The removal of unprecedented scams has been continuous to ensure the security of internet users from all forms of cybercrime. The NCSC’s (National Cyber Security Centre) report revealed that over 2.7 million scams, malicious domains, and phishing operations had been disrupted for 2021, which is four times greater than in 2020. NCSC disrupted a record...Continue Reading
One of the United Kingdom’s biggest high street retailers named The Works has temporarily shut down some of its branch stores after a cybersecurity incident had occurred in their systems. A group of hackers obtained unauthorised access to the retailer’s system based on reports. According to an announcement released by the affected retail firm, the...Continue Reading
Studies show that for 2021, BEC or business email compromise attack is the vector mainly utilized by threat actors to induce financial losses among firms worldwide, with a total of $2.4 billion. From the analysis conducted by the FBI, it was revealed that over $6.9 billion was lost from Americans in 2021 through various cyber-crimes...Continue Reading
A United Kingdom-based ferry company called Wightlink has been struck by a highly sophisticated cyberattack conducted by an unidentified threat actor. Researchers said that the cyberattack may have affected the personal data of a few customers and staff connected to Wightlink. The ferry operator released a statement saying that the cyberattack occurred in February. Wightlink...Continue Reading
An ongoing phishing attack has targeted one of the biggest digital banking platforms in the UK, Monzo, wherein a compromised website network facilitated the phishing campaign on the targeted banking platform. Based on reports, the phishing campaign tried to steal the accounts of the bank’s platform users by initiating an SMS that impersonates a Monzo-generated...Continue Reading
The FBI, NSA, and CISA from the US, Australia, and the UK have released a joint advisory regarding the increasing sophisticated ransomware campaigns worldwide. Many high-severity ransomware attacks have targeted critical infrastructure organisations in different nations last year, based on a report. The advisory noted that the attacks did not prioritise which part of the...Continue Reading
An attack technique, called the RTF Template Injection, is reportedly leveraged by state-sponsored threat groups, best known as advanced persistent threat (APT) groups from China, India, and Russia, making attacks harder to be detected and disrupted by authorities. Aside from the state-sponsored threat groups, experts also anticipate that financially-motivated threat groups will exploit the technique...Continue Reading
An unidentified group of malicious threat actors is using Office 365 spam alerts for phishing attacks that request targets to review their blocked messages so that they can steal their victims’ MS credentials. These fake Office 365 phishing emails can be deceiving to most users since it utilises an email address named “quarantine[@]messaging[.]microsoft[.]com” sent to...Continue Reading
Recently, a new highly sophisticated and stealthy remote access trojan (RAT) malware has been revealed within cyberspace. It can hide on servers peculiarly – by using a nonexistent execution date which is February 31st, inside the Linux calendar subsystem. The malware, dubbed CronRAT, is one of the latest trends within Linux server-focused Magecart malware and...Continue Reading
Threat actors are discovered to be disabling the Event Tracing for Windows (ETW) tool in their attacks to blind cybersecurity products that rely on its logging mechanisms and sidestep being detected. The Event Tracing for Windows or ETW is a default tool in Windows machines developed to trace and log events of user-mode applications and...Continue Reading