government Archives

EMEA and APAC governments targeted in widespread credential harvesting campaign

Cyjax analysts have uncovered a large credential harvesting campaign targeting multiple government departments in APAC and EMEA countries. Over 50 hostnames were analysed, many of which were posing as the Ministry of Foreign Affairs, Ministry of Finance, or Ministry of Energy, in various countries such as Uzbekistan, Belarus, and Turkey; as well as the Main …

EMEA and APAC governments targeted in widespread credential harvesting campaign Read More »

Phishing: The Original Pandemic

Blog / By Cymon

Phishing is nothing new: it has been around in some form since the earliest days of the internet and before – even postal mail had its own forms of phishing (and still does). Since the turn of the millennium, however, online services have boomed, creating an ever-increasing pool of targets for convincing phishing lures intended …

Phishing: The Original Pandemic Read More »

Credential harvesting campaign targets government, military, and private sector organisations

Blog / By William Thomas

Cyjax analysts have uncovered a mass credential harvesting campaign targeting a wide range of sectors, including government, military, law enforcement, healthcare, finance, technology, manufacturing, and energy. Key campaign attributes Malicious use of the SendGrid email marketing service to distribute URLs to the landing pages. Phishing emails leverage an image with an embedded URL that masquerades …

Credential harvesting campaign targets government, military, and private sector organisations Read More »

Cyjax’s Top 10 of 2020

Blog / By William Thomas

2020 has seen a wide range of attacks and the evolution of the threat landscape. Ransomware attacks have dominated the headlines, alongside state-sponsored APT groups targeting the global COVID-19 response effort. New threat actors have emerged, and well-established groups have persisted undeterred, using upgraded tactics, techniques, and procedures (TTPs). #1 Global malicious email campaigns Throughout …

Cyjax’s Top 10 of 2020 Read More »

Cyjax Geopolitical Podcast – July 2020 – The Blog

Blog, Podcasts / By Tristan de Souza

This month, Cyjax CISO, Ian Thornton-Trump, and Head of Editorial, Tristan de Souza, tackle Russian interference, threat intelligence failure, a Microsoft vulnerability with – shock, horror – wormable potential, the hijacks of numerous high-profile Twitter accounts, and a chat app being used for cyber-espionage in the Middle East. All of our previous podcasts and blogs …

Cyjax Geopolitical Podcast – July 2020 – The Blog Read More »

Geopolitical and Cybersecurity Weekly – 22 June 2020

Blog / By Tristan de Souza

COVID-19 Cybersecurity Update Citizens Advice in the UK has warned users not to fall for a new scam campaign that is sending fake messages purportedly from the UK government. The messages can come in the form of calls, text messages, or emails in relation to the new NHS test and trace service. Citizens Advice has …

Geopolitical and Cybersecurity Weekly – 22 June 2020 Read More »

Cyjax Geopolitical Podcast – April 2020 – The Blog

Blog / By Tristan de Souza

Check out the podcast on our YouTube channel here April in the UK was spent entirely in lockdown. As a result, this is the second vlog we’ve had to record over Skype – COVID-19 once again dominated proceedings. The effects of the pandemic on the global level have become clearer in the last month. The …

Cyjax Geopolitical Podcast – April 2020 – The Blog Read More »