Cybersecurity Starts in the Boardroom
Another school has been hit by ransomware. They tend to be soft targets for threat actors as they use a range of predictable applications, their IT teams are not large, IT tends not to be a priority and they have a large group of potential victims for phishing emails etc. …
Phishing emails with a carefully scripted social engineering message, a malicious .pdf file with links to malware stored in Firebase Storage on Google. Brad Duncan on SANS InfoSec Handlers Diary Blog has the full story including screenshots of the phishing email and the steps to infection: Recent IcedID (Bokbot) activity …
Continue reading “Phishing emails – can you recognise them?”
ChatGPT has been used for homework, writing radio programmes, academic papers, articles, coding, hacking etc. etc. etc.. Here are some of the most recent articles examining privacy and cyber crime using artificial intelligence, of which the adapting, convincing email scams is probably the issue that organisations need to think about …
Continue reading “What would tech writers write about if ChatGPT did not exist?”
This is a continuation of last week’s article that looked at stealth malware infection from a malicious phishing email. Phishing Emails I spend a lot of my time writing and talking about malicious phishing emails. It is the easiest attack vector into your organisation that a threat actor has access …
This is only being released to the Windows Insider programme at the moment but if it is will get to the general release soon. Windows 11 gets phishing protection boost and SHA-3 support (bleepingcomputer.com) It is designed to protect your credentials, alerting you if you are about to carry out …
Continue reading “Windows 11 to get extra phishing protection”
