Cybersecurity Starts in the Boardroom
I have been explaining throughout the period of the Russia Ukraine conflict, that even though the cyber-threat spread has been limited, so far, it may not remain so and it may take time for the threat to UK organisation and individual systems to develop. Today the National Cyber Security Centre …
The threat actors are still attempting to exploit the Follina flaw in Microsoft Word – looking for those of you out there who have not bothered to run the updates: XFiles info-stealing malware adds support for Follina delivery (bleepingcomputer.com) Have you checked all the machines in your organisation have run …
The Raccoon Stealer malware is back with an updated version, with added functionality and capabilities. This malware is offered as malware-as-a-service (mimicking a legitimate business model), enabling less well equipped threat actors to implement sophisticated cyber security attacks. Expect the use of this malware to increase as threat actors, looking for …
This is a phishing attack via Facebook Messenger. Using social engineering and pretending to be be Facebook security staff, it is threat actors attempting to steal Facebook accounts: Messenger chatbots now used to steal Facebook accounts (bleepingcomputer.com)
It is an accepted practice for software vendors to offer a bug bounty to people who discover a flaw in their software, and report it to them. The vendor can then, hopefully, fix the vulnerability before a threat actor can exploit it. Now the ransomware gangs are at it – …
Continue reading “Now the ransomware gangs are offering bug bounties”
