How Safe is your Organisation from Compromised Passwords

Sep 26 2023

Gone Phishing Banner

Welcome to Gone Phishing, your daily cybersecurity newsletter thatโ€™s got a 10-point lead on the cybercriminals like Trump on Biden ๐Ÿ‘€๐Ÿ™ˆ

Todayโ€™s hottest cybersecurity news stories:

  • ๐Ÿ”‘ Compromised credentials: theyโ€™ll come back and bite you in the ass ๐Ÿ‘

  • ๐Ÿ“ฑ TikTok flooded w/ fake celebrity photo leak videos w/ Temu referral codes ๐ŸŽฅ

  • โœˆ๏ธ Honestyโ€™s the best policy: Air Canada admits breach of employee records ๐Ÿ“„

You want compromise, how's this? Twenty years in the can I wanted manicott', but I compromised. I ate grilled cheese off the radiator instead ๐Ÿ˜‘ #Sopranos

๐Ÿ” Boosting Password Security: Protect Your Organisation!

Hey there, cyber warriors! ๐Ÿ‘‹ Are your organisation's passwords strong enough to fend off sneaky cyber attackers? ๐Ÿฆนโ€โ™‚๏ธ Turns out, standard password rules might not be enough. ๐Ÿ˜ฒ

๐Ÿ’ก Beyond Complexity: Did you know that 83% of compromised passwords meet standard complexity requirements? ๐Ÿคฏ Bad actors are using billions of stolen credentials to sneak into accounts. ๐Ÿ•ต๏ธโ€โ™€๏ธ

๐Ÿ’ฐ The Dark Web Market: Stolen passwords are hot commodities on the dark web. ๐Ÿ˜ˆ Remember Dropbox and LinkedIn? Millions of passwords were up for grabs. ๐Ÿ’ป

๐Ÿ’ฅ Credential Stuffing: This easy-peasy attack method is on the rise. ๐Ÿ˜ฑ Attackers use automated tools to test stolen passwords everywhere. ๐ŸŒ

๐Ÿค– Sophisticated Bots: Bots make it look like many people are trying to log in from different places. Sneaky, right? ๐Ÿค–

๐Ÿ’” Why It Matters: Once they're in, hackers can drain accounts, steal info, and cause chaos. ๐Ÿ˜“

๐Ÿ›ก๏ธ Top Tips:

  • โš”๏ธ Defending Your Castle: Protect your users! Detect compromised passwords and act fast. ๐Ÿš€

  • ๐Ÿ” Check Your Credentials: Over 15 billion stolen credentials lurk on the dark web. ๐Ÿ˜จ Are yours there too? ๐Ÿ•ต๏ธ

  • ๐Ÿ”’ Specops to the Rescue: Use Specops Password Auditor for a quick check of your passwords. ๐Ÿ›ก๏ธ- Product Link

  • ๐Ÿš€ Next-Level Protection: Upgrade to Specops Password Policy for robust security. โœจProduct Link

  • ๐Ÿšจ Real-Time Alerts: Get notified ASAP if your passwords are compromised. ๐Ÿ“ฉ

  • ๐Ÿ›ก๏ธ Stay Ahead: Prevent future attacks with continuous scans and real-time protection. ๐Ÿšซ

  • ๐Ÿ”ฅ Act Now: Run a free password vulnerability check today! ๐Ÿง

Don't wait for a breachโ€”protect your organisation and users from the growing threat of credential stuffing. ๐Ÿ’ช๐Ÿ”’

Alternatively there is a free consumer option : Google Password Checker

I came across ZZZ money club during the crypto market bull run when everyoneโ€™s a winner, even during the bear market this discord group has been amazing at giving information on projects and ways to make passive income in various ways.

The group is very active and everyone in this private discord group is very chatty and helpful.

Its run by Yourfriendandy and Decadeinvestor, you can find them here on YouTube, both top guys with great content.

If you are interested in joining the group you can through the link below.

