Cloud Consultancy News
Credential phishing attacks – what are the latest themes and tactics?
We have been observing a steady rise in credential phishing attacks over the last month. This method of attack is quite popular, where attackers make use of fake login pages or forms to steal credentials of commonly used services in a corporate environment. Apart from...
Britcoin or bitcoin? The UK considers creating its own digital currency
The Bank of England and Treasury have announced plans to explore the creation of a central bank digital currency. The UK is the latest nation to begin testing out the idea of a central bank-issued blockchain digital currency, which to date have largely been focused on...
Lazarus hacking group now hides payloads in BMP image files
The Lazarus group has tweaked its loader obfuscation techniques by abusing image files in a recent phishing campaign. Lazarus is a state-sponsored advanced persistent threat (APT) group from North Korea. Known as one of the most prolific and sophisticated APTs out...
Google releases Chrome 90 with HTTPS by default and security fixes
Google has just released Chrome version 90, bringing a privacy update that automatically adds HTTPS to a URL when it is available. Chrome engineers flagged the HTTPS feature in February and Google has been testing it in Chrome 90 previews in the Canary and Beta...
Hackers target Microsoft Office, Adobe Photoshop software ‘cracks’ along with Monero cryptocurrency wallet
'Cracks', small programs that allow consumers to use commercial software without paying for the license, are still popular among businesses and individuals despite security risks, experts have warned. A report from cybersecurity firm Bitdefender highlighted cracks...
Google Sites blight: Over 100,000 web pages for business form searches overrun with backdoor RATs
More than 100,000 web pages hosted by Google Sites are being used to trick netizens into opening business documents booby-trapped with a remote-access trojan (RAT) that takes over victims' PCs and hands control to miscreants. Infosec outfit eSentire on Tuesday said it...
Businesses are facing cyber threats from all directions
The second half of 2020 proved particularly tough for cybersecurity teams everywhere, with wave after wave of cyberattacks hitting organisations from all directions. This is according to a new report from cybersecurity firm McAfee, which states that an average...
Mobile devices biggest security threat, but not prioritised
Best practices for security have not kept pace with IT teams still treating mobile security separately to overall enterprise security practices, according to US wireless provider Verizon, which warns that mobile devices are the biggest enterprise security threat, but...
Another 500 million accounts have leaked online, and LinkedIn’s in the hot seat
You might still be reeling from the news that personal information from 533 million Facebook accounts has been made freely available online. But now there’s another huge batch of people’s data floating around the web — including data from LinkedIn, the Microsoft-owned...
Massive increase in endpoint attacks, rising rate of encrypted malware and new exploits targeting IoT
Fileless malware and cryptominer attack rates grew by nearly 900% and 25% respectively, while unique ransomware payloads plummeted by 48% in 2020 compared to 2019, according to WatchGuard. Q4 2020 also brought a 41% increase in encrypted malware detections over the...