Nov 16 2023
Welcome to Gone Phishing, your daily cybersecurity newsletter that sends cybercriminals to #Rwanda no matter what the Supreme Court says ????????????
???? Credit card cybercrime is on the rise just in time for Xmas ????????
???? And now they’re coming for your file transfer services ffs ⚠️
????️ Rackspace ransomwared out of $5m in 2022 cyber attack ????
giphy.com
As the shopping frenzy kicks in, it’s not just the joy of discounts that’s on the rise—cybercriminals are gearing up too! ???????? Beware of credit card skimming, a growing threat lurking in the shadows of online stores.
???? The Kritec Campaign Unveiled!
Keep an eye out for the Kritec campaign, a notorious credit card skimming operation we’ve been tracking since March 2023. ????️♂️ With hundreds of stores compromised, this threat has resurged in October, just in time for the holiday season. ????
????️ Top Tips
???? Inspect the Website: If it looks outdated or neglected, steer clear! ????
????️ Web Protection Tools: Use antivirus products with web protection to spot malicious domains and IPs.
???? Stay Updated:
Regularly update your website’s CMS and plugins to avoid vulnerabilities.
???????? Malwarebytes to the Rescue!
For an extra layer of defence, consider Malwarebytes Premium with web protection and the Browser Guard extension for advanced in-browser detection.
Happy shopping, but safer shopping! ????????
Cybersecurity is more important than ever, and your Mac or PC are no exception. Over time, your Mac or PC can accumulate junk files, malware, and other threats that can slow it down and make it vulnerable to attack.
That’s where MacPaw comes in. MacPaw offers a suite of easy-to-use apps that can help you clean, optimize, and secure your Mac. With MacPaw, you can:
Remove junk files and malware to free up space and improve performance
Protect your privacy by erasing sensitive data
Optimize your startup settings to speed up boot times
Manage your extensions and apps to keep your Mac or PC running smoothly
Since 2008 MacPaw is trusted by over 30 million users worldwide, and it’s the perfect solution for keeping your Mac or PC safe and secure.
giphy.com
???? In a wave of attacks that started in March, MOVEit, GoAnywhere, and IBM Aspera Faspex faced supply-chain attacks, with Clop ransomware exploiting a zero-day vulnerability in MOVEit and GoAnywhere. The aftermath, ongoing for five months, reveals a disturbing trend of attacks on file-transfer services.
???? Why Are They Targeted?
According to Jess Burn, principal analyst at Forrester, these services are an opportunistic attack vector due to the high-value data they handle. Beyond phishing credentials, they contain a “treasure trove” for threat actors—data for extortion or potential corporate espionage.
???? Who’s at Risk?
Major financial institutions, education providers, government agencies, healthcare, insurance, and law firms are among the direct and indirect victims.
???? Vulnerability Spotlight:
Intel 471 has identified 17 vulnerabilities in managed file-transfer products since 2018, with 51 classified as high risk. As these tools become more prevalent, the number of vulnerabilities for threat actors to exploit increases.
⚠️ Implicit Trust Issue:
Mauricio Sanchez from Dell’Oro Group warns of a false sense of security, emphasising the significant consequences of third-party handling of corporate data during transfers.
????️ Staying Secure:
Be vigilant, update systems regularly, and consider the broader implications of using file-transfer services. ????????
???? The Motley Fool: “Fool me once, shame on — shame on you. Fool me — you can’t get fooled again.” Good ol’ George Dubya ???? Let us tell who’s not fooling around though; that’s the Crüe ???? at Motley Fool. You’d be a fool (alright, enough already! ????) not to check out their Share Tips from time to time so your savings can one day emerge from their cocoon as a beautiful butterfly! ???? Kidding aside, if you check out their website they’ve actually got a ton of great content with a wide variety of different investment ideas to suit most budgets ???? (LINK)
???? Wander: Find your happy place. Cue Happy Gilmore flashback ????️⛳????????️ Mmmm Happy Place… ???? So, we’ve noticed a lot of you guys are interested in travel. As are we! We stumbled upon this cool company that offers a range of breath-taking spots around the United States and, honestly, the website alone is worth a gander. When all you see about the Land of the free and the home of the brave is news of rioting, looting and school shootings, it’s easy to forget how beautiful some parts of it are. The awe-inspiring locations along with the innovative architecture of the hotels sets Wander apart from your run of the mill American getaway ????️???? (LINK)
???? Digital Ocean: If you build it they will come. Nope, we’re not talking about a baseball field for ghosts ⚾???????? (Great movie, to be fair ????). This is the Digital Ocean who’ve got a really cool platform for building and hosting pretty much anything you can think of. If you check out their website you’ll find yourself catching the buzz even if you can’t code (guilty ????). But if you can and you’re looking for somewhere to test things out or launch something new or simply enhance what you’ve got, we’d recommend checking out their services fo’ sho ???? And how can you not love their slogan: Dream it. Build it. Grow it. Right on, brother! ???? (LINK)
Giphy
In a recent 10-Q filing with the SEC, Rackspace Technology revealed $5 million in expenses incurred during the first nine months of this year due to a ransomware attack on its Hosted Exchange business in December 2022.
The attack, attributed to the Play ransomware group, impacted 1% of the company’s revenue, leading to the discontinuation of the Hosted Exchange product. Rackspace has since shifted affected customers to Microsoft 365.
???? Expenses Breakdown:
The $5 million includes costs for remediation, investigations, legal services, and supplemental staff resources to assist customers affected by the breach.
????️ Loss-Recovery Insurance:
While Rackspace anticipates $5.4 million in loss-recovery insurance, it warns that reimbursement timing may differ from expense recognition timing.
⚖️ Legal Battles Loom:
Rackspace is currently facing multiple lawsuits related to the attack, with costs for incident remediation potentially increasing. The company is vigorously defending itself in court but believes the cases won’t materially impact its financial position.
???? Litigation Stance:
A company spokesperson mentioned they don’t comment beyond regulatory filings. Stay informed and vigilant in the ever-evolving landscape of cybersecurity! #RansomwareImpact #CybersecurityUpdate ????????
Every few weeks, we carefully select three hot newsletters to show you. Reputation is everything, so any links we share come from personal recommendation or carefully researched businesses at the time of posting. Enjoy!
Sponsored
A New Destination Daily with all the best places to stay, things to do, and places to eat.
The GeekAI: A daily 3 min newsletter on what matters in AI, with all the new AI things coming to market its good to stay ahead of the curve.
Libby Copa: The Rebel Newsletter helps writers strengthen their writing and creative practice, navigate the publishing world, and turn their art into an act of rebellion.
Techspresso: Receive a daily summary of the most important AI and Tech news, selected from 50+ media outlets (The Verge, Wired, Tech Crunch etc)
Let us know what you think!
So long and thanks for reading all the phish!