ActiSoft Technology - Blog #Spear Phishing

Insider Threat: Is there an Enemy Lurking Within Your Business?

Tue, 12 Jul 2022 16:39:33 +0000

Insider threats represent a huge security risk to all organisations, and research suggests that the average cost is almost twice that of other types of breach. Whether the people behind the threats are acting nefariously or are completely oblivious to what they’ve done, the impact is just as serious. While business leaders are becoming more aware of the risk of insider threats, many organisations still lack the resources and knowledge to protect their data. In this article, we’ll take a look at the different types of insider threat, discuss the associated costs and show you how to mitigate risk.

What is an Insider Threat?

The term “Insider Threat” is used in the cyber security industry to describe any kind of threat posed by individuals from within an organisation. This can include current employees, stakeholders, contractors, board members, partners and previous employees. Basically, it refers to anyone who has the potential to access networks and put them at risk, whether intentionally or accidentally. The kind of information at risk of being compromised might be financial records, customer and employee data, passwords, business contracts or details of the organisation’s security procedures.

Insider Threats fall into two broad categories: intentional and unintentional. .

Intentional Threats tend to come from disgruntled employees, current staff members or contractors who misuse systems for their own personal gain and/or to cause disruption. People may work alone or in partnership with others, such as hacking organisations or business competitors.

Unintentional Threats are down to user error and lack of awareness. Those without adequate training and knowledge about cyber security issues can inadvertently put their networks at risk by falling prey to phishing scams, exercising poor password security or sharing data on compromised devices.

Different Types of Insider Threats

There are several different types of insider threat:

Second Streamers

This refers to current employees who intentionally misuse their organisation’s confidential data, either for financial gain or while working in partnership with others. Second streamers are thought to account for about 62% of all insider threats.

Angry Ex-Employees

When people feel wronged, they sometimes want to seek revenge – and compromising valuable data is a great way to do it. About 29% of disgruntled ex-employees committing deliberate sabotage do so for personal financial gain, while others act purely maliciously and want to cause as much damage and disruption as possible.

Inadvertent Insiders

This is one of the most common types of insider threat facing organisations today, and it’s all down to user error. People often don’t realise they’ve made a mistake (such as clicking on a dodgy link or sharing financial records with a convincing fraudster) until it’s too late, which is why it’s essential for all employees to have robust, regular cyber security awareness training.

Persistent Non-Responder

If you regularly hear someone say something like “all these security measures are just a waste of time, who would want to attack us anyway?” you’re probably dealing with a persistent non responder. Anyone who consistently refuses to adopt appropriate security protocols and continues to share passwords or use insecure devices is a risk – and it’s not always who you might expect. CEOs and board members are often the worst offenders.

How to Mitigate Risk

The cyber security landscape is constantly evolving and notoriously complex, so it’s impossible to completely eliminate risk. However, by adopting a multi-layered approach and ensuring you’re completely transparent about what you expect of your employees, it’s entirely possible to significantly reduce the risk of insider threats. Here are just a few measures you can take to protect your organisation:

Undertake regular risk assessments to assess the likelihood of an attack
Ensure all staff have regular security awareness training
Maintain close management of all user permissions and ensure that leavers are immediately removed from your systems
Undertake penetration testing at least once a year
Implement 24/7 network monitoring
Organise a cyber security assessment/simulated phishing attack
Set up a managed detection and response system

Minimising the risk of insider threats doesn’t have to be hard work when you have the right team on your side. Contact our friendly specialists at Actisoft today to find out how we can help.

Start Your Free Phishing Security Test

Find out what percentage of your employees are Phish-prone

Did you know that 91% of successful data breaches started with a spear phishing attack?

Find out what percentage of your employees are Phish-prone™ with your free phishing security test. Plus, see how you stack up against your peers with the new phishing Industry Benchmarks!

IT pros have realised that simulated phishing tests are urgently needed as an additional security layer. Today, phishing your own users is just as important as having antivirus and a firewall. It is a fun and an effective cybersecurity best practice to patch your last line of defence: USERS

Why? If you don't do it yourself, the bad guys will.

