Stay Cyber-Safe this Shopping Season! ๐Ÿ›ก๏ธย 

Nov 16 2023

Gone Phishing Banner

Welcome to Gone Phishing, your daily cybersecurity newsletter that sends cybercriminals to #Rwanda no matter what the Supreme Court says ๐Ÿ™ˆ๐Ÿ’€๐Ÿ˜‚

  • ๐Ÿ’ณ Credit card cybercrime is on the rise just in time for Xmas ๐Ÿ‘จโ€๐Ÿ’ป

  • ๐Ÿ“ And now theyโ€™re coming for your file transfer services ffs โš ๏ธ

  • ๐Ÿ—„๏ธ Rackspace ransomwared out of $5m in 2022 cyber attack ๐Ÿ’ฐ

So here it is Merry Hackmas โ˜ ๏ธ

 

giphy.com

 

๐Ÿ›๏ธ Stay Cyber-Safe this Shopping Season! ๐Ÿ›ก๏ธย 

As the shopping frenzy kicks in, it’s not just the joy of discounts that’s on the riseโ€”cybercriminals are gearing up too! ๐Ÿ’ป๐Ÿ‘พ Beware of credit card skimming, a growing threat lurking in the shadows of online stores.ย 

๐Ÿšจ The Kritec Campaign Unveiled!ย 

Keep an eye out for the Kritec campaign, a notorious credit card skimming operation we’ve been tracking since March 2023. ๐Ÿ•ต๏ธโ€โ™‚๏ธ With hundreds of stores compromised, this threat has resurged in October, just in time for the holiday season. ๐Ÿ˜ฑย 

๐Ÿ›ก๏ธ Top Tipsย 

๐Ÿ‘€ Inspect the Website: If it looks outdated or neglected, steer clear! ๐Ÿšซย 

๐Ÿ›ก๏ธ Web Protection Tools: Use antivirus products with web protection to spot malicious domains and IPs.ย 

๐ŸŒ Stay Updated:ย ย 

Regularly update your website’s CMS and plugins to avoid vulnerabilities.ย 

๐Ÿ‘ฉโ€๐Ÿ’ป Malwarebytes to the Rescue!ย 

For an extra layer of defence, consider Malwarebytes Premium with web protection and the Browser Guard extension for advanced in-browser detection.ย 

Happy shopping, but safer shopping! ๐ŸŽ‰๐Ÿ›’ย 

 

Clean your Mac or PC

 

Cybersecurity is more important than ever, and your Mac or PC are no exception. Over time, your Mac or PC can accumulate junk files, malware, and other threats that can slow it down and make it vulnerable to attack.

That’s where MacPaw comes in. MacPaw offers a suite of easy-to-use apps that can help you clean, optimize, and secure your Mac. With MacPaw, you can:

  • Remove junk files and malware to free up space and improve performance

  • Protect your privacy by erasing sensitive data

  • Optimize your startup settings to speed up boot times

  • Manage your extensions and apps to keep your Mac or PC running smoothly

Since 2008 MacPaw is trusted by over 30 million users worldwide, and it’s the perfect solution for keeping your Mac or PC safe and secure.

MOVEit or lose it ๐Ÿ’€

 

giphy.com

 

๐Ÿšจ Cybersecurity Alert: Attacks on File-Transfer Services Surge! ๐Ÿ“‚๐Ÿ’ปย 

๐Ÿ”’ In a wave of attacks that started in March, MOVEit, GoAnywhere, and IBM Aspera Faspex faced supply-chain attacks, with Clop ransomware exploiting a zero-day vulnerability in MOVEit and GoAnywhere. The aftermath, ongoing for five months, reveals a disturbing trend of attacks on file-transfer services.ย 

๐ŸŽฏ Why Are They Targeted?ย 

According to Jess Burn, principal analyst at Forrester, these services are an opportunistic attack vector due to the high-value data they handle. Beyond phishing credentials, they contain a “treasure trove” for threat actorsโ€”data for extortion or potential corporate espionage.ย 

๐Ÿ’ผ Who’s at Risk?ย 

Major financial institutions, education providers, government agencies, healthcare, insurance, and law firms are among the direct and indirect victims.ย 

๐Ÿ” Vulnerability Spotlight:ย 

Intel 471 has identified 17 vulnerabilities in managed file-transfer products since 2018, with 51 classified as high risk. As these tools become more prevalent, the number of vulnerabilities for threat actors to exploit increases.ย 

โš ๏ธ Implicit Trust Issue:ย 

Mauricio Sanchez from Dell’Oro Group warns of a false sense of security, emphasising the significant consequences of third-party handling of corporate data during transfers.ย 

๐Ÿ›ก๏ธ Staying Secure:ย 

Be vigilant, update systems regularly, and consider the broader implications of using file-transfer services. ๐Ÿ’ช๐ŸŒย 

