CyberSec Roundup
A synopsis of the Latest Cybersecurity News
Phishing QuickBooks Customers
After receiving various reports from their customers, Intuit posted a security notice on their website about a phishing scam targeting their users. The malicious email attempts to fool customers that their existing plan has expired and get them to click on links in the email that would eventually allow the threat actors to take over the user’s account. Intuit has warned customers to delete and not open the email.
BYOD Guidance from NCSC
The National Cyber Security Centre is urging organizations to carefully review their BYOD policies. As more employees are working remotely, a BYOD policy offers advantages such as reducing costs of procuring new devices. However, there are security concerns around these devices, where a user could have more privileged access to company resources than a regular company-issued device normally would. This could result in a higher level of exposure for the company in the event one of the devices is compromised. Organizations need to carefully consider how these policies are implemented.
Russian Hackers are the Most Dangerous
Microsoft observed that 58% of all cyberattacks from nation-states were of Russian origin. The Microsoft Digital Defense Report also revealed that 32% of their attacks were effective in 2021, which is up from 21% in 2020. North Korea, Iran, and China were the next biggest culprits on the list, with 21% of attacks targeting consumers and 78% of the attacks targeting enterprises; the government was the most frequent target in the enterprise group.
By: David Pinder
IT & Security Consultant
Certified Ethical Hacker (Master)