Oct 02 2023
Welcome to Gone Phishing, your daily cybersecurity newsletter that puts the screws into cybercriminals, like #BBCLauraK with Rishi Sunak ๐ Cโmon, answer the freaking question you jammy dodger! ๐
Todayโs hottest cybersecurity news stories:
๐ฐ Dual Ransomware attacks are on the up in the U.S., says FBI ๐ฎ
๐ Researchers can extract sounds from still images on phones ๐ฑ
๐ฐ Fort Lauderdale gets scammed out of $1.2m by fake invoice ๐ซ
๐ The FBI has issued a warning about a concerning trend in cyberattacks targeting businesses. Since July 2023, hackers have been launching dual ransomware attacks on the same victims. ๐ฑ
๐ These attacks involve using two different ransomware variants, such as AvosLocker, Diamond, Hive, Karakurt, LockBit, Quantum, and Royal. ๐ These variants are deployed in different combinations, making it even more challenging to defend against.
๐ While the scale of these attacks is unclear, they typically occur within 48 hours to 10 days of each other. ๐จ
๐คฏ What's alarming is the increased use of custom data theft and malware to pressure victims into paying up. This double ransomware approach results in data encryption, exfiltration, and financial losses.
๐ Dual ransomware attacks aren't entirely new, with instances dating back to May 2021. Recent cases include a triple attack on an automotive supplier and a 3AM ransomware assault earlier this month.
๐ก๏ธ Top Tips
To protect your organisation from dual (or single for that matter!) ransomware attacks you should consider the followingโฆ
๐พ Strengthen defences with offline backups
๐ Monitor remote connections
๐ Use multi-factor authentication
๐ต๏ธ Audit user accounts
๐ Segment networks
Stay safe and stay vigilant against these evolving cyber threats! ๐ก๏ธ๐
I came across ZZZ money club during the crypto market bull run when everyoneโs a winner, even during the bear market this discord group has been amazing at giving information on projects and ways to make passive income in various ways.
The group is very active and everyone in this private discord group is very chatty and helpful.
Its run by Yourfriendandy and Decadeinvestor, you can find them here on YouTube, both top guys with great content.
If you are interested in joining the group you can through the link below.
๐ธ Did you know your smartphone camera can leak sounds? ๐ข Academic researchers have uncovered a fascinating technique to extract sounds from photos taken with smartphone cameras! ๐คฏ
๐น How does it work? The movement of camera parts, like rolling shutters and moving lenses, creates hidden sounds. These sounds are then modulated into images as imperceptible distortions. ๐ท
๐ What's the catch? This "optical-acoustic side channel" doesn't need a direct line of sight or objects in view. ๐ฑ
๐ค Machine learning comes into play! Researchers used it to identify different speakers, genders, and spoken digits. They trained their model using thousands of samples from various smartphones, like Google Pixel, Samsung Galaxy, and Apple iPhone. ๐ฑ
๐ฏ Results? Impressive! Accuracy rates of 80.66% for digit recognition, 91.28% for speaker identity, and 99.67% for gender detection. ๐ค๐ง๐ฉ
๐ How to protect yourself? Lower-quality cameras leak less info, and keeping your phone away from speakers helps. Smartphone makers can enhance security with higher shutter frequencies, tougher lens mechanisms, and more.
Stay cautious and informed about the evolving tech landscape! ๐๐
Every few weeks, we carefully select three hot newsletters to show you. Reputation is everything, so any links we share come from personal recommendation or carefully researched businesses at the time of posting. Enjoy!
๐ย HealthHack:ย Tech is making it easier than ever to reach your fitness goals, from wearable devices to nutrition apps, this newsletter does the research for you, get all the latest health tech gadgets delivered to your inbox.ย
โฟ Crypto Nutshell: A well written and beautifully designed newsletter giving you the lowdown on crypto and web3, highly recommend if interested to get up to date info on the crypto/web3 market.
๐ง ย Big Brain: Trending AI news, jobs and tools delivered in 3 minutes per day.
Let us know what you think!
๐ข Fort Lauderdale, Florida, fell victim to a $1.2 million email scam earlier this month. ๐ฑ They thought it was a legitimate bill from Moss Construction for their new police headquarters. But it turned out to be a scam! ๐๏ธ
๐ต๏ธ The fraudsters posed as Moss Construction, sent an ACH payment request, and even attached a blank check. Accounts Payable thought it checked out since the names matched corporate records. ๐
๐ธ The payment, made on Sept. 14, was a significant one for the $119 million construction project approved by residents in 2019.
๐ Impersonation scams like this are becoming all too common, with consumers losing billions to fraud in 2022. ๐
๐๏ธ City governments, especially in Florida, are facing a surge in business email compromise and phishing scams. ๐ก
๐ Fort Lauderdale is working to recover the money with their bank, but it might take some time. Stay vigilant, folks! ๐
Protect yourself from scams and stay cautious online! ๐ก๏ธ๐ป Speak to you tomorrow, cyber squad ๐
So long and thanks for reading all the phish!