TikMock ๐ŸŽญ

๐Ÿ“ข Beware: TikTok Scam Alert! ๐Ÿšซ

๐Ÿ” TikTok is buzzing with videos promoting fake celebrity photo leaks, all in the name of earning rewards from the online megastore, Temu. ๐Ÿ˜ฑ

๐Ÿ›’ What's Temu?: Temu offers millions of products at rock-bottom prices, mostly shipped from China. Opinions on the site are divided, with some crying "scam" and others snagging cheap goodies. ๐ŸŒŸ

๐Ÿ’ฐ Referral Rewards: Temu lures customers with referral codes and links. Share them with friends and fam to earn store credit, freebies, or reward points. ๐ŸŽ

๐ŸŽฎ Game On: Their rewards system lets you play games for more store credit, which you can cash in or use for shopping. ๐Ÿ’ณ

๐Ÿ‘€ The Dark Twist: TikTok's darker sideโ€”scammers are tricking users with fake leaks of celebs like Olivia Rodrigo and Hailie Deegan. ๐Ÿ“ธ

๐Ÿšจ The Scam: They claim sensitive pics have leaked, urging you to download Temu and enter their referral code. Don't fall for it! ๐Ÿšซ

๐ŸŒ Stay Alert: Fake leaks can lead to malware. If you spot such videos, steer clear of suspicious downloads. ๐Ÿฆ 

๐Ÿ”” No Response Yet: TikTok and Temu were contacted, but no word from them at time of writing. Stay safe, TikTokers! ๐Ÿ“ฃ

Stay vigilant, TikTok fam! ๐Ÿง Don't let scammers spoil the fun.

๐Ÿ—ž๏ธ Extra, Extra! Read all about it!

Every few weeks, we carefully select three hot newsletters to show you. Reputation is everything, so any links we share come from personal recommendation or carefully researched businesses at the time of posting. Enjoy!

  • ๐Ÿ’Šย HealthHack:ย Tech is making it easier than ever to reach your fitness goals, from wearable devices to nutrition apps, this newsletter does the research for you, get all the latest health tech gadgets delivered to your inbox.ย 

  • โ‚ฟ Crypto Nutshell: A well written and beautifully designed newsletter giving you the lowdown on crypto and web3, highly recommend if interested to get up to date info on the crypto/web3 market.

  • ๐Ÿง ย Big Brain: Trending AI news, jobs and tools delivered in 3 minutes per day.

Let us know what you think!

Canada Airball ๐Ÿ€๐Ÿ™ˆ

๐Ÿ” Air Canada's Recent Security Incident: Here's What You Need to Know! ๐Ÿ›ซ

๐Ÿšจ Air Canada, the largest airline in Canada, faced a cyber security incident recently. ๐Ÿ˜ฑ

๐Ÿ”’ What Happened: Hackers briefly accessed one of Air Canada's internal systems, snagging limited personal info of some employees and certain records. ๐Ÿ˜จ Thankfully, customer data remained untouched.

โœˆ๏ธ Flight Operations Safe: Good newsโ€”flight operations and customer systems were not affected. Phew! ๐Ÿ™Œ

๐Ÿ‘ฎโ€โ™‚๏ธ Taking Action: Air Canada acted swiftly, contacting affected parties and law enforcement. They assured us that all systems are back to normal.

๐Ÿ›ก๏ธ Strengthening Security: The airline is ramping up its security measures with the help of global cyber security experts. They're committed to safeguarding our data in the future. ๐ŸŒ

โ“ Still a Mystery: Air Canada didn't spill the beans on what caused the incident. ๐Ÿ•ต๏ธโ€โ™€๏ธ They've chosen to keep mum about it.

๐Ÿ”™ Not the First Time: This isn't Air Canada's first cyber rodeo. Back in 2018, unauthorised access hit 20,000 mobile app users' profiles. As a precaution, they locked out 1.7 million mobile app accounts.

Stay cyber-aware, travellers! โœˆ๏ธ Your data's in good hands as Air Canada amps up its security game. Thatโ€™s what we like to hear, eh?

So long and thanks for reading all the phish!

Recent articles