Blog, Education, Information Security and Phishing

How MFA and Cyber Liability Insurance Effectively Manage Risk in Higher Education

Duo's Security Blog

OCTOBER 18, 2021

One area where campuses have been collaborating recently are changes around cyber liability insurance for higher education, an opportunity for campus cybersecurity teams to combine forces with their risk management team. In a recent Duo blog post, we gave an overview of cyber liability insurance. Higher education campuses in the U.S.

Insurance

Insurance Education Risk Cyber Insurance

Microsoft disrupts SEABORGIUM ’s ongoing phishing operations

Security Affairs

AUGUST 15, 2022

Microsoft has disrupted activity by SEABORGIUM, a Russia-based actor launching persistent phishing, credential and data theft, intrusions, and hack-and-leak campaigns tied to espionage. More details + TTPs in this MSTIC blog: [link] — Microsoft Security Intelligence (@MsftSecIntel) August 15, 2022. Pierluigi Paganini.

Phishing

Phishing Accountability Hacking Surveillance

UK NCSC warns of spear-phishing attacks from Russia-linked and Iran-linked groups

Security Affairs

JANUARY 26, 2023

National Cyber Security Centre (NCSC) warns of a surge in the number of attacks from Russian and Iranian nation-state actors. National Cyber Security Centre (NCSC) is warning of targeted phishing attacks conducted by threat actors based in Russia and Iran. The are increasingly targeting organizations and individuals.

Phishing

Phishing Media Hacking Education

FBI: Compromised US academic credentials available on various cybercrime forums

Security Affairs

MAY 27, 2022

The FBI warns organizations in the higher education sector of credentials sold on cybercrime forums that can allow threat actors to access their networks. Crooks obtain the information by conducting spear-phishing and ransomware attacks, or other means. ” reads the alert published by the FBI. To nominate, please visit:?.

Cybercrime

Cybercrime Education Accountability Phishing

Phishers migrate to Telegram

Security Affairs

APRIL 6, 2023

The experts pointed out that crooks engaged in phishing activities have started to rely on the popular instant messaging platform more in recent months. On Telegram is possible to find channels that offer: Free phishing kits that can be used to target users of a large number of global and local brands. ” Phishing-as-a-Service.

Phishing

Phishing Scams Social Engineering Banking

EvilExtractor, a new All-in-One info stealer appeared on the Dark Web

Security Affairs

APRIL 24, 2023

The tool was developed by a company named Kodex, which claims that the tool was developed for an educational purpose. FortiGuard Labs observed this malware in a phishing email campaign on 30 March, which we traced back to the samples included in this blog.” The malware environment checking and Anti-VM functions.

Cybercrime

Cybercrime Malware Education Phishing

Google TAG warns of Russia-linked APT groups targeting Ukraine

Security Affairs

APRIL 20, 2023

The researchers from Google TAG are warning of Russia-linked threat actors targeting Ukraine with phishing campaigns. Russia-linked threat actors launched large-volume phishing campaigns against hundreds of users in Ukraine to gather intelligence and aimed at spreading disinformation, states Google’s Threat Analysis Group (TAG).

Phishing

Phishing Education Accountability Telecommunications

Remcos RAT campaign targets US accounting and tax return preparation firms

Security Affairs

APRIL 16, 2023

The phishing attacks began in February 2023, the IT giant reported. In 2021, CISA added Remcos to the list of top malware strains due to its use in mass phishing attacks using COVID-19 pandemic themes targeting businesses and individuals.

Accountability

Accountability Phishing Financial Services Surveillance

Microsoft seized 41 domains used by Iran-linked Bohrium APT

Security Affairs

JUNE 6, 2022

Microsoft’s Digital Crimes Unit (DCU) announced the seizure of domains used by Iran-linked APT Bohrium in spear-phishing campaigns. Microsoft’s Digital Crimes Unit (DCU) announced to have taken legal action to disrupt a spear-phishing operation linked to Iran-linked APT Bohrium. Middle East, and India. Pierluigi Paganini.

Phishing

Phishing Manufacturing Education Cybercrime

Analyzing attacks conducted by North Korea-linked ARCHIPELAGO APT group

Security Affairs

APRIL 6, 2023

The attack chain associated with ARCHIPELAGO starts with phishing emails that embed malicious links. The messages pose as sent by a representative of a media outlet or think tank and ask North Korea experts to participate in a media interview or request for information (RFI).