๐ŸŽฃ Catch of the Day!! ๐ŸŒŠ๐ŸŸ๐Ÿฆž

๐Ÿƒย The Motley Fool: โ€œFool me once, shame on โ€” shame on you. Fool me โ€” you can’t get fooled again.โ€ Good olโ€™ George Dubya ๐Ÿ˜‚ Let us tell whoโ€™s not fooling around though; thatโ€™s the Crรผe ๐Ÿ‘€ at Motley Fool. Youโ€™d be a fool (alright, enough already! ๐Ÿ™ˆ) not to check out their Share Tips from time to time so your savings can one day emerge from their cocoon as a beautiful butterfly! ๐Ÿ› Kidding aside, if you check out their website theyโ€™ve actually got a ton of great content with a wide variety of different investment ideas to suit most budgets ๐Ÿค‘ย (LINK)


๐Ÿšตย Wander: Find your happy place. Cue Happy Gilmore flashback ๐ŸŒ๏ธโ›ณ๐ŸŒˆ๐Ÿ•Š๏ธ Mmmm Happy Placeโ€ฆ ๐Ÿ˜‡ So, weโ€™ve noticed a lot of you guys are interested in travel. As are we! We stumbled upon this cool company that offers a range of breath-taking spots around the United States and, honestly, the website alone is worth a gander. When all you see about the Land of the free and the home of the brave is news of rioting, looting and school shootings, itโ€™s easy to forget how beautiful some parts of it are. The awe-inspiring locations along with the innovative architecture of the hotels sets Wander apart from your run of the mill American getaway ๐Ÿž๏ธ๐Ÿ˜ย (LINK)


๐ŸŒŠย Digital Ocean: If you build it they will come. Nope, weโ€™re not talking about a baseball field for ghosts โšพ๐Ÿ‘ป๐Ÿฟ (Great movie, to be fair ๐Ÿ™ˆ). This is the Digital Ocean whoโ€™ve got a really cool platform for building and hosting pretty much anything you can think of. If you check out their website youโ€™ll find yourself catching the buzz even if you canโ€™t code (guilty ๐Ÿ˜‘). But if you can and youโ€™re looking for somewhere to test things out or launch something new or simply enhance what youโ€™ve got, weโ€™d recommend checking out their services foโ€™ sho ๐Ÿ˜‰ And how can you not love their slogan: Dream it. Build it. Grow it. Right on, brother! ๐ŸŒฟย (LINK)

Rack city bitch, Rack Rack city bitch ๐ŸŽถ

ouch GIF

 

Giphy

 

๐Ÿ’ฐ Rackspace Faces $5 Million Fallout from Ransomware Attack! ๐Ÿšจ๐Ÿ’ปย 

In a recent 10-Q filing with the SEC, Rackspace Technology revealed $5 million in expenses incurred during the first nine months of this year due to a ransomware attack on its Hosted Exchange business in December 2022.ย ย 

The attack, attributed to the Play ransomware group, impacted 1% of the company’s revenue, leading to the discontinuation of the Hosted Exchange product. Rackspace has since shifted affected customers to Microsoft 365.ย 

๐Ÿ” Expenses Breakdown:ย 

The $5 million includes costs for remediation, investigations, legal services, and supplemental staff resources to assist customers affected by the breach.ย 

๐Ÿ›ก๏ธ Loss-Recovery Insurance:ย 

While Rackspace anticipates $5.4 million in loss-recovery insurance, it warns that reimbursement timing may differ from expense recognition timing.ย 

โš–๏ธ Legal Battles Loom:ย 

Rackspace is currently facing multiple lawsuits related to the attack, with costs for incident remediation potentially increasing. The company is vigorously defending itself in court but believes the cases won’t materially impact its financial position.ย 

๐Ÿค Litigation Stance:ย 

A company spokesperson mentioned they don’t comment beyond regulatory filings. Stay informed and vigilant in the ever-evolving landscape of cybersecurity! #RansomwareImpact #CybersecurityUpdate ๐Ÿ’ป๐Ÿ”’ย 

๐Ÿ—ž๏ธ Extra, Extra! Read all about it!

Every few weeks, we carefully select three hot newsletters to show you. Reputation is everything, so any links we share come from personal recommendation or carefully researched businesses at the time of posting. Enjoy!

Sponsored

Perfect. Travel. Only.

A New Destination Daily with all the best places to stay, things to do, and places to eat.

Subscribe

  • The GeekAI: A daily 3 min newsletter on what matters in AI, with all the new AI things coming to market its good to stay ahead of the curve.

  • Libby Copa:ย The Rebel Newsletter helps writers strengthen their writing and creative practice, navigate the publishing world, and turn their art into an act of rebellion.

  • Techspresso:ย Receive a daily summary of the most important AI and Tech news, selected from 50+ media outlets (The Verge, Wired, Tech Crunch etc)

Let us know what you think!

So long and thanks for reading all the phish!

Recent articles