Introduction and an Email Address Tip Trevor Collins recently blogged about a Netflix phishing attempt he caught on to. I received a phish-y Netflix email as well and I wanted to take the time to blog about the email to help add additional value of how to spot such emails. Earlier this week I also wrote about email spoofing and phishing, and what to look for in identifying … [Read more...]
Mutually Assured Destruction, in Cyberspace?
With Cold War 2.0 in full swing with Russia, it’s time to revisit the idea of “mutually assured destruction” (M.A.D.). In June, Axios referred to two New York Times articles that openly talked about US Cyber Command activities against Iran and Russia. They referred to it as "a lower-level 21st century version of the ‘mutually assured destruction’ policy between the U.S. and the … [Read more...]
How to Spot Spoofed or Phishing Emails on Your Mobile Device
Full disclaimer: spotting spoofed or phishing emails on a mobile device like a cell phone or a tablet isn’t as straightforward as on a laptop or desktop. As you’ll see shortly, mobile clients can hide a lot of the telltale signs of a phish. This post will use a spoofed email claiming to be from our CTO Corey Nachreiner, sent to Trevor and myself, with Marc cc’d. The main focus … [Read more...]
Russian Hackers Use Steganography to Bypass Antivirus
A recent article by zdnet explains how hackers have started using steganography to hide malicious code inside of audio .wav files. We know this type of evasion well, but there were other reports of this type of antivirus evasion published in the last few months, indicating increase use. The files can pass through many firewalls undetected since audio files aren't normally … [Read more...]
Big Healthcare Provider Unprepared For Ransomware Hit
As reported by Tuscaloosa News, the three hospitals in Alabama recently hit with ransomware failed in their security and their response to the incident. While we don't know about the surrounding circumstances, the hospitals did receive a decryption key to recover their data – a decryption key they likely received by paying the attacker’s ransom. Based off what we know, these … [Read more...]
