qr code (5)

13193143874?profile=RESIZE_400xThe country's National Cyber Security Centre (NCSC) has uncovered a new malware campaign targeting Swiss residents through fake postal letters. The scam involves fraudulent correspondence disguised as official communication from MeteoSwiss, the Federal Office of Meteorology and Climatology. It urges recipients to scan a QR code and download a malicious weather app for Android devices.

See: https://redskyalliance.org/xindustry/malicious-qr-codes

The fake “Severe Weather Warning App” app mimics t

12287714671?profile=RESIZE_400xResearch from Cofense has found that user credentials are being targeted by hackers and scammers on a scale never seen before.  Indicators of compromise (IoC), digital evidence of a cyber attack, for credential phishing have increased in Q3 by close to 45% over Q2, the company's report found.

IT Management Solutions - Compared to the Q3 period of 2022, IoCs of credential phishing are up 85% with PDFs being the most common malicious file extension attached to a phishing email.

Do not take the bai

12281558065?profile=RESIZE_400xWhat if a QR (Quick Response) code was shown on a TV advertising spot, and the company behind that commercial had malicious intent?  For example, the QR code displayed during the AD opened your phone's browser and automatically downloaded and installed a piece of ransomware.  Given the number of people who watch the televised events, the outcome of that attack could have been disastrous.   That is Quishing, fooling a person (or several people) into thinking something is harmless (or necessary),

10917748472?profile=RESIZE_400xWith minutes left in the holiday buying season, online shopping and gift-giving are at the top of many people's to-do lists.  But before you hit the "buy" button, it is important to remember that this time of year is also the highest time for cybercriminals.   Cybercriminals often increase their efforts during the traditional Christmas holidays and often take advantage of the flood of ‘new’ online shoppers and the general chaos of this buying time of year.

Do not let cybercriminals steal your ho

10053400461?profile=RESIZE_400xActivity Summary - Week Ending on 28 January 2022:

  • Red Sky Alliance identified 21,120 connections from new IP’s checking in with our Sinkholes
  • Intern LLC in Moscow hit
  • Analysts identified 5,665 new IP addresses participating in various Botnets
  • AvosLocker Ransomware
  • Wormable Windows Vulnerability
  • Nmap
  • Belarus Trains hit
  • Canada mad at Russia
  • QR Code Confusion
  • 22% Gone Phishing
  • Vessel Impersonation

 

Link to full report: IR-22-028-001_weekly028.pdf