Here's how it works:

Immediately start your test for up to 100 users (no need to talk to anyone)
Select from 20+ languages and customise the phishing test template based on your environment
Choose the landing page your users see after they click
Show users which red flags they missed, or a 404 page
Get a PDF emailed to you in 24 hours with your Phish-prone % and charts to share with management
See how your organisation compares to others in your industry

The Phish-prone percentage is usually higher than you expect and is great ammo to get budget.

Start phishing your users now. Fill out the form, and get started immediately!

Try It Now!

What Are Social Engineering Attacks and How Can You Prevent Them?

Fri, 01 Jul 2022 09:47:38 +0000

is a common tactic used by cyber criminals to manipulate people into sharing confidential information. Hackers exploit people’s trust, knowing that when we’re under pressure we may be more likely to make mistakes. The kind of information hackers seek out varies, but commonly includes bank account details, personal information and company files. Social engineering is a common tactic used by cyber criminals to manipulate people into sharing confidential information. Hackers exploit people’s trust, knowing that when we’re under pressure we may be more likely to make mistakes. The kind of information hackers seek out varies, but commonly includes bank account details, personal information and company files.

Hackers love to use social engineering because it’s easier to trick someone into sharing their password than to spend time trying to hack into an account. So, they lull victims into a false sense of security by gaining their trust and pretending to be someone else.

Social engineering attacks take many forms, but they commonly look like emails and messages from friends and trusted organisations:

Emails from Friends

Hackers spend a while collecting information about their targets, so if your social media followers and friends list are publicly visible it’s relatively easy for them to create fake email from a friend. These messages contain links, videos or images that include malware, so if you click on them they’ll gain instant access to your device and all your vital information.

Emails from Organisations

These kinds of cyberattack are known as phishing emails. Like fake friend emails, these can be very convincing and are designed to look like they’ve come from trusted sources, such as HMRC or your bank.

Once hackers have gained a target’s trust, they will create a sense of urgency by asking for help. This might be in the form of a desperate friend being stranded in a foreign country and needing some funds to be wired to them urgently, or a financial institution asking for you to verify personal information. They may also send a message claiming you’re the winner of an online competition, or pretending to be your boss or co-worker asking for client details.

The Cost of Social Engineering

The monetary cost of social engineering attacks on businesses vary according to different sources, from anywhere to £25,000 to upwards of £4 million.

The biggest social engineering attack recorded to date was led by Evaldas Rimasauskas, who successfully targeted Google and Facebook. He set up a fake company and bank account, posing as a computer manufacturer who worked with the two tech giants. His team of scammers then sent phishing emails to a number of employees within Facebook and Google, attaching invoices for work that had been genuinely undertaken by the real manufacturing company. The money was then deposited into fraudulent accounts, and over the course of two years over $100 million was extorted.

But perhaps the most important – and most often forgotten – impact of social engineering attacks is the human one. The guilt and shame associated with clicking on an infected email and causing huge organisational damage is too much for some people, with victims becoming depressed or developing severe anxiety. Two people are thought to have committed suicide following the Ashley Madison cyber-attack of 2015, and many others have lost their jobs and livelihoods.

How to Protect Yourself Against Social Engineering Attacks

Since social engineers like to act when people are more likely to be under pressure, it’s important to try to stay mindful and vigilant at all times. Here are some ways you can minimise the risk of a successful attack:

Report and delete any messages that ask for financial information or passwords
Set your spam filters to “high” and regularly check your folders to ensure no legitimate emails are in there
Install robust anti-virus software, firewalls and email filters on all devices and user accounts
Use multi-factor authentication and strong passwords, so even if anyone does manage to get hold of your password they’ll still be asked to provide further information if their credentials aren’t familiar
Double check all email addresses claiming to be from friends or trusted sources before you respond – particularly if they contain links or ask for information
Be wary of tempting offers – if it looks too good to be true, it probably is
If in doubt, stop. Taking a few minutes to check whether something is legitimate is a lot less time consuming than clicking a link in haste

To find out more about how to keep your organisation safe, contact our friendly team of Cyber Security specialists at Actisoft Technology today.

Start Your Free Phishing Security Test

Find out what percentage of your employees are Phish-prone

Did you know that 91% of successful data breaches started with a spear phishing attack?

Find out what percentage of your employees are Phish-prone™ with your free phishing security test. Plus, see how you stack up against your peers with the new phishing Industry Benchmarks!

Why? If you don't do it yourself, the bad guys will.

