HP Wolf Security Report reveals new techniques and phishing lures used to deceive employees.
TECHNOLOGY POWERING BUSINESS
Cybersecurity
Sophos: Automotive Supplier Falls Victim to Cyber Extortionists Three Times
Groups LockBit, Hive and BlackCat compromised the network within about two weeks. Apparently, they each use the same hacked RDP connection. Only after the third attack the company approached Sophos for help.
Focus of Cyberattacks On The Healthcare Sector
Attractive target for ransomware groups as attacks can be life-threatening and ransom demands are more likely to be paid.
Cisco Reports Hacker Attack
Unknown persons penetrate the company's network. Beforehand, they hacked the Google account of a Cisco employee and obtained VPN access data. The ransomware group Yanluowang claims responsibility for the attack.
Mobile Security Index: Cyber Risk Increases Due to Hybrid, Mobile Working
Three quarters of respondents believe recent changes in working practices have had a negative impact on their company's cyber security.
No More Ransom Prevents Billions in Ransom Payments
More than 1.5 million victims decrypt their data for free thanks to Europol initiative. In the meantime, No More Ransom offers decryption tools for 165 ransomware variants.
Avoid Paying Digital Ransom in Case of Ransomware Attacks
"It's not worth paying", says Reiner Dresbach of Cybereason in his commentary on ransom demands after ransomware attacks.
Ransomware Gang BlackCat Uses Pentesting Tool Brute Ratel as Attack Tool
Series of attacks shows how cybercriminals are infecting computers worldwide via unpatched firewalls and VPN services.
Almost Every Company in the Financial Sector Affected by Cyber Attacks
Current study by YesWeHack shows status quo in terms of cyberattacks on banks, insurance companies and financial service providers in the DACH region.
Abuse of Google Ad System
Visitors to the sites are being redirected to fraudulent websites.
How High Is My Cyber Risk?
Due to complexity, business decision-makers are unable to assess their digital attack surfaces.
Volume of Security Alerts Fatigues Businesses
Seventy percent of enterprises struggle to keep up with the volume of security alerts.
Kanton Zürich stärkt Cybersicherheit
Das Amt für Informatik baut ein kantonales Zentrum für Cybersicherheit auf, das die Verwaltung und weitere Zielgruppen gegen Cyberangriffe schützen soll.
Proofpoint Launches Free Training to Protect Yourself on Social Networks
Its awareness kit on the dangers lurking on internet platforms includes articles, videos, a communication plan and calendar, indications and tips.
All on Board: How Employees Become an Active Part of IT Security
Security awareness trainings sensitise the entire team to phishing, ransomware and secure remote working.
Phishing Attack On Facebook Messenger Steals Millions Of Credentials
Group uses technique to bypass blocking of their URLS. Huge growth in phishing attacks compared to 2022.
Huge Data Leak: Hackers Sell Data Of One Billion Users On The Dark Web
Database also contains police files and medical records. The source is allegedly the Shanghai Police Department. Sellers are demanding 10 bitcoin for a presumed 23 TByte of data.
High Burnout Rate Among Cybersecurity Experts
Growing threat of attacks combined with skills shortages frustrates security teams.
Domains Used by “Hack-for-Hire” Groups Blocked
Google's Threat Analysis Group (TAG) blocks malicious domains and websites that hack-for-hire groups use to attack high-risk targets.
Bumblebee: Cyber Extortionists Rely On New Malware To Spread Ransomware
Symantec associates the Bumblebee loader with the Conti, Mountlocker, and Quantum ransomware groups. Bumblebee is currently spreading via phishing emails with malicious file attachments.
Illegale Angriffe: 70 Prozent der Swissmem Mitgliedfirmen betroffen
Präventionsmassnahmen haben dazu geführt, dass 82 Prozent der als sehr schwerwiegend eingestuften Angriffe keine Folgen hatten.
Hackers Use Zero-Day Vulnerability in Mitel Products for Ransomware Attacks
Researchers from CrowdStrike uncover an attack on the VoIP appliance MiVoice. In the process, they find a zero-day vulnerability. Mitel now protects its customers from attacks with a script.
New Phishing Tactic Imitates International Domain Names
Homograph phishing attacks use similar characters to impersonate another website.
Update With New Features: Android Trojan Brata Reaches Europe
The perpetrators are currently targeting victims in the UK, Italy, and Spain. Based on their modus operandi, security researchers are now categorizing the scammers as an Advanced Persistent Threat.
Linz: Strategische Allianz für Cybersecurity
Der IT-Dienstleister Kontron und der Wiener Certitude Consulting bündeln ihr IT-Security Know-how.
Attack Simulations For Cyber Security Teams
Train, measure and improve team responsiveness to threats through ultra-realistic simulations.
New Android Malware Bypasses Multifactor Authentication
MaliBot is targeted at financial fraud. However, the malware needs access to the Android user interface to do so. Via overlay, MaliBot then also bypasses a login in several steps.
Hessian Energy Supplier Reports “Criminal Hacker Attack”
The target is a subsidiary of Darmstadt-based energy supplier Entega. The hackers bring the company's website and e-mail system to a standstill. The Mainz municipal utility is also affected.
Cybercriminals Take Advantage Of Monkeypox
Phishing campaign specifically uses employee fears and insecurities to launch attacks.
Digital Pandemic: Hackers Are Increasingly Targeting Small And Medium-Sized Businesses
Cybercriminals are buying credentials on password marketplaces on the dark web, warns Sandra Rios, Head of LastPass Business.