Phishing

Phishing Media Passwords Malware

CISA adds Zimbra bug exploited in attacks against NATO countries to its Known Exploited Vulnerabilities catalog

Security Affairs

APRIL 4, 2023

The attacker can also use the compromised accounts to carry out lateral phishing attacks and further infiltrate the target organizations TA473 targeted US elected officials and staffers since at least February 2023. The threat actors created bespoke JavaScript payloads designed for each government targets’ webmail portal.

Phishing

Phishing Spyware Government Passwords

GUEST ESSAY: Preparing for the dire cybersecurity consequences of Russia’s invasion of Ukraine

The Last Watchdog

APRIL 13, 2022

Educate your employees on threats and risks such as phishing and malware. Enforce strong passwords and implement multi-factor authentication (MFA) — by educating users about using a unique password for each account and enforcing higher security for privileged accounts (administrators, root).

Cybersecurity

Cybersecurity Cybercrime Education Government

Russia-linked APT28 uses fake Windows Update instructions to target Ukraine govt bodies

Security Affairs

APRIL 30, 2023

CERT-UA warns of a spear-phishing campaign conducted by APT28 group targeting Ukrainian government bodies with fake ‘Windows Update’ guides. Most of the APT28s’ campaigns leveraged spear-phishing and malware-based attacks.

System Administration

System Administration Government Phishing Malware

GUEST ESSAY: Sure steps to achieve a robust employee cybersecurity awareness training regimen

The Last Watchdog

OCTOBER 24, 2022

One of the most important ways to protect against data breaches is to increase employee security awareness. Employees are the first line of defense against cybercrime and should understand how to recognize phishing emails and what to do if they suspect them. With proper training, employees can prevent these attacks before they happen.

Passwords

Passwords Security Awareness Data breaches Cybersecurity

Atomic macOS Stealer is advertised on Telegram for $1,000 per month

Security Affairs

APRIL 29, 2023

. “Malware such as the Atomic macOS Stealer could be installed by exploiting vulnerabilities or hosting on phishing websites. Threat Actors can use the stolen data for espionage or financial gain. While not commonplace, macOS malwares can have devastating impacts on victims.”

Advertising

Advertising Passwords Malware Password Management

Lazarus APT group employed Linux Malware in recent attacks and was linked to 3CX supply chain attack

Security Affairs

APRIL 20, 2023

ESET researchers detailed the full attack chain that commences with spear-phishing or direct messages on LinkedIn delivering a ZIP file containing a fake HSBC job. The threat actors were observed using social engineering techniques to compromise its targets, with fake job offers as the lure. “Interestingly, the file extension is not .pdf.

Malware

Malware Social Engineering Education Media

Multinational ICICI Bank leaks passports and credit card numbers

Security Affairs

APRIL 20, 2023

Employees, businesses, and individuals whose data were exposed could be at risk of spear phishing campaigns,” added researchers. The banking sector is especially vulnerable to phishing attacks, as malicious actors often go after logins to online banking platforms, credit card credentials, and bank account numbers.

Banking

Banking Identity Theft Accountability Phishing

Passwordless sign-in with passkeys is now available for Google accounts

Security Affairs

MAY 3, 2023

And, unlike passwords, passkeys are resistant to online attacks like phishing, making them more secure than things like SMS one-time codes.” Together, this means that passkeys protect you against phishing and any accidental mishandling that passwords are prone to, such as being reused or exposed in a data breach.”

Accountability

Accountability Passwords Password Management Phishing

China-linked APT41 group spotted using open-source red teaming tool GC2

Security Affairs

APRIL 17, 2023

The attack took place in October 2022, threat actors sent phishing emails that contained links to a password-protected file hosted in Drive. The APT41 group, aka Winnti , Axiom, Barium , Blackfly, HOODOO) is a China-linked cyberespionage group that has been active since at least 2007.

Media

Media Accountability Government Malware

Volvo retailer leaks sensitive files

Security Affairs

APRIL 15, 2023

Risk of breached comms Another piece of sensitive information observed was email credentials for the “hola” email address, most likely used for welcome emails. A malicious actor could have abused email credentials to hijack an official communication channel and send phishing emails to customers from a trusted company’s email.

Retail

Retail Manufacturing Passwords Phishing

What the Email Security Landscape Looks Like in 2023

Security Affairs

MAY 12, 2023

Email Threats Are Becoming More Sophisticated There are a number of ways that email can be leveraged to compromise the security of an organization, but the most prominent approach is phishing. In 2022, email phishing attacks made up 24% of all spam emails — up from 11% in 2021. It’s a trend that’s growing. QR code spoofing.

Phishing

Phishing Social Engineering Small Business B2B

Iran-linked Mint Sandstorm APT targeted US critical infrastructure

Security Affairs

APRIL 19, 2023

Microsoft also observed The Iran-linked APT group using another attack chain involving low-volume phishing campaigns and a different custom implant. In the last stage of the attack, the subgroup deploys a custom malware variant, such as Drokbk or Soldier instead of using publicly available tools and simple scripts.

Energy and Utilities

Energy and Utilities Accountability Education Media

Experts warn of an emerging Python-based credential harvester named Legion

Security Affairs

APRIL 17, 2023

Typically, this type of tool would be used to hijack said services and use the infrastructure for mass spamming or opportunistic phishing campaigns.” These include credentials for email providers, cloud service providers (AWS), server management systems, databases and payment systems – such as Stripe and PayPal.

Mobile

Mobile Hacking Malware Accountability

CIO in the Age of AI: A Title Under Threat?

SecureWorld News

NOVEMBER 30, 2023

The topic of AI making the CIO role defunct is covered in this Diginomica blog : "It is hardly surprising that AI has caused the CIO issue to raise its head again, for AI is going to be at least as widespread, and as deeply penetrating into the heart of every business as digitalization," the author writes.

CISO

CISO Artificial Intelligence Phishing Cybersecurity

Security Affairs newsletter Round 414 by Pierluigi Paganini – International edition

Security Affairs

APRIL 9, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, newsletter newsletter) The post Security Affairs newsletter Round 414 by Pierluigi Paganini – International edition appeared first on Security Affairs. billion rubles.

Computers and Electronics

Computers and Electronics Backups Cybercrime Marketing

Microsoft aims at stopping cybercriminals from using cracked copies of Cobalt Strike

Security Affairs

APRIL 7, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Phishing) The post Microsoft aims at stopping cybercriminals from using cracked copies of Cobalt Strike appeared first on Security Affairs.

Penetration Testing

Penetration Testing Ransomware Malware Hacking

North Korea-linked ScarCruft APT uses large LNK files in infection chains

Security Affairs

MAY 2, 2023

The end goal of the nation-state actors is to deploy the ROKRAT on the victims’ systems by using spear-phishing emails. Most of the lures used as part of the recent attacks are focused on South Korean foreign and domestic affairs, all of them are in Korean, suggesting the targets are Korean-speaking individuals.

Malware

Malware Education Media Phishing

Ways to Develop a Cybersecurity Training Program for Employees

Security Affairs

APRIL 15, 2022

While you may disagree, data breach studies show that employees and negligence are the most typical causes of security breaches, yet these prevalent issues are least discussed. While there are numerous approaches to promoting a more cyber secure workplace, here are the most common and effective ways: Trick Employees via a Phishing Campaign.

Cybersecurity

Cybersecurity Data privacy Data breaches Phishing

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

Security Affairs

FEBRUARY 28, 2024

“These operations have targeted various industries, including Aerospace & Defense, Education, Energy & Utilities, Governments, Hospitality, Manufacturing, Oil & Gas, Retail, Technology, and Transportation. . ” reads the joint report. ” reads the joint report. ” continues the report.

Energy and Utilities

Energy and Utilities Government Firewall Malware

University admission platform Leverage EDU exposed student passports

Security Affairs

MAY 16, 2023

As no authentication was required, anybody could access all of the student’s personal information needed to apply to universities. It claims to have a network of over 650 educational institutions worldwide and 80 million users over the last year. Leverage EDU works as a one-stop admission platform for students seeking to study abroad.

