of cyber security has seen some interesting developments in the month of October. The first item shows the discovery of hundreds of fake typo squatting websites that are hiding malware. Also highlighted is a new security feature in Windows to protect against password attacks. Finally, LinkedIn has added some new features to help protect users from scams and other malicious activities.
MASSIVE TYPO SQUATTING CAMPAIGN DISCOVERED
Over 200 typo squatting websites have been found that impersonate 27 popular brands. Typo squatting is the process of creating a fake website with a domain name that is very similar to the domain name of legitimate brands, so users can be tricked into visiting the website. The fake websites in this campaign appear to be download pages for legitimate brands’ software such as Microsoft Visual Studio, Notepad++, PayPal, and Google Wallet. If a user clicks the download button on any of these pages, they will be downloading malware that can steal information or act as a remote access trojan. The best way to protect against typo squatting is to use a search engine to find the official website of a brand, and to avoid clicking on links in emails or text messages.
NEW ACCOUNT LOCKOUT POLICIES FOR WINDOWS
Microsoft has released a security feature for Windows to block local administrator brute-force attacks by implementing an account lockout policy, as well as more complex password requirements. In the past there were no account lockout policies for local administrators, so an attacker could brute-force the password by trying thousands or even millions of passwords until they find the right one and get into the account. With the lockout policy enabled, the local administrator account will be locked out for 10 minutes after 10 failed login attempts, which will make brute-forcing very slow and ineffective. This feature is enabled by default on Windows 11, and every other Windows version that still receives updates will have the option to enable this feature.
INCREASED SECURITY FOR LINKEDIN
LinkedIn has been a huge target for threat actors over the last few years. Attackers have been abusing the platform to distribute malware, steal credentials, and conduct financial scams. LinkedIn is trying to put a stop to this abuse by introducing some new security features. The first new feature will help to stop fake or impersonated accounts that post fake job offers. These fake job offers often lead to users downloading malware. LinkedIn has added an “About this profile” section that tells users if the account holder has verified their email address and phone number, as well as when the account was created. LinkedIn is also now using AI to actively find accounts that show signs of fraudulent activity. The last feature that LinkedIn has added is a warning to users when they receive suspicious messages. This feature can identify when the sender of a message is trying to move the conversation to another platform, which is often a sign of a scam. The goal of all these new features is to make the platform a safer place for everyone.