Purchase Order Scams

MailGuard is tracking a recent phishing campaign where actors are mimicking Adobe and Microsoft. The phishing emails are disguised as purchase orders. According to MailGuard, the email is sent from a compromised email account belonging to a representative of a legitimate company, the email is designed to look like an automated alert. While this activity isn't anything new, it is prudent to make users aware of the nuances of each campaign, as it only takes one tricked clicker to compromise an organization. Read more details at MailGuard.

Top Impersonated Brands of Q4-2020

A recent report by Check Point helps inform cybersecurity awareness reminders for top brands likely to be impersonated in phishing campaigns. While vigilance is always recommended, users should be encouraged to scrutinize (not trust) emails appearing to come from top brands. Read more at Check Point.

“Ransomweb” Ransomware

Analysts at website security firm Sucuri describe when data may not all be lost from a website ransomware incident. The post describes the difference between data that has been encrypted and data that has been obfuscated – and how recovery may be possible with one method due to an artifact left behind by the attackers. This post is a great reminder why it's important to engage a reputable ransomware response firm and not try respond or recover alone. Read more about Ransomweb Ransomware at Sucuri.