Here's how it works:

Immediately start your test for up to 100 users (no need to talk to anyone)
Select from 20+ languages and customise the phishing test template based on your environment
Choose the landing page your users see after they click
Show users which red flags they missed, or a 404 page
Get a PDF emailed to you in 24 hours with your Phish-prone % and charts to share with management
See how your organisation compares to others in your industry

The Phish-prone percentage is usually higher than you expect and is great ammo to get budget.

Start phishing your users now. Fill out the form, and get started immediately!

Try It Now!

Your Money or Your Data! A Guide to Ransomware

Mon, 20 Jun 2022 10:50:48 +0000

What is Ransomware?

Ransomware is a kind of malicious code that renders a device, server or file unusable until a payment is made to a cybercriminal. Attacks have more than doubled since 2020, and a recent study found that incidents reported to the ICO grew from 326 to 654 between 2020 and 2021. Actual figures will be much higher, as not all incidents are reported (although of course they should be!). The heavily impacted sectors according to the report are finance, education and insurance, but all sorts of businesses have been affected.

Over the years ransomware has evolved and become increasingly sophisticated. While some malicious software of this kind just encrypts certain files, others have the power to completely destroy entire file systems.

How it Works

As soon as the malware has been installed – usually as the result of a user clicking on a link – the hacker takes control of the system and freezers the user out until they pay up. They often ask for payment in Bitcoin, due to its anonymity, but cyber criminals will sometimes ask for bank details or other types of payment such as Amazon gift vouchers too. Even once the ransom has been paid, there’s no guarantee users will regain full access to their files afterwards. In fact, while over half of victims pay up, but only 8% get all their data back.

The Cost of Ransomware Attacks

According to Yubico, the average cost of a ransomware attack was $1.85 million (£1.4m) in 2021. Along with the initial monetary demands, other costs include business downtime, lost sales, operating costs and legal fees. In the case of attacks where more sensitive information is compromised, costs can be as much as $4.44 million (£3.5m).

There are severe reputational costs to consider too. New strains of ransomware can affect entire supply chains, which puts partner organisations and their customers at risk. Under GDPR regulations all breaches must be reported to the ICO, which means they are also made public. Insurance companies are less likely to touch organisations that have been hit hard by ransomware attacks, and if they do, you can expect your premiums to rocket.

Once an organisation has been targeted – and agreed to pay the ransom – they then become an easy target for future ransomware attacks.

Although most cybercriminals are motivated by money and other financial rewards, others act out of spite or for political reasons. They often use a range of different methods to extort money or information, and in some cases if ransoms aren’t paid they’ll even go as far as contacting customers direct and demanding money from them.

How to Prevent a Ransomware Attack

A while ago, all you needed to protect against a ransomware attack was a secure backup system and fast data restore process. Things have changed in recent years. At their worst, modern attacks can bring entire organisations to their knees, so traditional methods are no longer enough, so you need a more comprehensive, multi layered line of defence in place.

But as with most other cyber-attacks, the best way to avoid a costly ransomware attack is by creating a culture of awareness and making sure your staff have the right training. Malicious software can only be installed if a human allows it, so it’s essential that everyone knows what to look out for.

Here are some steps you can take to minimise the risks:

Make sure everyone in your organisation is trained and knows to never click on unverified links
Have all your emails scanned for malware
Install firewalls and Endpoint Protection
Only ever download from trusted sites that your IT team have approved
Keep regular backups of all your files
Avoid using public Wi-Fi
Never allow unverified, unfamiliar USBs in any of your devices
Install robust security software
Never share sensitive data with anyone you’re not 100% certain of

As specialists in cyber security, our team at Actisoft can talk you through all the risks and provide you with all the tools you need to avoid a ransomware attack. From firewalls and Endpoint Protection to Cyber Essentials accreditation and much more, we’re here to help.

Get the Manual

Start Your Free Phishing Security Test

Find out what percentage of your employees are Phish-prone

Did you know that 91% of successful data breaches started with a spear phishing attack?

Find out what percentage of your employees are Phish-prone™ with your free phishing security test. Plus, see how you stack up against your peers with the new phishing Industry Benchmarks!

Why? If you don't do it yourself, the bad guys will.

