Cybersecurity Starts in the Boardroom
The SANS Internet Storm Centre is reporting another spam email attack doing the rounds with a new payload. TA551 (Shathak) pushes IcedID (Bokbot) (sans.edu) The important things to take away from this are: In real world situations ransomware has been delivered to companies using these methods Keep your spam filters …
Before you open any attachment you should think about it: Are you expecting an attachment from this sender? Does this sender normally send you attachments like this? If you do not recognise the attachment extension then do not open it. Best practice is NOT TO OPEN any unexpected attachments! It …
Continue reading “Do not click on the attachment – whatever it is called!”
The SANS Internet Storm Diary is reporting that the Emotet botnet, that was taken down earlier this year by worldwide Co-operation of law enforcing has started to show up again on their monitoring. Emotet Returns – SANS This botnet distributes malicious packages via email attachments and then deploys these packages …
Continue reading “Defunct botnet shows signs of life – cybersecurity advice for you!”
Bruce Schneier has an interesting article today about impersonation. In this case it is bad actors abusing havard.edu email addresses. Using Fake Student Accounts to Shill Brands – Schneier on Security Impersonation is a real threat to any business, that does not have clear policies and procedures, and clear lines …
Google gives security keys to 10,000 high-risk users – BBC News You may not be on this list – so you have to take you own steps to be secure. The two things you need to do now are: Activate the multi-factor authentication Get some training in how to recognise …
Continue reading “Google strengthens the security of some high profile users”
