This is either because they don’t feel the need for it, don’t know how to do it, or are not aware that their files are being backed up in the background. Even the anti-phishing measures adopted by larger enterprises are barely able to fight this giant malware, which came up with three new versions in the past week alone.Ī survey conducted by Avast and AVG on its users between February 20-March 25 revealed that half of the Indians do not keep back up files of their data. It has attacked systems in Russia, Japan, South Korea, North Korea, and Brazil and is one of the biggest ransomware networks in the world today. Ever since its entry in 2016, the operators of Dharma have made over $24 million from its victims. ![]() The creators of Dharma (Crysis) are selling their source code for $2000, which shall enable attackers to create their versions of the ransomware, thus intensifying the threat factor. Although the company remained unresponsive both times it was contacted, they did fix the issue on 19th December 2019.īut this breach exposed 70GB of structural, reference, descriptive, and administrative metadata and personally identifiable information like names, emails, phone numbers, business details (for corporate customers), and account usernames.Ĭustomers and employees of SOS Online Backup should anticipate an attack and adopt phishing prevention best practices well in advance. This database contained details of over 135 million of its customers. SOS Online Backup Leaks 135M User RecordsĬalifornia based SOS Online Backup had left a database unprotected online recently. Organizations should take measures to prevent phishing attacks based on past attacks by malicious malware. Sixty-seven IP addresses that were used as C2 servers have been identified so far, and a lot of these were associated with Google Cloud Services. After infecting a machine, the malware connects to a Google Drive URL to decrypt the actual C&C server. Working as a malware-as-a-service (MaaS), Racoon was designed to steal credit card data, email credentials, cryptocurrency wallets, and other sensitive data.īut the recently discovered trait of this malware is its use of Google Drive to evade detection by anti-phishing services. The Racoon malware was first spotted in April 2019, and it has infected over 100,000 users since then. But it speaks a lot about the lack of phishing attack prevention measures with people which the attackers repeatedly keep exploiting. Giving these details to attackers doesn’t leave much for them to find out. With all these details, the attackers also ask for personally identifiable information, such as debit card number, expiration dates, ATM PIN, account number, and social security number on the final identity verification page. While the second page asks for security identification information, the third asks for your email address and password. On the first page, you need to enter your account username and password. The page is indifferentiable and asks users for details in four steps. The adversaries have created a phishing page impersonating the Texas-based financial institution Randolph-Brooks Federal Credit Union (RBFCU) to extract personal details of its 850,000 members. The information accessed via this method includes the username, hostname, user’s system privilege, computer model, memory capacity, OS serial number, language code, number of users, OS build, OS version, free memory available, etc. To prevent phishing attacks, refrain from opening the USB drive because it silently steals information from a device by displaying a message of USB Malfunction on the screen. To increase credibility, they also included a USB drive claiming to list the items purchasable through the gift card. ![]() ![]() This time, they are sending out emails informing victims that the retail chain ‘Best Buy’ is extending a $50 gift card to its loyal customers. The FBI has recently found the threat actor group FIN7 guilty of luring victims with fake gift cards to steal their personal information. The following headlines from the past week in cybersecurity shall help you strengthen your security measures: FIN7’s Gift Card Trap Cybersecurity in these tough times is essential to ensure phishing prevention and to keep the money in your bank accounts safe to survive the global economic fall that’s ahead of us.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |