Cybersecurity Starts in the Boardroom
End of support for Internet Explorer 11 web browser Today 15 June 2022, Microsoft will retire the Internet Explorer (IE) 11 after 27 years of Internet Explorer being included with Windows. There will no longer be security updates for the application, which means when the threat actors find flaws in …
The Emotet botnet started off as banking trojan then evolved into a spamming and malware delivery system, has now moved onto exfiltrating credit card data: Emotet malware gang shifts to stealing credit cards • The Register If you have your credit card details stored in your Google Chrome browser, the …
Continue reading “Emotet are back – now stealing credit card data”
This equally applies to individuals, large and small organisations and government departments. The threat actors best friend, is when we all compartmentalise our cyber security issues, dealing with them quietly and behind closed doors – this includes trying to pay the cyber criminals off! This gives them the opportunity to …
Continue reading “Lack of knowledge will hamper anyone’s cyber security efforts”
Here is another excellent breakdown, with screen shots, of phishing emails exploiting the Microsoft Word/Follina/ms-msdt flaw. Being aware of the types of phishing emails the threat actors use is part of the defence in depth you need to have great cyber security. TA570 Qakbot (Qbot) tries CVE-2022-30190 (Follina) exploit (ms-msdt) …
Continue reading “Active exploit for Follina – the still unpatched flaw in Microsoft Word”
Researchers at HP Wolf Security have started to see phishing spam email campaigns deploying a previously unknown malware family SVCReady. The HP security blog has a very good description of the malware and how it works – a bit techie – but towards the end it shows some images of …
