Giant Group Suffers Ransomware, Contractors Left Unpaid

BACKGROUND: Giant Group has admitted its computer systems which pay thousands of umbrella company contractors each week have been hacked. The contractors were informed of the compromise on 22nd of September and all affected systems were taken offline. It is suspected it is a ransomware attack since both Giant Umbrella and Giant Accounts portals are […]

Bot-based Services Are Phishing Passwords – Expert Comments

BACKGROUND: Brian Krebs reported today about cybercrime services that help attackers intercept the one-time passwords (OTPs) that many websites require as a second authentication factor in addition to passwords. These bot-based services that make it relatively easy for crooks to phish OTPs from targets.

New Android Malware Steals Millions After Infecting 10M Phones

BACKGROUND: In response to reports that a malware campaign has infected more than 10 million Android devices from over 70 countries and likely stole hundreds of millions from its victims by subscribing to paid services without their knowledge, experts at cybersecurity firms Cerberus Sentinel and RiskLens offer the following comments. 

WatchGuard Threat Lab Reports 91.5% Of Malware Arriving Over Encrypted Connections

Cybersecurity Market report

New research also shows dramatic increases in fileless malware, malware detections per appliance and booming network and ransomware attacks The latest quarterly Internet Security Report from the WatchGuard Threat Lab released today shows an astonishing 91.5% of malware arriving over HTTPS-encrypted connections during Q2 2021. This is a dramatic increase over the previous quarter and means […]

Cybersecurity Awareness Month – Insight From Seasoned Experts

BACKGROUND: October officially marks National Cybersecurity Awareness Month. While an annual reminder for organizations to pay attention to their security posture and the wider cyber landscape, this year in particular has been a constant battle against advisories taking advantage of the unique environment as companies continue to adjust to working in a pandemic.  While potentially […]

Comment: New Mobile Malware, Tanglebot, Discovered

BACKGROUND: It has been reported that security researchers from Proofpoint company Cloudmark have discovered a new piece of mobile malware strain spread via SMS that cybercriminals are using to target users across the US and Canada with Covid-19 lures. The malware has been dubbed TangleBot because of its many levels of obfuscation and how it is able to control […]

Why Women And BAME Groups Most Likely To Be Hacked, Expert Insight

BACKGROUND: Women and people who are BAME (black and minority ethnic) are disproportionately likely to be the victim of cybercrime, and are more likely to financially suffer as a result, finds new research from Malwarebyes. Why? One reason is that the modern technologies designed to identify, verify and therefore protect us all are naturally biased.

Expert Commentary: Millions Of Windows 10 PCs Exposed By Nasty Security Vulnerability

Operation PawnStorm uses Java vulnerability

BACKGROUND: Security researchers have found a flaw in Microsoft’s implementation of the Microsoft Windows Platform Binary Table (WPBT) mechanism, which can be exploited to compromise computers running Windows 8 and Windows 10 operating systems. Microsoft describes WPBT as a fixed firmware Advanced Configuration and Power Interface (ACPI) table that was introduced with Windows 8 to enable OEMs and vendors […]

NSA Issues Advisory on Conti Ransomware

CISA, the FBI, and the NSA have issued a warning to US organisations around increased attacks from the Conti Ransomware. The agencies have also released new actions and advice to help organisations protect against the threat.