Identity Theft

Identity Theft Education Banking Risk

Lancefly APT uses powerful Merdoor backdoor in attacks on Asian orgs

Security Affairs

MAY 15, 2023

The highly-targeted attacks aim at organizations in government, aviation, education, and telecom sectors. The attack chain employed in 2020 started with a phishing email with a lure based on the 37th ASEAN Summit. The intelligence-gathering campaign started in mid-2022 and is likely still ongoing.

Encryption

Encryption DNS Phishing Malware

US and UK agencies warn of Russia-linked APT28 exploiting Cisco router flaws

Security Affairs

APRIL 19, 2023

Most of the APT28s’ campaigns leveraged spear-phishing and malware-based attacks. The group operates out of military unity 26165 of the Russian General Staff Main Intelligence Directorate (GRU) 85th Main Special Service Center (GTsSS).

Malware

Malware Firmware Government Education

Security Affairs newsletter Round 416 by Pierluigi Paganini – International edition

Security Affairs

APRIL 23, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, newsletter ) The post Security Affairs newsletter Round 416 by Pierluigi Paganini – International edition appeared first on Security Affairs.

Spyware

Spyware Ransomware Malware Data breaches

Cyber Security Roundup for May 2021

Security Boulevard

MAY 3, 2021

roundup of UK focused Cyber and Information Security News, Blog Posts, Reports and general Threat Intelligence from the previous calendar month, April 2021. The UK Security Service MI5 said 10,000 staff from every UK government department and from important UK industries have been lured by fake LinkedIn profiles.

Ransomware

Ransomware Passwords Scams Government

NIS2 Framework: Your Key To Achieving Cybersecurity Excellence

Centraleyes

JANUARY 21, 2024

As a global trailblazer in information security and data protection regulation, the EU continues to lead the way in comprehensive cybersecurity standards. The transition to remote work during the pandemic has also exposed new vulnerabilities, increasing susceptibility to phishing attacks.

Cybersecurity

Cybersecurity Energy and Utilities Cyber threats Risk

On Fire Drills and Phishing Tests

Google Security

MAY 22, 2024

In this blog, we will analyze the modern practice of Phishing “Tests” as a cybersecurity control as it relates to industry-standard fire protection practices. Usually, further education is required for employees who fail the exercise. FedRAMP) phishing tests require bypassing existing anti-phishing defenses.

Phishing

Phishing Social Engineering Education Engineering

Cyber Security Roundup for April 2021

Security Boulevard

MARCH 31, 2021

roundup of UK focused Cyber and Information Security News, Blog Posts, Reports and general Threat Intelligence from the previous calendar month, March 2021. conduct employee phishing tests. conduct employee phishing tests. Also, see the blog post - The Ransomware Group Tactics which Maximise their Profitability.

Energy and Utilities

Energy and Utilities Ransomware Banking Hacking

How Hackers Access Direct Deposit Paycheck — And What to Do About It

Security Affairs

MAY 24, 2019

Hackers Do a Payroll Diversion Through Phishing. A direct deposit paycheck hack involves getting the necessary details from the victim through a phishing scheme. This method hackers use likely won’t come as a surprise when you consider a few recent statistics about phishing. Plus, in 83.9%

Phishing

Phishing Accountability Banking Social Engineering

University, Professional Certification or Direct Experience?

Security Affairs

SEPTEMBER 8, 2019

but that recursive question raised a more general question: what are the differences between cybersecurity educational models? The education process is based upon the information to be shared, by meaning that information is the “starting brick” of education. Photo by Sharon McCutcheon on Unsplash.

Computers and Electronics

Computers and Electronics Penetration Testing Education Cybersecurity

Intro to phishing: simulating attacks to build resiliency

Security Affairs

APRIL 21, 2023

Phishing attacks are a major threat to organizations, they remain a perennial choice of cybercriminals when it comes to hacking their victims. The infographic below outlines the most common types of phishing attacks used against individuals or businesses.

Phishing

Phishing Social Engineering Security Awareness Passwords

Cyber CEO: A Look Back at Cybersecurity in 2021

Herjavec Group

DECEMBER 15, 2021

This forced security leaders and enterprise executives to assess their information security operations and overall cybersecurity posture to ensure their organizations were ready to face the challenges ahead. To achieve this our industry needs to: Start educating individuals on cybersecurity early.

