I think the number is more than a quarter of the world’s population has a Facebook account, couple that with Meta’s international reputation for information security and ethics and so it is no surprise that it is a target for scammers and threat actors Facebook phishing campaign nets millions in …
Active exploit for Follina – the still unpatched flaw in Microsoft Word
Here is another excellent breakdown, with screen shots, of phishing emails exploiting the Microsoft Word/Follina/ms-msdt flaw. Being aware of the types of phishing emails the threat actors use is part of the defence in depth you need to have great cyber security. TA570 Qakbot (Qbot) tries CVE-2022-30190 (Follina) exploit (ms-msdt) …
Continue reading “Active exploit for Follina – the still unpatched flaw in Microsoft Word”
New in the wild malware – SVCReady
Researchers at HP Wolf Security have started to see phishing spam email campaigns deploying a previously unknown malware family SVCReady. The HP security blog has a very good description of the malware and how it works – a bit techie – but towards the end it shows some images of …
Ransomware attacks – just in case you have forgotten that any organisation can be compromised – three tips to help you face up to the threat
Bored with ransomware stories? Read this one, it has a very nice Hitchhiker’s Guide to the Galaxy reference. There have been a flurry of ransomware attacks in the news recently – but these are only the ones that make the headlines. Louisiana authorities investigating ransomware attack on city of Alexandria …
Phishing email alert – Excel spreadsheets loaded with RATs
Fortinet’s FortiGuard Labs threat intelligence have been tracking phishing emails that contain a triple threat of remote access trojans – RATS. The package is contained in an infected Microsoft Excel document and once the recipient of the email makes the mistake of opening the file – because the file name …
Continue reading “Phishing email alert – Excel spreadsheets loaded with RATs”
