Abuse of file-sharing services aids phishing campaigns, yet again!

Abuse of file-sharing services aids phishing campaigns, yet again!

by Rodman Ramezanian · November 17, 2022

Email has been the lifeblood of enterprise communication and collaboration for decades; there’s simply no doubt about it. Email, however, is also still one of the most effective ways to distribute malware or ransomware, responsible for over 90% of malware deliveries and infections.

Read More
Phishing. Credential Theft. Exfiltration. Extortion. The Saga Continues.

Phishing. Credential Theft. Exfiltration. Extortion. The Saga Continues.

by Rodman Ramezanian · August 25, 2022

Hot on the heels of numerous high-profile breaches at the hands of cybercrime gangs, Cisco undoubtedly takes no pleasure in confirming a breach of its corporate network in a recent extortion attack from the Yanluowang ransomware group.

Read More
(Ransom)Where are Office 365 users now vulnerable?

(Ransom)Where are Office 365 users now vulnerable?

by Rodman Ramezanian · August 3, 2022

A common misconception among enterprises and their users leads the belief that cloud environments are immune to threats of ransomware. However, in a recent discovery made by Proofpoint researchers, malicious actors can instigate ransomware attacks by exploiting Microsoft Office 365 file version backups – made available thanks to the platform’s native file “auto-save” feature.

Read More
It’s Plane To See – Unsecured Servers Can Put Lives at Stake

It’s Plane To See – Unsecured Servers Can Put Lives at Stake

by Rodman Ramezanian · July 6, 2022

An unsecured server has exposed sensitive data belonging to airport employees across Colombia and Peru. The AWS S3 buckets containing approximately 3TB of data dating back to 2018 consisted of airport employee records, ID card photos, and personally identifiable information (PII), including names, photos, occupations, and national ID numbers.

Read More
Learnings from Lapsus$ — the Advanced Persistent Teenagers?

Learnings from Lapsus$ — the Advanced Persistent Teenagers?

by Rodman Ramezanian · June 9, 2022

The new hot name in ransomware attacks is Lapsus$. If you haven’t heard of them before, you’ve probably heard of some of the companies they attacked, including Nvidia, Samsung, Okta, and Microsoft – just to name a few. For the uninformed, Lapsus$ is a hacking group that focuses on data theft and extortion.

Read More
Not-So-Harmless Chats — MS Teams Used To Distribute Malware

Not-So-Harmless Chats — MS Teams Used To Distribute Malware

by Rodman Ramezanian · May 19, 2022

According to reporting from Bleeping Computer, threat actors are ramping up their efforts against Microsoft Teams for malware distribution by planting malicious documents in chat threads, ultimately resulting in victims executing Trojans that hijack their corporate systems.

Read More
Subscribe to the SSID