Criminals are using resumes to hide malicious payloads in a business climate that has seen hundreds of thousands of individuals searching for jobs. According to new research, the fake CVs disguise banking trojans and data stealers in macros within Microsoft Excel files. Researchers at Check Point Software say that a new campaign of Zloader malware has been part of an overall doubling of resume-based subterfuge in the last two months. A similar campaign involving the TrickBot loader hides within an attachment labelled as a family leave request within the parameters of the Family and Medical Leave Act.
ISBuzz Team
Attackers have devised a new phishing campaign that distributes emails that seem to be generated by Private Branch Exchange (PBX), a legacy technology that integrates with employees’ email clients so they can receive their voicemail recordings, according to Ironscales. In mid-May, Ironscales uncovered what has since evolved into a massive, global phishing trend where attackers use custom subject lines to spoof the voicemail email as if it is coming from a PBX integration. This has threatened nearly 100,000 mailboxes around the world, reaching enterprises across multiple sectors. Unlike many emails, these do not bear an actual malicious payload, which would trigger…
A newly uncovered form of ransomware is going after Windows and Linux systems in what appears to be a targeted campaign, according to ZDNet. Named Tycoon after references in the code, this ransomware has been active since December 2019, and looks to be the work of cyber criminals who are highly selective in their targeting. The malware uses an uncommon deployment technique, which helps it stay hidden on compromised networks. The main targets of Tycoon are organisations in the education and software industries.
60% of people working from home due to COVID-19 believe they are more susceptible to cyber attack as they are online more Amsterdam – UK householders confined to their home and spending more time online fear the threat of data and financial loss due to a cyber attack above concerns about the risks their children face while online, according to a new survey* by Irdeto. As COVID-19 grips the world, the Irdeto Home Cybersecurity Report polled more than 5,000 consumers across five countries (the UK, the USA, France, Germany and China) in a bid to understand how perceptions, priorities and general…
Organisations advocating for racial justice and civil liberties, including Black Lives Matter (BLM), the American Civil Liberties Union (ACLU) and the National Association for the Advancement of Colored People (NAACP), are coming under frequent and sustained cyber-attack by undisclosed groups, according to statistics gathered by network protection service Cloudflare. As protests prompted by the murder of George Floyd, an unarmed black man, at the hands of Minneapolis police officers on 25 May 2020 spread around the US and the world, Cloudflare said it had seen increasing levels of cyber attacks against organisations fighting racism – numbering in the tens of billions – compared with the corresponding week in April.
Following the news around The Open Rights group reporting the NHS Test and Trace app to the ICO for the lack of safeguards around the data it collects, CTO at UK-based data privacy firm offers the following comment.
As reported by the BBC, cyber-attacks against anti-racism organisations shot up in the wake of the death of George Floyd, a leading provider of protection services says. Cloudflare, which blocks attacks designed to knock websites offline, says advocacy groups in general saw attacks increase 1,120-fold. Mr Floyd’s death, in police custody, has sparked nationwide civil unrest in the US. Government and military websites also saw a notable increase in attacks. DDoS attacks – short for Distributed Denial of Service – are a relatively simple cyber-attack tool, in which the attacker tries to flood a website or other online service with so…
Cyber extortionists have stolen sensitive information from a company that supports the US Minuteman III nuclear deterrent, according to Sky News. After gaining access to Westech International’s computer network, the criminals encrypted the company’s machines and began to leak documents online to pressure the company to pay extortion. It is unclear if the documents stolen by the criminals include military classified information, but already-leaked files suggest the hackers had access to extremely sensitive data, including payroll and emails. The company is involved with the nuclear deterrent as a sub-contractor for Northrup Grumman, providing engineering and maintenance support for the Minuteman III intercontinental…
Avast warns of fleeceware apps on the Apple App Store and shares tips on how to avoid falling victim to fleeceware scams Avast (LSE:AVST), a global leader in digital security and privacy products, has discovered and reported three apps to Apple’s App Store, which overcharge users, do not provide the services they promote and appear to be “fleeceware”. The apps are available on the Apple App Store as Beetle VPN, Buckler VPN, and Hat VPN Pro, and according to data from Sensor Tower, a mobile apps marketing intelligence and insights company, the apps have been downloaded over 420K, 271K, and…
Following the news that cyber criminals have stolen sensitive data from and encrypted the devices of a company which supports the US Minuteman III nuclear deterrent, cybersecurity experts provide an insight below.