Shane Chambers No Comments

Phishing Scams, Corona Anti-Virus, Free Ransomware Decryption & More: Cybercrime in the Era of Covid19

These are undoubtedly strange times we are living in, with unprecedented changes taking place in our lives all over the globe in order to fight the pandemic that is Covid19. Suddenly, a sizeable chunk of the workforce is working from home, in many cases for the first time. Companies are scrambling to put in place plans to accommodate this, working out whether to allow users to use their own devices, or provide company laptops or desktops for any displaced staff. Moreover, many people are out of work altogether and confined to their homes, spending significantly more time than usual browsing the internet, looking for the next clue online that will bring some certainty to their lives around the crisis they are living through.

With such a shift in online activity comes great challenges for technology companies and IT teams in ensuring their users are safe and their precious company data is secure – meanwhile cyber criminals have seen crisis as opportunity; the misfortune of others is a chance for them to take advantage of the confusion and make some extra money.

Ransomware has crippled various hospitals in the past, including many NHS Trust hospitals which were caught out by the infamous 2017 WannaCry attack.

The Covid19 pandemic is the perfect storm for cyber criminals to up the ante. Confusion reigns among users and misinformation is rife. Users who would normally be at work are now accessing the internet from home devices, which typically are not sitting behind the advanced firewalls, email filters and policies put in place by their organisations to protect them against malicious activity.

Read more
Shane Chambers No Comments

Personal Data for Billions of Users Exposed Online in Three ‘Combo Lists’ Discovered This Month

It’s a scary time to be an internet user, with three huges troves of user data recently discovered to be exposed online; opening users up to phishing emails, spam and even credential stuffing attacks.

Cyber criminals use ‘credential stuffing’ to gain unauthorised access to websites that were never breached, using previously hacked passwords
Read more
Shane Chambers No Comments

Irish Businesses Hit by Invoice Redirect Scams, Gardaí Warn

Gardaí have reported a sharp increase in the number of invoice redirect and CEO fraud-style attacks on Irish businesses in the last few months. “We are getting a couple of cases every week now”, according to Detective Superintendent Pat Lordan, who said that both small and large companies are being hit for amounts ranging from €10,000 into the millions.

Staff should be very wary of any requests to change payment details from suppliers, and are advised to pick up the phone and speak to someone they know first.
Read more
Shane Chambers No Comments

281 Arrests Made in Massive Business Email Compromise Ring Bust

In a global sting, named Operation reWired, authorities in the US and around the world have arrested 281 individuals that were involved in a global Business Email Compromise (BEC) scam. The ring had been under investigation for months, during which they were found to have hijacked email accounts belonging to company executives, impersonated staff and ultimately tricked unsuspecting employees into wiring millions in funds into the group’s accounts.

Business Email Compromise is a common tactic by cyber criminals which users social engineering to trick staff into transferring money directly to them
Read more
Shane Chambers No Comments

DHL Phishing Campaign Found to Contain New Strain of Malware

Every year, the number of phishing scams seems to be increasing, with the malware-ridden emails getting continually more sophisticated and convincing. The latest global phishing campaign purporting to be from international courier giants DHL has been tricking users into opening a fake PDF attachment – and subsequently unleashed a previously unseen piece of malware to wreak havoc on their PCs.

Read more