FBI

Ransomware Review – November 2021

The Snatch ransomware operators, a group that began operating in 2019 and disappeared in 2020, has resurfaced after almost a year of silence. The group has created a new leaks blog and has already added 10 new victims. They are also one of the multiple groups about which Native American tribes have been warned. An […]

Ransomware Review – November 2021 Read More »

Background image

Financial spear-phishing campaigns pushing RATs

On 12 May, the FBI Cyber Division issued a TLP:WHITE Private Industry Notification. This concerned a spear-phishing campaign distributing messages that masqueraded as financial institutions to push fake Windows apps containing remote access Trojans (RATs). The most recent attack impersonated a US-based financial institution to target an American renewable energy company. The spear-phishing email referenced

Financial spear-phishing campaigns pushing RATs Read More »

Darknet Review – Q4 2020

2020 was a year of instability around the world, and the darknet was not unaffected. COVID-19 had a large part to play in the turmoil of the cybercriminal underworld, as drug vendors had their supply chains disrupted. Delays in both international and domestic transport led to many vendors temporarily halting their operations. Beyond the pandemic,

Darknet Review – Q4 2020 Read More »

Geopolitical and Cybersecurity Weekly – 15 June 2020

COVID-19 Cybersecurity Update The FBI has reported on the most common types of fraud during the pandemic. The Internet Crime Complaint Center (IC3) received nearly as many complaints in the first half of 2020 (about 320,000) as in the entirety of 2019 (about 400,000). Criminals continue to peddle counterfeit personal protective equipment (PPE) and fraudulent

Geopolitical and Cybersecurity Weekly – 15 June 2020 Read More »

Geopolitical and Cybersecurity Weekly – 26 May 2020

COVID-19 Cybersecurity Update The US Federal Trade Commission (FTC) has warned users about scam coronavirus (COVID-19) contact tracing texts. There has been an increasing number of SMiShing messages asking users to click a malicious link. The FTC claims that clicking the link will download software onto the device, enabling scammers access to personal and financial

Geopolitical and Cybersecurity Weekly – 26 May 2020 Read More »

Winning with Cyber Threat Intelligence: Taking a More Personal View

In the final article of our trilogy (see the previous articles here and here), we investigate how a cyber threat intelligence (CTI) analyst and programmes associated with this specialism, provide insight about physical and cyber threats to your organisation. The value of these insights is reflected in the ‘wins’, which come as a result of

Winning with Cyber Threat Intelligence: Taking a More Personal View Read More »

Geopolitical and Cybersecurity Weekly – 27 April 2020

COVID-19 cybersecurity update In the face of the continuing coronavirus pandemic, individual cybercriminals and groups have re-geared their operations to use coronavirus lures. Recent research revealed a 148 per cent month-on-month increase in ransomware attacks from February to March, alongside a spike in attacks on financial institutions. Over a dozen state-sponsored threat groups have been

Geopolitical and Cybersecurity Weekly – 27 April 2020 Read More »

Global and Cybersecurity Weekly – 20 April 2020

COVID-19 Cybersecurity Update The government of North Rhine-Westphalia (NRW), a province in western Germany, has reportedly lost between €31.5 million up to €100 million in emergency aid following a COVID-19 phishing campaign. The threat actors behind the campaign created fake copies of the official website used to distribute COVID-19 financial aid by the NRW Ministry

Global and Cybersecurity Weekly – 20 April 2020 Read More »

Scroll to Top