According to Kaspersky Lab’s “Spam and phishing in Q1 2017” report, the world’s largest spam botnet, Necurs, demonstrated a relative decline in its fraudulent mailshot traffic. In December 2016, Kaspersky Lab’s spam traps detected over 35 million fraudulent mailshots but in March 2017 that number fell to almost 7,000. The Kaspersky Lab spam report also identified the following trends in the first quarter of 2017: Global share of spam amounted to almost 56 per cent of Q1 email traffic on average, compared to 59.9 per cent in Q4 2016 Total amount of malware attachments in email traffic decreased by 2.4 times, compared to…
ISBuzz Team
Rapid7 has released its newest disclosure highlighting a key recording vulnerability within voice, messaging and collaboration service provider Fuze. The full disclosure can be found here: https://community.rapid7.com/community/infosec/blog/2017/05/02/r7-2017-03-improper-access-control-of-fuze-meeting-recordings-fixed According to the report, meetings recorded through Fuze’s platform did not have sufficient controls to ensure that the content was kept private. Recordings could be accessed by URLs such as “https://browser.fuzemeeting.com/?replayId=7DIGITNUM”, where “7DIGITNUM” is a seven digit number that increments over time. Since this identifier did not provide sufficient keyspace to resist bruteforcing, specific meetings could be downloaded by simply guessing a replay ID reasonably close to the target, and then iterating through all likely seven…
IBM has is warning customers to destroy Storwize USB sticks that were shipped with North Korea-linked malware used to spy on users. Michael Patterson, CEO of Plixer International is commented below. Michael Patterson, CEO at Plixer International: “Over 20% of breaches were related to espionage in 2016 and this is one way of embedding it through third party manufacturers. The right intellectual property (IP) can provide a significant competitive edge as knowledge is power. That is why all equipment coming into a corporate environment should be vetted before being connected to a network. If embedded malware is missed, then outbound connections…
It seems like repealing the broadband privacy rules wasn’t enough to quench the raging heart of Ajit Pai.Mr. Pai has now redirected his arrows towards the long-debated net neutrality rules. What is Net Neutrality? Basically, net neutrality promotes the concept of an open Internet. The current rules classify ISPs, broadband and Telcos as a common carrier service which are consequently subject to government supervision. With the telecom companies under strict government oversight, the Internet users are free to access any content and enjoy constant Internet experience on every network carrier. Constant Internet experience means that no application, web service or…
Viral phishing campaign targeting Google users and enterprise Google deployments Introduction An aggressive phishing campaign went viral yesterday that impacted multiple Google Mail users, which includes enterprise Google deployments. The campaign involved unsuspecting users receiving an email with a Google Doc link from one of their known contacts. If the user clicks on the link and further grants access, their contacts would be leveraged to send the same phishing e-mail with a link from the impacted user account. The attack involved squatted domains that were recently registered and hosting the malicious web app. Google permitted this app to request access…
ADVICE FOR BUSINESSES “Last year, our security team leaked a fake profile onto the Dark Web to show just how quickly phished credentials can spread. Within a month, the fake employee’s credentials had been viewed over 1,400 times and there were multiple successful login attempts into the phished account. The number of large-scale data breaches and the fact that users regularly re-use passwords is a real issue for businesses today. Against this background, static passwords simply cannot provide effective corporate protection. Businesses are now turning to a range of dynamic authentication methods that can analyse baseline user activity to detect…
New Data Science, Human Security Expertise and Analytics Technologies Protect Businesses Against Dominant Source of Breaches Affecting Cloud Applications London, UK – Alert Logic, the leading provider of Security-as-a-Service solutions for the cloud, today announced key enhancements to the Alert Logic Cloud Defender solution that enable businesses to better defend against web application attacks, the most significant source of breaches for organisations leveraging cloud and hybrid computing infrastructures. Enhanced capabilities to Cloud Defender include supervised machine learning and expanded anomaly detection capabilities that give businesses an unparalleled ability to stop complex, multi-stage web application attacks and further differentiates Alert Logic’s already unique ability to…
Today, cybercriminals launched a highly effective email scam that included a link to a Google Docs document that was in fact a link to a 3rd party app designed to steal information from the recipient. Worse, the email appears to come from someone known to the victim. Based on information from the Agari Trust Network, we saw more than 3,016 organizations compromised that sent 23,838 emails to Agari protected organizations. Based on social media posts and the number of Gmail/G-Suite users, the number of victims is likely unprecedented. When users click on the Google doc link, the malicious site uses…
Following the news that one million Google Docs users have been hit by a phishing scam, IT security experts from Vectra Networks, MWR InfoSecurity, Wombat Security, Tripwire, Lastline and OwlDetect commented below. Matt Walmsley, EMEA Director at Vectra Networks: “Google’s extremely large customer base makes it highly attractive to cyber criminals, but the same can happen to organisations of any size. No company wants to be at the end of a data breach. But what this case has demonstrated, is that it’s not a case of ‘if’ but ‘when’. “Security is a strategic issue. Businesses that lack transparency and willingness to address security matters…
Following the news that a third-party to major entertainment networks such as Netfliz, Fox, ABC, etc. (a post production studio) was hacked late last year. The hacker is threatening to release episodes of unreleased shows, already releasing some episodes of Orange is the new Black. IT security experts from Prevalent, Inc., Imperva and Varonis commented below. Jeff Hill, Director of Product Management at Prevalent, Inc.: “Vendors are becoming particularly appetizing targets for cyber criminals for a number of reasons. It’s generally appreciated that smaller organizations rarely have the resources and expertise to invest in – and successfully deploy – the advanced security…
