BEC and the multiplier effect:
Chris Loehr on July 16, 2019
The days of email scamming has evolved into something far more effective and profitable. One of the earlier and well-known email scams were the Nigerian Prince emails. As I’m sure you recall, these emails would offer you something along the lines of $20 million dollars in exchange for transferring funds out of Nigeria. Today’s attacks are much more sophisticated, as state sponsored and organized crime syndicates use spear phishing, invoice scams, employee payroll direct deposit changes, along with a host of others.
Threat Report Wednesday July 10th 2019
Paul Scott on July 10, 2019
This week we’re focusing on breaches. How would you know if you’ve been breached? How would a breach impact your enterprise? Major brands are paying fines for past breaches and technology providers are unaware of compromise – this could impact the viability of their business. We be doing everything we can to be good stewards and detect lingering threats. Major brands fined for fairly recent breaches Two large enterprises are ordered to pay fines this week.
Threat Report Wednesday July 3rd 2019
Paul Scott on July 3, 2019
PCM customer impacted by Office 365 business email compromise Perch now has Office 365 log collection in beta testing. And, in good timing! A breach at large solution provider, PCM Inc., allowed hackers to access Microsoft Office 365 email and file sharing systems for some of the company’s clients. California-based PCM had more than 2,000 customers in 2018. According to Krebs’ sources, attackers stole administrative credentials that PCM uses to manage client accounts within Office 365, a cloud-based file and email sharing service run by Microsoft Corp.
Release Notes
July 2, 2019
Threat Report Wednesday June 26th 2019
Paul Scott on June 26, 2019
This week in the threat report, we are stuck in an ongoing Iran-U.S. cyber war shooting range that is moving towards scorched Earth. But not all attackers are out for blood, after GandCrab’s recent retirement, ransomware campaigns pivot to Sodinokibi to cash in on the Bitcoin boom and score moon Lambos. Iran targets U.S. companies in scorched Earth cyber campaign CISA warns of an increase in cyberattacks that utilize destructive wiper tools that targets the U.
Threat Report Thursday June 13th 2019
Paul Scott on June 13, 2019
Buckle up, we have a big threat report this week. First, let’s talk about the critical vulnerabilities everyone is talking about, then catch up on some APT news. Then, we’ll get to the fun stuff. Data from U.S. Customs and Border Patrol ended up on the dark Web and Radiohead makes hacking history with response to ransom demands. Critical vulnerability: EXIM If you weren’t aware there was a recently disclosed vulnerability to get code execution on Exim servers locally and remotely.
Fortress Cyber Security Awards Honors 36 Global Innovators and Products
Perchy on June 6, 2019
“The Business Intelligence Group today announced the winners of the 2019 Fortress Cyber Security Awards. The business award program sought to identify and reward the world’s leading companies and products that are working to keep our data and electronic assets safe among a growing threat from hackers.” Read the entire article here.
Release Notes
June 6, 2019
Threat Report Wednesday June 5th 2019
Paul Scott on June 5, 2019
There’s a good mix of variety in top news over the last week. Let’s start with an update on the Norwegian MSP hack update. Then take a look at a leaked tool OilRig APT uses to brute force exchange servers. Finally, in crimeware we’re saying goodbye to GandCrab ransomware and hello to Monstercat’s RAT, KPOT Stealer. StonePanda took the heat for RedBravo in Norwegian MSP hack In early February, we spoke about a series of intrusions that were conducted between late-2017 and late-2018 by a Chinese state-sponsored actor against several companies, including a large Norwegian MSP.
Threat Report Wednesday May 29th 2019
Paul Scott on May 29, 2019
The threats are out there but sometimes they’re in our own house too. Over the last week we’ve learned about a number of large data leaks and breaches. We should be having serious discussions about data security, but instead Germany suggests an end encryption. I’m not the only one throwing shade this week. Baddies are throwing Shade in a new ransomware campaign. Let’s dig in. One billion records breached last week Over the last week, the news was filled with disclosures from organizations about data leaks and data breaches.