New Zealand-based infosec firm Emsisoft, has issued a report on ransomware in the US during 2023, in which they are suggesting a ban on paying ransoms and the subsequent loss of revenue by the gangs would reduce ransomware attacks. The State of Ransomware in the U.S.: Report and Statistics 2023 …
What happens when a company leaks data?
Of course the company reports the data security mistake to the Information Commissioner’s Office and takes whatever steps are necessary to fix the problem. They then probably release a press statement explaining how their client’s data security was not impacted by their breach and credit card details etc are safe. …
My posts are not all doom and gloom – read about the scammers who were scammed…
I had to include a link to this article: Weep for the cybercriminals who fell for online scams and lost $2.5m last year • The Register I think I will refuse them access to our online cyber security awareness training!
Do you know what “intermittent encryption” is? The ransomware gangs do and they are using it to avoid your detection.
Intermittent encryption is a recently detected method of obscuring malware from anti-virus software and other detection methods. It is not encryption of whole files, byte encryption of bytes within the malware. Research by SentinelOne has shown this evasion technique is being deployed by ransomware gangs in the wild: Crimeware Trends …
Scammers net $23m through YouTube
By abusing copyright and YouTube cyber criminals were able to steal millions of dollars of royalties. No mention is made of the profit YouTube made from the adverting revenue from these videos involved in the heist! The largest YouTube royalties heist in history spotlights a much larger problem | Mashable
Social engineering – your trust abused on YouTube
Here is a story featuring another Google product – that makes a huge profit for Google – that is being used and abused by threat actors against legitimate users: Convincing ‘YouTube’ Google ads lead to Windows support scams (bleepingcomputer.com) If you just make the YouTube videos look as though they …
Continue reading “Social engineering – your trust abused on YouTube”
If you hold a little or a lot of sensitive data in a web app make sure it is secure!
Neopets didn’t and leaked the details of 69 million users, That is a lot of personal information to lose control of! Neopets data breach exposes personal data of 69 million members (bleepingcomputer.com) Their source code and other data was also stolen. A hacker calling themselves ‘TarTarX’ is selling the source …