Cybersecurity Starts in the Boardroom
This story was first posted on 25 March 2022 This story This attack used classic social engineering tactics – the hackers posed as recruiters for a dream job or set up a bogus websites aimed at financial and crypto-currency industries – to exploit a remote code vulnerability in Google Chrome. …
Continue reading “Google block’s a North Korean Chrome exploit -UPDATED”
I am frequently asked what I think of DropBox or other method for organisations to share files across the internet with other organisations, often after I have been speaking about Microsoft 365, OneDrive and SharePoint. Possibly after I have mentioned that these services that have, authentication, authorisation and accountability (AAA) …
This browser-in-the-browser (BitB) is a technique for deceiving the user into thinking they are using a legitimate online login screen, such as when you log in to Microsoft 365 or Google Workspace. This browser-in-the-browser attack is perfect for phishing • The Register Behold, a password phishing site that can trick …
Continue reading “Be very careful when you log-in online – things may not be what they seem”
Escobar mobile malware targets 190 banking and financial apps, steals 2FA codes | TechRepublic A version of this malicious software was found in circulation cloaked as McAfee software. This software is being offered for rent on the Dark Web so it could be used by multiple hackers who do not …
Continue reading “New Android malware – Escobar – stealing MFA codes among other secret data”
According to the States of Guernsey islanders have faced a rapid increase in cyber attacks since the start of the Ukraine Russia conflict. This is based on information from a local cyber-security firm, who had a client hacked by phishing emails. Guernsey cyber-security warning for islanders and businesses – BBC …