Here's how it works:

Immediately start your test for up to 100 users (no need to talk to anyone)
Select from 20+ languages and customise the phishing test template based on your environment
Choose the landing page your users see after they click
Show users which red flags they missed, or a 404 page
Get a PDF emailed to you in 24 hours with your Phish-prone % and charts to share with management
See how your organisation compares to others in your industry

The Phish-prone percentage is usually higher than you expect and is great ammo to get budget.

Start phishing your users now. Fill out the form, and get started immediately!

Try It Now!

What You Need to Know About Phishing: The Biggest Threat to UK Organisations

Wed, 15 Jun 2022 12:28:33 +0000

Phishing is an attempt by cybercriminals posing as legitimate institutions, usually (but not always!) via email, to obtain sensitive information from targeted individuals.

These attacks are on the rise, with more than 80% of organisations being targeted in 2021 alone. One of the most frustrating things about phishing is that these attacks are becoming so realistic and sophisticated that it’s becoming increasingly hard to spot them. So, even if you think you know everything there is to know about online scams, it’s still surprisingly easy to get caught out.

There are many different types of phishing, but in this post we’ll concentrate on the most common types affecting UK businesses right now.

Email Phishing

Most phishing attacks are deployed via email, and hackers are getting really good at creating fake accounts that look just like the real thing. They register fake domains that mimic well known organisations (such as Amazon, the NHS or Google) and send thousands of generic emails in what’s known as a “spray and pray” approach. The idea is that if they send a massive amount of emails, at least a few people will respond.

These attacks are on the rise because they work. The fake domains they create are so realistic that targets have to look really closely – they copy the logos and font type exactly, and often just one character is out of place in the email address. Many recipients see something that looks very familiar and assume it’s safe. As soon as they click on the link or download the attachment, it’s too late.

Spear Phishing

This is a more sophisticated type of email phishing attack. Instead of using a “spray and pray” approach cyber criminals will target particular people within an organisation, which involves more time and effort.

Before they send their malicious emails, hackers will have gathered important information about their targets including things like their name, job title, work location, email address and other specific information about their role. These attacks are particularly hard to identify because they address the user by name and often refer to other members of staff, meetings or work activities that are familiar to the target. Unlike the email scams of old, they’re often written in perfect English and seem totally legitimate – so it’s often only a matter of time before the hacker has access to the user’s data.

Whaling

Whaling attacks go a step further, and are usually aimed at senior staff members within an organisation. Whaling emails tend to be more subtle, and they’re less likely to use tricks like fake links. Instead, they’re likely to pose as a CEO or board member requesting vital information or the transfer of funds. The hackers create a sense of urgency, saying things like “I know you might be busy but really need you to get this done now” and they rely on employees being keen to keep their bosses happy.

Angler Phishing

This is a relatively new form of attack, which is deployed via social media. Hackers share posts including fake URLs, cloned websites and infected links and use instant messages to encourage victims to download malware. Cyber criminals keep an eye out for customers contacting organisations with complaints, then hijack the organisations’ social media accounts and ask for the customers to provide their bank account details in order to receive a refund. Of course, that refund never happens, and scammers walk away with valuable data and banking information.

Smishing and Vishing

These are more like old school hacks because they take place over the phone rather than via email, but they’re no less damaging. In a smishing attack, the victim will receive a text message asking them to follow a link or download a piece of software to their phones, while a vishing attack involves a telephone conversation. A common tactic is for criminals to pretend to be calling from a bank, alerting victims to suspicious activities on their accounts. Attacks of this kind can look incredibly realistic these days, and hackers rely on the fact that when people are stressed and under pressure they’re more likely to make silly mistakes.

Phishing attacks are estimated to cost the UK economy over £5 billion a year. The best way to prevent these attacks is with anti-phishing and anti-spam software, but it’s also essential to stay aware and on guard – which goes for smishing and vishing too. This means ensuring all staff are regularly trained and understand how to spot a potential threat.

For more detail about different types of phishing, our partner Fortinet has put together a comprehensive list you can also visit our Phishing page. We are also happy to talk to you about the most common threats to your organisation and deliver cyber security training. Contact us today for a no obligation quote!

Start Your Free Phishing Security Test

Find out what percentage of your employees are Phish-prone

Did you know that 91% of successful data breaches started with a spear phishing attack?

