You are here

Home » Cybersecurity

Cybersecurity

Security Awareness – Threat Actors Exploit Microsoft Teams to Deliver Malware

Threat actors have been observed compromising Microsoft Team accounts to access the chat feature and then propagate malware to users in the chat, according to security researchers at Avanan. These attacks start with the threat actor uploading an executable file called “User Centric” to fool the user into executing it on their system. This issue may be exacerbated by the lack of robust security protection in Teams, including the lack of file scanning. Given the widespread use and inherent trust of Teams, users are likely to open files that have been shared.

Digital Anxiety Increasing Among Workforce, according to New Survey

The practice of working from home has been a blessing and a curse for many, but according to a recent survey, working remotely may be increasing digital anxiety among workers. Analysis from cybersecurity firm F-Secure reveals that 67 percent of remote workers reported they increasingly worry about their online security and privacy. This is not totally surprising, given that before working from home most individuals expected someone at their company to ensure their cybersecurity and data privacy.

FBI-USSS: Indicators of Compromise Associated with BlackByte Ransomware

The FBI and the U.S. Secret Service have published a TLP:WHITE Joint Cybersecurity Advisory providing indicators of compromise and other information concerning BlackByte ransomware. The advisory notes that since November 2021, multiple U.S. and foreign organizations have been compromised by BlackByte, including in at least three U.S. critical infrastructure sectors. BlackByte is a Ransomware as a Service (RaaS) group that encrypts files on compromised Windows hosts systems.

CISA, FBI, NSA and International Partners Issue Advisory on Ransomware Trends from 2021

The Cybersecurity and Infrastructure Security Agency (CISA), along with the FBI, National Security Agency (NSA), Australian Cyber Security Centre (ACSC), and the United Kingdom’s National Cyber Security Centre (NCSC-UK), just published a joint Cybersecurity Advisory outlining the growing international threat posed by ransomware over the past year. The advisory, 2021 Trends Show Increased Globalized Threat of Ransomware, summarizes the top ransomware trends observed across all three countries.

FBI PSA: Criminals Increasing SIM Swap Schemes to Steal Millions of Dollars from U.S. Public

The FBI has published a Public Service Announcement (PSA) regarding the increasing practice of Subscriber Identity Module (SIM) swapping by criminals to steal money from fiat and virtual currency accounts. In 2021 alone, the FBI received 1,611 SIM swapping complaints with losses of more than $68 million. According to the FBI, “SIM swapping is a malicious technique where criminal actors target mobile carriers to gain access to victims' bank accounts, virtual currency accounts, and other sensitive information.

Threat Awareness – Qbot Steals Sensitive Data Minutes after the Initial Infection

Qbot/Qakbot remains one of the most widespread malware variants. A new report from researchers at DFIR reveal that Qbot is used to steal sensitive data and execute other malign tasks in a very short time frame. Qbot, which WaterISAC reported on last year, is a highly modular malware used for many nefarious activities such as credential harvesting and dropping ransomware. Qbot usually spreads via phishing emails.

Pages

Subscribe to Cybersecurity