The UK is at ‘High Risk’ of Ransomware Attacks
The Joint Committee on National Security Strategy (JCNSS) published a report “A hostage to fortune: ransomware and UK National Security,” which revealed the UK’s lack of planning against ransomware attacks.
Targeted mainly at the critical cyber infrastructure of the UK government, the JCNSS report warns that a severe attack could disrupt the core of government services, healthcare, and child protection, which could lead to bringing the country to a ‘standstill’.
Google Forms Leveraged for Phishing Scams
A new phishing attack variant from BazaCall utilizing Google Forms was identified by Abnormal Security.
The BazaCall threat actors fool victims into sending over sensitive information through a legitimately crafted Google Form, emulating a subscription payment notification or payment method. BazaCall successfully impersonated companies such as Netflix, Hulu, Disney+, Masterclass, McAfee, Norton, and GeekSquad.
Microsoft Siezed Sites Selling Fake Outlook Accounts
The Microsoft Digital Crimes Unit zeroed in on the Vietnam-based threat actor group, ‘Storm-1152’, seizing their sites and social media pages which actively sold fraudulent Outlook accounts used for illicit activities.
Upon further investigation, the Microsoft Digital Crimes Unit discovered ‘Storm-1152’ generated millions of dollars by selling an estimated 750 million fraudulent accounts. These seemingly legitimate accounts are used by threat actors to reduce the time of conducting various cyberattacks.