Find out what percentage of your employees are Phish-prone™ with your free phishing security test. Plus, see how you stack up against your peers with the new phishing Industry Benchmarks!

Why? If you don't do it yourself, the bad guys will.

Here's how it works:

Immediately start your test for up to 100 users (no need to talk to anyone)
Select from 20+ languages and customise the phishing test template based on your environment
Choose the landing page your users see after they click
Show users which red flags they missed, or a 404 page
Get a PDF emailed to you in 24 hours with your Phish-prone % and charts to share with management
See how your organisation compares to others in your industry

The Phish-prone percentage is usually higher than you expect and is great ammo to get budget.

Start phishing your users now. Fill out the form, and get started immediately!

Try It Now!

Top Cyber Threats to SMEs

Fri, 10 Jun 2022 11:13:34 +0000

If you’re running a small to medium sized business, it’s easy to think that you might not be a big enough fish to attract the interest of cyber criminals. But the truth is, small organisations are just as much at risk of hacks and other security threats as huge corporations – in fact, being smaller may make you more of a target.

Attackers are targeting thousands of businesses every day, and those with less robust defences in place make much easier prey than bigger organisations who can invest more time and money into cyber security.

Hackers also love targeting small businesses because they often deal with large sums of money and have great contacts – which means there’s lots of lovely data to steal.

It's often said that knowledge is power, and that’s certainly true when it comes to cyber-crime. The owners and managers of SMEs need to be aware of the risks, which is why we’ve put together this short article outlining the most common cyber-attacks right now and what we have seen.

1) Phishing

By far the most prevalent – and damaging – threat facing small and medium sized businesses in 2022 is phishing. These attacks account for 90% of all breaches; a figure that’s grown by 65% since 2021. Phishing attacks are when a hacker sends an email pretending to be from trusted contact, tricking the recipient to click on a malicious link, download a code or share sensitive information. There are several types of phishing attacks you need to know about:

The spray and pray approach, which is where hackers send out thousands of emails all at once, in the hope that one or two will bite
Spear phishing: a campaign that targets a particular person or organisation and includes information which is known to be of interest to the specific target
Whaling: an even more targeted and carefully executed attack, where the hacker goes after a specific C level executive in the organisation

Phishing attacks are becoming increasingly sophisticated, which means that even if you think you’ve seen it all before, you could still be caught out.

3) Social Engineering

Social engineering plays a huge role in cyber-crime. Even though advances in technology have been behind more sophisticated attacks, those attacks can only be properly deployed by a human. So, hackers work hard to understand how people think and manipulate them into making security mistakes or sharing valuable data. Social engineering happens in several phases. First, the hacker investigates their victim and identifies any weaknesses in their security systems. Next they start to gain their trust, either by sharing information the victim might be interested in or by pretending to be a trusted contact. Then, when the target lets their guard down and begins to trust the hacker, they’ll go in for the kill.

4) Insider Threat

Insider threats are posed by individuals from inside an organisation. This can include current or previous staff members, partners and contractors with access to passwords and company data. These individuals may act maliciously, intentionally stealing data or infiltrating systems for personal gain, but often they’re completely unwitting. Lack of awareness about cyber security issues can turn the most diligent worker into an insider threat, so it’s important to have robust policies and training measures in place.

5) Shadow IT

Shadow IT is a term covering the use of different IT systems, apps, services and devices that haven’t been approved by an IT department. Since Cloud services have become more popular, and also since the first lockdown, the use of Shadow IT has grown exponentially. New technology drives innovation and can deliver huge cost and time savings, but without the right security measures in place it also poses a huge risk.

6) Software Exploits

A software exploit is a code that’s been written to take advantage of a particular vulnerability or flaw in a piece of software. Although security professionals sometimes develop these exploits as evidence of vulnerabilities, they’re also widely used by hackers with malicious intent.

The purpose of this article is to provide you with an overview of the most common threats to your organisation. We’ll go into more detail about each type (and a few others!) in our next articles. In the meantime, if you want to know more about how to protect your SME from cyber threats, get in touch!

Are your users putting a big target on your organisation’s back?

Cybercriminals are constantly coming out with new ways to hack into your network and steal your organisation’s confidential information.

Find out if your users are putting a big target on your organisation’s back.

