The US, DHS Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning concerning malicious cyber actors using commercial spyware programs to target messaging applications. CISA's alert highlights that various threat actors employ sophisticated targeting and social engineering methods to deliver spyware and gain unauthorized access to users' messaging applications. This initial access then facilitates the deployment of additional malware, leading to more extensive access to t
qr code (6)
The country's National Cyber Security Centre (NCSC) has uncovered a new malware campaign targeting Swiss residents through fake postal letters. The scam involves fraudulent correspondence disguised as official communication from MeteoSwiss, the Federal Office of Meteorology and Climatology. It urges recipients to scan a QR code and download a malicious weather app for Android devices.
See: https://redskyalliance.org/xindustry/malicious-qr-codes
The fake “Severe Weather Warning App” app mimics t
Research from Cofense has found that user credentials are being targeted by hackers and scammers on a scale never seen before. Indicators of compromise (IoC), digital evidence of a cyber attack, for credential phishing have increased in Q3 by close to 45% over Q2, the company's report found.
IT Management Solutions - Compared to the Q3 period of 2022, IoCs of credential phishing are up 85% with PDFs being the most common malicious file extension attached to a phishing email.
Do not take the bai
What if a QR (Quick Response) code was shown on a TV advertising spot, and the company behind that commercial had malicious intent? For example, the QR code displayed during the AD opened your phone's browser and automatically downloaded and installed a piece of ransomware. Given the number of people who watch the televised events, the outcome of that attack could have been disastrous. That is Quishing, fooling a person (or several people) into thinking something is harmless (or necessary),
With minutes left in the holiday buying season, online shopping and gift-giving are at the top of many people's to-do lists. But before you hit the "buy" button, it is important to remember that this time of year is also the highest time for cybercriminals. Cybercriminals often increase their efforts during the traditional Christmas holidays and often take advantage of the flood of ‘new’ online shoppers and the general chaos of this buying time of year.
Do not let cybercriminals steal your ho
Activity Summary - Week Ending on 28 January 2022:
- Red Sky Alliance identified 21,120 connections from new IP’s checking in with our Sinkholes
- Intern LLC in Moscow hit
- Analysts identified 5,665 new IP addresses participating in various Botnets
- AvosLocker Ransomware
- Wormable Windows Vulnerability
- Nmap
- Belarus Trains hit
- Canada mad at Russia
- QR Code Confusion
- 22% Gone Phishing
- Vessel Impersonation
Link to full report: IR-22-028-001_weekly028.pdf
