Collaborate Disseminate
Malicious actors used a Business Email Compromise (BEC) scam to prey upon a Philadelphia non-profit food bank. According to The Philadelphia Inquirer, the scam occurred back in July when the hunger relief organization Philabundance was nearing the comp… Continue reading BEC Scammers Struck Philadelphia Non-Profit Food Bank
The National Cyber Security Centre (NCSC) released its annual review of 2020. If you are unfamiliar with the NCSC, part of their mission is that they are “dedicated to making the United Kingdom the safest place in the world to live and work online.” … Continue reading Thoughts from the NCSC 2020 Annual Review
Organisations are still underestimating the risks created by insufficiently secured operational technology (OT). One current example comes from Germany. According to a report by heise.de, external security testers consider it “likely” that a successful… Continue reading Key OT Cybersecurity Challenges: Availability, Integrity and Confidentiality
The Egregor ransomware gang struck TransLink, the authority responsible for managing Metro Vancouver’s transportation network. On December 1, TransLink announced that certain issues were affecting its phones, online services and payment systems. The au… Continue reading Egregor Ransomware Strikes Metro Vancouver’s TransLink
Embraer, a Brazilian manufacturer of aircraft, has disclosed that hackers managed to breach its computer systems, and steal data. Although Embraer may not be a household name, it is the world’s third-largest producer of civil aircraft (after Boeing and… Continue reading Aircraft maker Embraer admits hackers breached its systems and stole data
A global phishing campaign targeted organizations associated with the Coronavirus 2019 (COVID-19) cold chain. Discovered by IBM Security X-Force, the operation began in September 2020 by targeting multiple entities that support the Cold Chain Equipment… Continue reading Global Phishing Campaign Sets Sights on COVID-19 Cold Chain
U.S. law enforcement learned that email attackers are using auto-forwarding rules to help them to perpetrate Business Email Compromise (BEC) scams. In a Private Industry Notification published on November 25, the FBI revealed that some BEC scammers are… Continue reading Email Attackers Using Auto-Forwarding Rules to Perpetrate BEC Scams
A phishing campaign used what appeared to be back-to-work notifications in order to compromise recipients’ corporate email accounts. Near the end of November, Abnormal Security detected one of the campaign’s attack emails. That message masqueraded as a… Continue reading Back-to-Work Phishing Campaign Targeting Corporate Email Accounts
Malicious actors are targeting Apple. Although Apple introduced a notarization mechanism to scan and prevent malicious code from running on Apple devices, attackers have found ways to circumvent this process. Such Apple-notarized malware constitutes a … Continue reading Apple-Notarized Malware: What It Is and How It Affects Mac Users
The notion that the time we are living in now is “unprecedented” is a common one, but historians and philosophers alike will happily note that things are rarely so different that we can’t learn a lot from the past. Despite IT often being dominated by f… Continue reading From Alan Turing to Future Artificial Intelligences – Reading Security Signals