Threat Report 5th August 2022 – NCSC.GOV.UK
National Cyber Security Centre Threat Report 5 August 2022
BreachForums is more popular than ever with threat actors
BreachForums is a site that shares stolen data between threat actors – and it is expanding mainly due to the “billion record Chinese hack” being shared there: Billion-record Chinese data leak’s host booms • The Register Don’t let your organisation’s information end up there!
Long term firmware compromise
This is an article looking at the invisible threat in our hardware – UEFI rootkit attacks. Discovery of new UEFI rootkit exposes an ugly truth: The attacks are invisible to us | Ars Technica
And we thought blocking Microsoft Office macros was a good idea – but close one door to the threat actors and of course they find another way to get to you…
Research is showing that with Microsoft now blocking Office VBA macros from the internet, threat actors are moving to other attachments that can execute malicious instructions, such as Windows Shortcut .lnk, .iso and .rar. As Microsoft blocks Office macros, hackers find new attack vectors (bleepingcomputer.com) My advice: Make sure your …
Phishing-as-a-Service – called “Robin Banks” you know it is going to be trouble.
Phishing attacks are highly successful for threat actors, now they can be executed by gangs with less technical ability as they can buy it in: New ‘Robin Banks’ phishing service targets BofA, Citi, and Wells Fargo (bleepingcomputer.com) You need to be ready
