CyberSec Roundup A synopsis of the Latest Cybersecurity News   Tesco hit with Cyber-Attack  Tesco’s website and mobile app were down last weekend, leaving many customers attempting to use their online services stranded. The company confirmed that they were the victim of a cyber-attack and their I.T. team is working to resolve the issue. At this time, Tesco does not[…]

CyberSec Roundup A synopsis of the Latest Cybersecurity News   Bitcoin popular with Ransomware Gangs   Based on suspicious activity reports filed to the government by American companies, The Treasury Department’s Financial Crimes Enforcement Network has determined that $5.2 billion in Bitcoin payments was made to ransomware groups since 1st January 2011. The ransomware groups have[…]

CyberSec Roundup A synopsis of the Latest Cybersecurity News   Phishing QuickBooks Customers    After receiving various reports from their customers, Intuit posted a security notice on their website about a phishing scam targeting their users. The malicious email attempts to fool customers that their existing plan has expired and get them to click on links[…]

CyberSec Roundup A synopsis of the Latest Cybersecurity News   Super Weak Passwords  According to data from the popular password breach site haveibeenpwned.com, superhero passwords are among the most common passwords used online. Superman, Batman and Spider-Man are the most popular ones showing up in breached datasets, and their secret identities are also quite popular,[…]

CyberSec Roundup A synopsis of the Latest Cybersecurity News   Bitcoin.org Hacked The Bitcoin.org website has been an informative resource about Bitcoin since 2011, but it was hacked last week. The hackers then used the legitimate site to scam visitors into a fake cryptocurrency giveaway.  The scam was only up for one day, but they[…]

CyberSec Roundup A synopsis of the Latest Cybersecurity News   South African Government Agency hit by Ransomware Attack The Department of Justice and Constitutional Development in South Africa confirmed that their network was hit with a ransomware attack early in September. As a result of their information systems being encrypted, many of the department’s electronic[…]

CyberSec Roundup A synopsis of the Latest Cybersecurity News   CISA warns of Microsoft Office Attacks CISA has alerted organizations to be aware of a remote code execution vulnerability found in Microsoft Office documents. Tracked as CVE-2021-40444, an attacker could gain control of a user’s system if they open a Microsoft Office document that has[…]

CyberSec Roundup A synopsis of the Latest Cybersecurity News   Conti Ransomware Hacking Exchange Servers Organizations with on-premise Exchange Servers are urged to ensure the latest security updates are applied to their servers, specifically the ones addressing the three vulnerabilities tracked as CVE-2021-34473, CVE-2021-34523, and CVE-2021-31207. The patches released in May prevent ProxyShell attacks which[…]

CyberSec Roundup A synopsis of the Latest Cybersecurity News   FBI issues warning about Hive Ransomware The FBI’s most recent Flash Alert is warning businesses about the Hive Ransomware group. They use various methods to compromise networks including phishing emails and infect them with ransomware once they are in. Organizations that fall prey are required[…]

CyberSec Roundup A synopsis of the Latest Cybersecurity News   Recruitment Call for Insider Threats A Nigerian threat actor is attempting to solicit employees to sabotage their companies’ networks with DemonWare ransomware. Their phishing campaign is promising potential accomplices $1 million in bitcoin, or 40% of the ransom, to deploy the ransomware on a company[…]