Neu Cyber Threats – 08102020




Welcome to the first of a weekly series in which, we here at Neuways, bring attention to the latest cybersecurity threats in order to ensure you stay safe online.


Here are the most prominent threats which you should be aware of:


 










In the UK, October is . The theme of 2020 is “Think Before U Click” (#ThinkB4UClick), highlighting the importance of personal accountability as many of us move to remote working due to COVID-19. This is due to an increase in scammers sending malicious phishing emails impersonating the UK government, the WHO and the Centre for Disease Control and Prevention, to catch out employees who are now working from home. The rise in such communications is creating a problem for businesses, as employee’s opening of emails can result in opening up their systems to hackers.










A notorious ransomware strain, known as Ryuk, has hit USA-based Universal Health Services, the latest in a string of global attacks. is known to inject itself into running processes, finding a way into a system through email, and can be used to steal credentials and add exploitation tools. Once its work has been completed, it will delete its own files, masking any trace of it having breached a system. It has been linked to other malware families, such as the Emotet and Trickbot banking trojans, as Ryuk shares many of the same traits as these strains.








Job-seekers in London have been targeted with . People have been targeted via job ads that lead them to take out mobile phone contracts, under the proviso they would then be repaid for doing so. The user then arranges to hand the mobile over to a “colleague” of the scammer, who then sells the phone on, and leaves the “mystery shopper” with the burden of a mobile phone contract to pay for. With the volatile jobs market, this is one to keep an eye on, for any friends or family who’re out of work at the moment.








have been impersonating legitimate messaging apps, Telegram and Threema, to infect Android devices, with a new, previously undocumented malware. Problems arise when a user visits a fake, third-party Android app store known as “DigitalApps” and downloads the false apps. The infection, Android/SpyC23.A, then kicks in, and can read notifications from messaging apps, as well as record the screens and calls of unsuspecting users, before transmitting the user’s data from the infected phone back to a command-and-control (C2) server.








Microsoft have released a new annual report which will cover cybersecurity trends from the past year. The , has shown an increase in the levels of sophistication of scams from criminals, with most adopting techniques that make them harder to spot and that threaten even the savviest targets. In 2019 alone, Microsoft blocked 13 BILLION malicious and suspicious emails, more than one billion of which were URLs set up for the sole purpose of launching a phishing credential attack.





[/i]

If you are concerned about any cyber security issues within your business, contact us today on or email .



The post appeared first on .

Подробнее