CyberSecure Specialist

05 Nov

Canadian Man Arrested in Snowflake Data Extortions

Information, Insights

A 26-year-old man in Ontario, Canada has been arrested for allegedly stealing data from and extorting more than 160 companies that used the cloud data service Snowflake. Image: https://www.pomerium.com/blog/the-real-lessons-from-the-snowflake-breach On October 30, Canadian authorities arrested Alexander Moucka, a.k.a. Connor Riley Moucka of Kitchener, Ontario, on a provisional arrest warrant from the United States. Bloomberg first reported Moucka’s alleged ties to the Snowflake hacks on Monday. At the end of 2023, malicious hackers learned that many…

Read More
01 Nov

Booking.com Phishers May Leave You With Reservations

Information, Insights

A number of cybercriminal innovations are making it easier for scammers to cash in on your upcoming travel plans. This story examines a recent spear-phishing campaign that ensued when a California hotel had its booking.com credentials stolen. We’ll also explore an array of cybercrime services aimed at phishers who target hotels that rely on the world’s most visited travel website. According to the market share website statista.com, booking.com is by far the Internet’s busiest travel…

Read More
01 Nov

How to remove your personal information from Google Search results

Information

How To Have you ever googled yourself? Were you happy with what came up? If not, consider requesting the removal of your personal information from search results. Márk Szabó 30 Oct 2024  •  , 4 min. read In today’s digital age, maintaining control over your personal information is more crucial than ever. Whether you’re concerned about privacy, security, or simply want to manage your online presence, knowing how to reduce your visibility in search results…

Read More
01 Nov

Month in security with Tony Anscombe – October 2024 edition

Information

Video Election interference, American Water and the Internet Archive breaches, new cybersecurity laws, and more – October saw no shortage of impactful cybersecurity news stories 31 Oct 2024 With so much happening in the world of cybersecurity, staying on top of threats, breaches, scams, and industry insights can feel like a full-time job. So, let us do the legwork for you. Each month, ESET’s Chief Security Evangelist Tony Anscombe will bring you a roundup of…

Read More
31 Oct

Don’t become a statistic: Tips to help keep your personal data off the dark web

Information

Cybercrime You may not always stop your personal information from ending up in the internet’s dark recesses, but you can take steps to protect yourself from criminals looking to exploit it Phil Muncaster 29 Oct 2024  •  , 6 min. read How did 44% members of the European Parliament (MEPs) and 68% of British MPs let their personal details end up circulating on the dark web? The answer is simpler and possibly more alarming than…

Read More
31 Oct

Foreign Threat Actor Conducting Large-Scale Spear-Phishing Campaign with RDP Attachments

Attacks, Insights, Malware

CISA has received multiple reports of a large-scale spear-phishing campaign targeting organizations in several sectors, including government and information technology (IT). The foreign threat actor, often posing as a trusted entity, is sending spear-phishing emails containing malicious remote desktop protocol (RDP) files to targeted organizations to connect to and access files stored on the target’s network. Once access has been gained, the threat actor may pursue additional activity, such as deploying malicious code to achieve…

Read More
30 Oct

CloudScout: Evasive Panda scouting cloud services

Information

In this blogpost, we provide a technical analysis of CloudScout, a post-compromise toolset used by Evasive Panda to target a government entity and a religious organization in Taiwan from 2022 to 2023. The CloudScout toolset is capable of retrieving data from various cloud services by leveraging stolen web session cookies. Through a plugin, CloudScout works seamlessly with MgBot, Evasive Panda’s signature malware framework. Key points of this blogpost: The CloudScout toolset was detected in Taiwan,…

Read More
30 Oct

Tony Fadell: Innovating to save our planet | Starmus highlights

Information

We Live Science As methane emissions come under heightened global scrutiny, learn how a state-of-the-art satellite can pinpoint their sources and deliver the insights needed for targeted mitigation efforts 28 Oct 2024 While carbon dioxide typically takes center stage in discussions about climate change, methane emissions have historically flown somewhat under the radar. So what’s the real story with methane and how exactly do the emissions of this powerful greenhouse gas accelerate climate change? Increased…

Read More
30 Oct

Change Healthcare Breach Hits 100M Americans

Data Breaches, Information, Insights

Change Healthcare says it has notified approximately 100 million Americans that their personal, financial and healthcare records may have been stolen in a February 2024 ransomware attack that caused the largest ever known data breach of protected health information. Image: Tamer Tuncay, Shutterstock.com. A ransomware attack at Change Healthcare in the third week of February quickly spawned disruptions across the U.S. healthcare system that reverberated for months, thanks to the company’s central role in processing…

Read More
30 Oct

Fortinet Updates Guidance and Indicators of Compromise following FortiManager Vulnerability Exploitation

Attacks, Insights, Malware

Fortinet has updated their security advisory addressing a critical FortiManager vulnerability (CVE-2024-47575) to include additional workarounds and indicators of compromise (IOCs). A remote, unauthenticated cyber threat actor could exploit this vulnerability to gain access to sensitive files or take control of an affected system. At this time, all patches have been released. CISA previously added this vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation, as confirmed by Fortinet. CISA strongly encourages users…

Read More