Cyber security news for all

More

    The FBI warns corporate users of BEC attacks

    Since the beginning of the year there have been increasing phishing attacks on Business Email Compromises. Invitations are systematically seen to manage the user data. Fraudsters use controlled phishing kits for this, which can be obtained cheaply on the internet. Even though they only made up a small proportion of the various attack vectors, the financial damage for companies and institutions is getting worse.

    Private Sector Partners Should Pay Attention

    The Federal Bureau of Investigation warned private sector partners for administration, as part of the Business Email Compromise (BEC).The scams are initiated by managing the kits, the cloud enabled email services are being modified to compromise business email accounts and request or misdirect money transfers, according to the FBI in a private industry notification. The fraudsters mimick employees of injured organizations or their affiliates and attempt to redirect payments to the bank accounts they control. The messages do not contain malicious links or attachments, but the attackers attempt to deceive the email client, causing the recipient to view the email as legitimate. Social engineering plays the main role here. They also steal partner information that they can later use for other phishing attacks that will attract risk and more businesses. The highly targeted BEC attacks are extremely difficult to detect because they rarely contain a URL or a malicious attachment.

    – 85 percent of the BEC attacks take place on weekdays and would normally be dispatched during the normal business hours of the targeted company. The attackers wanted to use it to simulate typical business processes in order to make them appear as unsuspicious as possible.

    – The average BEC attack targets no more than five employees.

    –  Many of the BEC exploits are disguised as urgent requests, which supposedly required a quick response.

    Recent Articles

    Judge issues injunction against WeChat

    The US government wanted to take action against the app WeChat. A judge stood sideways. The app should disappear from the platforms in the...

    Mail provider Tutanota becomes target of cyber attacks

    Over the weekend, ongoing DDoS attacks and an infrastructure problem resulted in downtime for hundreds of users. While some were able to mitigate most...

    Amazon accounts are the new target of cyber criminals

    Amazon is a popular target for cyber criminals who want to exploit the trust and image of the company among its customers with emails....

    Hackers stole thousands of passport data in Argentina

    In response to millions of dollars ransom refused by the Argentine Immigration Service, a ransomware group released passport data from hundreds of thousands of...

    USA wants to improve cybersecurity of space systems

    CISA has published a table this week that summarizes Chinese activities against cybersecurity. Some attacks have succeeded and enabled hackers to gain a foothold...

    Related Stories

    Leave A Reply

    Please enter your comment!
    Please enter your name here

    Stay on op - Ge the daily news in your inbox