Collaborate Disseminate
Malicious actors launched credential stuffing attacks that targeted Canada’s GCKey service and Canada Revenue Agency (CRA) accounts. On August 15, the Treasury Board of Canada Secretariat announced that the Government of Canada was in the process of re… Continue reading Credential Stuffing Attacks Targeted GCKey, CRA Accounts
The National Cyber Security Centre (NCSC) revealed it had shut down more than 300,000 URLs that linked to investment scams in a four-month period. In a news bulletin published on August 14, NCSC warned users to be on the lookout for investment scams. M… Continue reading NCSC Shut Down 300K URLs Linked to Investment Scams in 4 Months
A phishing campaign abused both the Google App Engine and the Azure App Service to steal victims’ Microsoft Outlook credentials. Netskope observed that the attack campaign started with a shortened link “https://bitly[.]com/33nMLkZ” distributed by a phi… Continue reading Google App Engine, Azure App Service Abused in Phishing Campaign
Instead of asking employees to input passwords every day, single sign-on (SSO) offers a simplified but secure authentication process. SSO authentication gives a user the option of choosing a single set of credentials to access multiple accounts and services. So, how can organizations best use SSO for their purposes? This authentication scheme works with the […]
The post Questions to Ask When Conducting Single Sign-On Enrollment appeared first on Security Intelligence.
Continue reading Questions to Ask When Conducting Single Sign-On Enrollment
The Emotet botnet earned the title of “most wanted” malware family for the month of July 2020 following a period of inactivity. Check Point revealed that Emotet threat activity had affected 5% of organizations worldwide in July 2020, thereb… Continue reading Emotet Botnet Named ‘Most Wanted Malware’ for July 2020
The Federal Bureau of Investigations (FBI) warned of the security risks that organizations face if they continue to use the Windows 7 operating system despite its end of life (EOL) status. In a private industry notification published on August 3, the F… Continue reading FBI: Continued Use of Windows 7 Poses Security Risks Given EOL Status
A national of the Republic of Moldova pleaded guilty to his role in a digital crime enterprise that caused hundreds of millions of dollars in losses. On July 31, Valerian Chiochiu (aka “Onassis,” “Flagler,” “Socrate,”… Continue reading Moldovan National Pleaded Guilty to Role in Digital Crime Enterprise
A ransomware infection can have a significant financial impact on an organization. American digital security and data backup firm Datto found that ransomware is costing businesses more than $75 billion a year. Part of that financial impact results from downtime costs. Govtech also revealed that businesses lost an average of $8,500 per hour as the […]
The post 6 Ransomware Trends You Should Watch for in 2020 appeared first on Security Intelligence.
Continue reading 6 Ransomware Trends You Should Watch for in 2020
Government officials in Belarus announced they had arrested an individual on charges of having helped to distribute GandCrab ransomware. On July 30, the Ministry of Internal Affairs (MIA) of the Republic of Belarus revealed that it had arrested a 31-ye… Continue reading Belarus Announces Arrest of GandCrab Ransomware Distributor
Security researchers came across a phishing email that used a Google Ad redirect as a part of its efforts to steal victims’ Microsoft credentials. Cofense found that the email originated from the legitimate email address “info@jtpsecurity[…. Continue reading Phishing Email Uses Google Ad Redirect to Steal Microsoft Credentials