KnowBe4’s new Password Exposure Test (PET) is a complimentary IT security tool that allows you to run an in-depth analysis of your organisation’s hidden exposure risk associated with your users.

PET makes it easy for you to identify users with exposed emails publicly available on the web, and checks your Active Directory to see if they are using weak or compromised passwords that are part of a known data breach. PET then reports on any user accounts affected so you can take action immediately!

Here's how it works:

Checks to see if any of your organisations email addresses have been part of a data breach
Tests against 10 types of weak password related threats associated with user accounts

Checks against breached or weak passwords currently in use in your Active Directory

Reports on the accounts affected and does not show/report on actual passwords

Just download the install, run it, get results in minutes!

Identify how many users take the bait and reply before the bad guys do!

Try It Now!

In Order to Have Good Security Culture, Behaviour Comes First

Fri, 21 Jan 2022 15:54:04 +0000

Blog courtesy of KnowBe4

Written by Javvid Malik

In our efforts to raise awareness among users of the importance of cybersecurity and the part they have to play in it, we sometimes go about things in a long-winded manner.

Many times, organisations spend a long time trying to convince people why they should take security seriously. They will come up with elaborate explanations as to why reusing passwords is a bad idea, or how the Wi-Fi in their favourite coffee shop could lead to their demise, or how minting NFTs will cause the world economy to collapse.

This does work in many cases. You inform someone of the underlying reasons and the broad impact of their actions > they understand and change their behaviours accordingly > this leads to better security and everyone lives happily ever after.

But this approach does not work on everyone, and is not the most effective in all scenarios.

So what do we do?

We start with the behaviour.

Consider the introduction of recycling bins. Yes, they are for the good of the environment, to prevent the ice caps from melting and to save polar bears. But is that what everyone is thinking about when they sort out their rubbish? In many cases, that is not the case. The fact that packaging usually mentions whether it can be recycled, and the provision of recycling bins next to general waste bins, makes it an easy and almost seamless behaviour to adopt.

Some people may not even be aware that recycling can potentially benefit the environment. But they will justify their doing so in their minds.

Give people a reason and they may not supply the behaviour. But give people a behaviour, and they will have no problem supplying the reasons themselves.

This is where building a strong security culture within an organisation can have massive benefits, like when people observe most of their colleagues behaving in a certain way. For example, they see everyone wearing their pass at all times and locking their workstations when away from it – they will adopt those behaviours too.

Will they understand all of the reasons? Probably not. But as long as they adopt the right behaviours, that goes a long way in reducing risk, which is ultimately what we want.

Behaviour comes first – attitude changes to keep up.

How Security Culture Invokes Secure Behaviour

In this ground-breaking new research, KnowBe4 has been able to validate the link between security culture and secure behaviour. Though it has been suspected that the two are intertwined, until now, it has never been proven with data. Improving one's security culture directly translates into more secure employee behaviours and to the overall reduction of organisational risk.

In this whitepaper, you'll learn how to impact secure behaviour through:

Intentional focus on the organization’s security culture
Shared ideas, customs and social behaviours
Internalising an individual's responsibilities to protect and defend
Security readiness and the effectiveness of the human layer.

Get the Report

Hive Ransomware-as-a-Service Races to the Top as Affiliates Breach 350 Organisations in Just 4 Months

Tue, 11 Jan 2022 15:46:20 +0000

Blog courtesy of KnowBe4

Written by Stu Sjouwerman

Source: The Hive Affiliate Program home page

This is a well-oiled machine. And that’s scary.

Hive is responsible for the single largest ransom demand to date - $240 Million – made in November of last year to electronics retail giant MediaMarkt. This should tell you that the Hive is only going to grow its’ operations and be a formidable tool in the belt of affiliate cybercriminals.

The good news is Hive attacks traditionally use spear-phishing attacks as their initial attack vector. This means that effective Security Awareness Training can do a lot to thwart phishing attacks that use social engineering tactics to trick victims into engaging with malicious loaders that will, inevitably release the Hive.

Be on the watch for this one… it’s going to sting.

Free Ransomware Simulator Tool

Threat actors are constantly coming out with new strains to evade detection. Is your network effective in blocking all of them when employees fall for social engineering attacks?

