Cybersecurity Starts in the Boardroom
The threat actor Roaming Mantis has been detected since February, targeting victims across Europe and the Far East. Their attacks are based around phishing text messages, Android users are directed to download a malicious app, whilst Apple users (as the Apple “walled garden” Apps store does an effective job of …
This report is from HP’s Threat Research Blog and is about a threat discovered impacting hotels in South America. But it illustrates the wide range of threats that can get to you via an email attachment and has some examples you can look at. Stealthy OpenDocument Malware Deployed Against Latin …
This post was original published on 27 June 2022 Update 14 July 2022 Here is an article from the Microsoft Threat Intelligence Center (MSTIC) and the Microsoft 365 Defender Research Team outlining how the big phishing campaigns backed by experienced and skilled hackers can bypass the security of multi-factor authentication: …
A UK Government’s report looking at cybersecurity breaches across the country, (UK Government. 2022), prepared by Department for Digital, Culture, Media & Sport (and sport!) showed clearly email phishing is a real threat: “Of the 39% of UK businesses who identified an attack, the most common threat vector was phishing …
It may be a new cyber gang but Luna Moth are using the oldest tricks in the book – phishing with social engineering to exploit user’s trust: New ‘Luna Moth’ hackers breach orgs via fake subscription renewals (bleepingcomputer.com) What you and your team need is an awareness of what social …
Continue reading “Social Engineering to breach security – fake subscription renewals”
Three data breaches in four years – unbelievable! If you have stayed in a Mariott Hotel, then your personal information has probably been stolen. Marriott Hotels suffers third data breach in 4 years • The Register The attack was not “highly sophisticated”, which is what is normally claimed by these …
Continue reading “Marriot Hotels suffer another data breach”
The PennyWise malware is masquerading as crypto-coin mining software and being advertised in a variety of YouTube videos – showing that any communications method can be exploited for phishing attacks. PennyWise malware on YouTube targets cryptocurrency wallets and browsers | TechRepublic To help build confidence in the product, the threat …
Continue reading “Malware targets cryptocurrency wallets and browsers”
