Cybersecurity Starts in the Boardroom
Here are some of the leading ransomware stories this week: Greek natural gas operator suffers ransomware-related data breach – Bleeping Computers LockBit ransomware group implicated in crippling attack on French hospital – The Record by Recorded Future New ‘Donut Leaks’ extortion gang linked to recent ransomware attacks (bleepingcomputer.com) RansomEXX claims …
Continue reading “Ransomware this week… with an international flavour and some advice.”
We cannot emphasise how important multi-factor authentication is to your cyber security – however, of course, the threat actors do have ways around it: Cookie stealing: the new perimeter bypass – Sophos News The threat is malware getting into your system and stealing session cookies that are associated with the …
Collecting (stealing) credentials is a favourite pastime of threat actors – either to break into accounts directly or to add them to their credential stuffing attacks (looking for those people who reuse passwords) or just to sell on the dark web! Here they are doing it to users of the …
Continue reading “Credential theft – where the threat actors start and some advice”
Threat actors have to host their malicious login stealing pages somewhere – why not in Amazon’s cloud: Hiding a phishing attack behind the AWS cloud
Research company Proofpoint, has shown that the threat actor, tracked as TA558, has increased it’s phishing campaigns targeted at hotel and travel companies, to coincide with the rapid increase in foreign travel as the pandemic decreases. Hackers target hotel and travel companies with fake reservations (bleepingcomputer.com) Threat actors are always …
Continue reading “Tourist rebound after COVID-19 is an obvious target for phishing attacks”