KnowBe4’s "RanSim" gives you a quick look at the effectiveness of your existing network protection. RanSim will simulate 22 ransomware infection scenarios and 1 cryptomining infection scenario and show you if a workstation is vulnerable.

Here's how it works:

100% harmless simulation of real ransomware and cryptomining infections
Does not use any of your own files
Tests 21 types of infection scenarios
Just download the install and run it
Results in a few minutes!

Get RanSim!

KPMG: Cyber Security Risk Is Now No. 1 Threat To Growth

Thu, 25 Mar 2021 15:36:45 +0000

Blog courtesy of KnowBe4

Written by Stu Sjouwerman

KPMG in the UK just released their CEO 2021 Outlook Pulse Survey where global leaders were asked about their 3-year outlook. CEOs of the world’s most influential companies are planning what a return to ‘normal’ will look like. Nearly half (45 percent) expect normality to resume in 2022, with only one-third (31 percent) anticipating a return to normal in 2021. Significantly, 24 percent of leaders say that their business has changed forever.

When asked: Which of the following risks poses the greatest threat to your organisation's growth over the next 3 years? the following graph was published. Note the change from position 5 in 2020 to position 1 in 2021:

The full article is highly recommended. Here is a link to the KPMG site with the complete survey results:

https://home.kpmg/uk/en/home/insights/2020/09/uk-ceo-outlook.html

Get Your CEO Fraud Prevention Manual

CEO fraud has ruined the careers of many executives and loyal employees, causing over $26 billion in losses. Don’t be the next victim. This manual provides a thorough overview of how executives are compromised, how to prevent such an attack and what to do if you become a victim.

Get Your Manual

All 200 Million Office 365 Users at Risk by a New Global Spear Phishing Attack Spoofing Microsoft.com

Sat, 19 Dec 2020 17:58:40 +0000

Blog courtesy of KnowBe4

Written by Stu Sjouwerman

Upon clicking the provided link, users are taken to a spoofed Office 365 logon page where credentials are captured and stolen.

According to Dark Reading’s article on the attack, a Microsoft spokesperson is quoted as saying “Contrary to claims in the third party report, Office 365 has rich in-built controls to block domain spoofing emails and enforces DMARC checks. We encourage all customers to make sure they have deployed the latest security controls in Office 365, enabled multi-factor authentication for Office 365, and train their end users to observe caution when clicking on links from unknown senders."

But given that Ironscales customers are seeing this attack, it’s evident that some are getting through to a user’s Inbox.

What’s needed is to educate users via new school Security Awareness Training on what elements of an unsolicited email should trigger their sense of suspicion. In this case, the urgency denoted to simply review some emails that may or may not be important.

Free Phishing Security Test

Would your users fall for convincing phishing attacks? Take the first step now and find out before the bad guys do. Plus, see how you stack up against your peers with phishing Industry Benchmarks. The Phish-prone percentage is usually higher than you expect and is great ammo to get budget.

Go Phishing Now!

A Hacker Is Selling Access To The Email Accounts Of Hundreds Of C-Level Executives

Tue, 01 Dec 2020 11:15:21 +0000

Blog courtesy of KnowBe4

Written by Stu Sjouwerman

Great for Marketing Purposes and for Phishing!

CEO - chief executive officer
COO - chief operating officer
CFO - chief financial officer or chief financial controller
CMO - chief marketing officer
CTOs - chief technology officer
President
Vice president
Executive Assistant
Finance Manager
Accountant
Director
Finance Director
Financial Controller
Accounts Payable

Access to any of these accounts is sold for prices ranging from $100 to $1,500, depending on the company size and user's role. A source in the cyber-security community who agreed to contact the seller to obtain samples has confirmed the validity of the data and obtained valid credentials for two accounts, the CEO of a US medium-sized software company and the CFO of an EU-based retail store chain.

The source, which requested that ZDNet not use its name, is in the process of notifying the two companies, but also two other companies for which the seller published account passwords as public proof that they had valid data to sell. These were login details for an executive at a UK business management consulting agency and for the president of a US apparel and accessories maker.

I don't have to tell you the risks that this brings related to CEO Fraud, also known as Business Email Compromise. ZDNet has the full story.

Get Your CEO Fraud Prevention Manual

Get Your Manual

Want to know and monitor the Dark Web for your organisations credentials? Check out our DomainWatch service