Malware loaders are a significant threat in the cybersecurity landscape, with nearly 40% of all malware observed in critical security incidents involving these specialized tools. Among the most prevalent loaders are “SocGholish,” “GootLoader,” and “Raspberry Robin,” which have been frequently used by cybercriminals to deliver a range of secondary malware, including ransomware. This was revealed in ReliaQuest’s recent report, which examines the most common malware loaders today. Loaders are specialized forms of malware designed to gain an initial foothold in a system before downloading and executing additional, often more destructive, malware. Their ability to deliver secondary payloads makes them a…
ISB Staff Reporter
In 2024, email breaches continue to pose a significant threat to personal and corporate security, with millions of email addresses exposed in data hacks. An email breach occurs when malicious actors infiltrate a company’s system, stealing customer data, including email addresses. This stolen information can be used for phishing attacks, identity fraud, and other malicious activities. The Red Flags If you’ve noticed trouble logging into your email or unusual activity within your account, your email address may have been compromised. While services like Norton and Have I Been Pwned allow users to check if their email has been part of…
The US Department of Commerce’s National Institute of Standards and Technology (NIST) has officially released its first set of finalized encryption standards designed to withstand attacks from quantum computers. These post-quantum encryption standards are expected to secure a wide array of electronic information, from confidential emails to vital e-commerce transactions. NIST has urged computer system administrators to begin transitioning to these new standards without delay, emphasizing the importance of early adoption to safeguard digital infrastructure from potential quantum threats. A Leap Forward in Quantum-Resistant Security Developed in response to the rapid development of quantum computing technology, which experts predict could…
Twitter, recently rebranded as “X,” is under increased scrutiny after nine additional complaints were filed across Europe, alleging the company unlawfully used the personal data of over 60 million EU/EEA users to train its AI technologies without their consent. This comes shortly after the Irish Data Protection Commission (DPC) initiated legal proceedings to halt the illegal data processing but has been criticized for not fully enforcing the GDPR. The complaints, filed by the non-profit privacy advocacy group noyb, span Austria, Belgium, France, Greece, Ireland, Italy, the Netherlands, Spain, and Poland. The group argues that Twitter’s actions mirror Meta’s recent failed…
A staggering 94% of companies have fallen victim to phishing attacks over the last year, while 91% experienced data loss or exfiltration incidents. It’s not surprising, then, that 95% of cybersecurity leaders are increasingly stressed about email security, particularly phishing attacks originating from compromised supply chain accounts, internal account takeovers due to credential harvesting, and wire fraud. These were two findings of the 2024 Email Security Risk Report from Egress, a KnowBe4 company. The report, based on an independent survey of 500 cybersecurity professionals, paints a grim picture of the current state of email security, revealing that traditional approaches to…
Cybercriminals have significantly increased their use of data-exfiltration tools, which are highly effective for stealing sensitive data and evading detection. This was revealed in a recent report by ReliaQuest, which highlights the evolving strategies of threat actors in the digital landscape. The report, covering incidents from September 2023 to July 2024, examined the tools that have become increasingly popular among malicious actors. Weapon of Choice Rclone, an open-source command-line utility, has emerged as a favored tool for data exfiltration, appearing in 57% of incidents investigated by ReliaQuest. Initially designed for legitimate use in synchronizing files across various cloud storage platforms,…
Vectra AI, a provider of AI-driven Extended Detection and Response (XDR) solutions, has expanded its Vectra AI Platform, enhancing its ability to provide Security Operations Center (SOC) teams with a real-time view of their active posture. This expansion leverages the company’s patented Attack Signal Intelligence to offer a comprehensive view of potential vulnerabilities across networks, identities, clouds, and GenAI tools. In the evolving threat landscape, SOC teams must stay ahead of attackers by understanding where their organization is exposed to infiltration and lateral movement. Vectra’s platform empowers teams to proactively identify and address these vulnerabilities, offering critical insights that static…
The healthcare industry is poised for a cybersecurity transformation, with passwordless authentication at the forefront. Utilizing passkeys and biometrics improves user experience and significantly strengthens data security against contemporary threats such as credential stuffing and MFA fatigue. So says Phil Englert, VP of Medical Device Security at HEALTH-ISAC, adding that the urgency to access medical data for patient care makes healthcare institutions particularly vulnerable to ransomware attacks that deny access to critical data or data breaches leaking sensitive personal information, including medical histories, Social Security numbers, and insurance details. “Cybercriminals also target medical devices, Internet of Things (IoT) technologies, and…
A global stop-payment mechanism developed by INTERPOL has enabled Singapore authorities to recover over USD 40 million from a business email compromise (BEC) scam, marking their largest-ever recovery of fraudulently obtained funds. On 23 July 2024, a commodity firm based in Singapore reported falling victim to a BEC scam. The firm received an email on 15 July from what appeared to be a supplier, requesting that a pending payment be sent to a new bank account in Timor Leste. The email address slightly differed from the supplier’s official email, a detail the firm overlooked. Consequently, a few days later, the…
French cybercrime police are investigating a ransomware attack on the Grand Palais Exhibition Hall in Paris, a venue for Olympic events such as fencing and Taekwondo. According to Reuters, the central computer system of the Grand Palais was targeted, but the attack did not disrupt Olympic events. The system also handles data for 40 mainly small affiliated museums. Attackers demanded a ransom within 48 hours, threatening to leak financial data if unpaid. The “Réunion des musées nationaux – Grand Palais” has enlisted the national cybersecurity agency ANSSI to investigate. No data extraction has been detected, and operations at Grand Palais…