This not not good reading – an increase in ransomware attacks: March 2023 broke ransomware attack records with 459 incidents (bleepingcomputer.com) Your takeaway is – you need a plan for ransomware! If you’d like a little help with this have a look at my recent mini-series on ransomware: Ransomware – …
Capita – data was stolen
This is a follow-up to an earlier story I wrote about a cyber security incident at Capita – the UK’s largest outsourcing company. An attack that is believed to have started with compromised credentials: Capita confirms hackers stole data in recent cyberattack (bleepingcomputer.com) Your takeaway from this is that credential …
Incident Response Training
I have a couple of articles this week looking at an unannounced cyber security incident response exercise I ran earlier this week. It’s Tuesday and I think I have a computer virus… Incident Response Communications – Have You Got It Covered? I chose the day I did as some of …
Phishing emails – can you recognise them?
Phishing emails with a carefully scripted social engineering message, a malicious .pdf file with links to malware stored in Firebase Storage on Google. Brad Duncan on SANS InfoSec Handlers Diary Blog has the full story including screenshots of the phishing email and the steps to infection: Recent IcedID (Bokbot) activity …
Continue reading “Phishing emails – can you recognise them?”
WordPress vulnerability
You always need to keep up with the cyber security of your WordPress website and any plug-ins you use. Here is another that needs checking: Massive Balada Injector campaign attacking WordPress sites since 2017 (bleepingcomputer.com) Now the question you need to ask yourself is who looks after my website, assuming …
What would tech writers write about if ChatGPT did not exist?
ChatGPT has been used for homework, writing radio programmes, academic papers, articles, coding, hacking etc. etc. etc.. Here are some of the most recent articles examining privacy and cyber crime using artificial intelligence, of which the adapting, convincing email scams is probably the issue that organisations need to think about …
Continue reading “What would tech writers write about if ChatGPT did not exist?”
Fast encryption ransomware
Researchers have discovered a new strain of ransomware malware, they have named Rorschach, which has a very fast encryption engine. New Rorschach ransomware is the fastest encryptor seen so far (bleepingcomputer.com) This makes having a well trained team, who know exactly what to do if they even suspect they may …