Cybersecurity

Cybersecurity Digital transformation Ransomware Cyber Risk

The cyber skills gap & the diversity debate

Thales Cloud Protection & Licensing

JUNE 25, 2019

Broadly speaking, there has been an increase in the amount of overall investment in the recruitment and retention of information security talent. As organisations work to improve their ability to manage information risk, the importance of having a Chief Information Security Officer (CISO) is also being recognised.

Technology

Technology Small Business Cybersecurity InfoSec

Cyber CEO: 5 Outdated but Common Cybersecurity Practices You Should Avoid

Herjavec Group

SEPTEMBER 23, 2021

But I would add that it’s not just cybersecurity, but up-to-date cybersecurity – a security strategy that can truly prepare and defend your enterprise against the modern threat landscape. The bygone ways of approaching information security simply won’t cut it today. Keeping all device software updated.

Cybersecurity

Cybersecurity Penetration Testing Digital transformation Risk

The Essential Role of Virtual Compliance Officers in Modern Business

Centraleyes

MAY 13, 2024

For example, the rise of sophisticated phishing campaigns, ransomware attacks, and zero-day vulnerabilities requires cybersecurity experts to stay abreast of the latest threats. Regarding education and certification, certified compliance officers generally have a background in law, finance, or a related field.

Cyber threats

Cyber threats Cybersecurity Risk Technology

How MFA and Cyber Liability Insurance Effectively Manage Risk in Higher Education

Microsoft disrupts SEABORGIUM ’s ongoing phishing operations

Trending Sources

UK NCSC warns of spear-phishing attacks from Russia-linked and Iran-linked groups

FBI: Compromised US academic credentials available on various cybercrime forums

Phishers migrate to Telegram

EvilExtractor, a new All-in-One info stealer appeared on the Dark Web

Google TAG warns of Russia-linked APT groups targeting Ukraine

Remcos RAT campaign targets US accounting and tax return preparation firms

Microsoft seized 41 domains used by Iran-linked Bohrium APT

Analyzing attacks conducted by North Korea-linked ARCHIPELAGO APT group

CISA adds Zimbra bug exploited in attacks against NATO countries to its Known Exploited Vulnerabilities catalog

GUEST ESSAY: Preparing for the dire cybersecurity consequences of Russia’s invasion of Ukraine

Russia-linked APT28 uses fake Windows Update instructions to target Ukraine govt bodies

GUEST ESSAY: Sure steps to achieve a robust employee cybersecurity awareness training regimen

Atomic macOS Stealer is advertised on Telegram for $1,000 per month

Lazarus APT group employed Linux Malware in recent attacks and was linked to 3CX supply chain attack

Multinational ICICI Bank leaks passports and credit card numbers

Passwordless sign-in with passkeys is now available for Google accounts

China-linked APT41 group spotted using open-source red teaming tool GC2

Volvo retailer leaks sensitive files

What the Email Security Landscape Looks Like in 2023

Iran-linked Mint Sandstorm APT targeted US critical infrastructure

Experts warn of an emerging Python-based credential harvester named Legion

CIO in the Age of AI: A Title Under Threat?

Security Affairs newsletter Round 414 by Pierluigi Paganini – International edition

Microsoft aims at stopping cybercriminals from using cracked copies of Cobalt Strike

North Korea-linked ScarCruft APT uses large LNK files in infection chains

Ways to Develop a Cybersecurity Training Program for Employees

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

University admission platform Leverage EDU exposed student passports

Lancefly APT uses powerful Merdoor backdoor in attacks on Asian orgs

US and UK agencies warn of Russia-linked APT28 exploiting Cisco router flaws

Security Affairs newsletter Round 416 by Pierluigi Paganini – International edition

Cyber Security Roundup for May 2021

NIS2 Framework: Your Key To Achieving Cybersecurity Excellence

On Fire Drills and Phishing Tests

Cyber Security Roundup for April 2021

How Hackers Access Direct Deposit Paycheck — And What to Do About It

University, Professional Certification or Direct Experience?

Intro to phishing: simulating attacks to build resiliency

Cyber CEO: A Look Back at Cybersecurity in 2021

The cyber skills gap & the diversity debate

Cyber CEO: 5 Outdated but Common Cybersecurity Practices You Should Avoid

The Essential Role of Virtual Compliance Officers in Modern Business

Stay Connected