CyberSec Roundup
A synopsis of the latest Cybersecurity News
Vishing Attacks on the Rise
The FBI has warned businesses that there has been an increase in voice phishing attacks for American and internationally based employees. The social engineering attack has been used to trick employees into revealing their VPN and network credentials via a phishing website. With more employees working remotely due to COVID-19 restrictions, everyone needs to be more cautious.
Russia ready for SolarWinds Blowback
The American authorities have stated that the SolarWinds attack was carried out by a Russian state-sponsored APT group. As the White House has warned that there would be retaliation for the attack, the Russian government has alerted their local businesses to harden their network security. They have released a list of measures that organizations should take, such as using MFA, avoiding 3rd party DNS servers and updating their incidence response plans.
Malwarebytes Emails Accessed
Malwarebytes disclosed that some of their emails were accessed by the same APT group behind the SolarWinds attack. While Malwarebytes doesn’t use SolarWinds, the attackers managed to intrude their email system via their Office 365 and Azure environments. However only a small subset of their emails were accessed, and their security software is still safe to be used.
SonicWall Hacked
The networking hardware manufacturer SonicWall disclosed that their network was recently hacked by a very sophisticated threat actor. The attackers were able to exploit zero-day vulnerabilities within SonicWall’s own products to carry out the attack, more specifically, the NetExtender VPN and Secure Mobile Access gateways. No patches are currently available, but SonicWall has released a series of measures to be taken to mitigate the threat.
By: David Pinder
IT & Security Consultant
Certified Ethical Hacker
