Threat intelligence firm, Cyble has identified a credible actor selling personal details and SSNs of approximately 40,000 U.S. citizens on the dark web. The leaked records include name, Address, City, State, SSN, and Date of Birth. WESTprotect recommends you not share personal information, including financial information over the phone, email, or SMS, WESTprotect also recommends that you use multi-factor authentication where possible.
Cyber threats are evolving every day, keeping up with them is a full-time job. The WESTprotect Cyber News is your source for how these changes affect you in the real estate, title, mortgage, and settlement services industry. From cyber threats to new Tactics, Techniques, and Procedures (TTP’s) we’ve got you covered.
Microsoft Office 365 users are targeted by a new phishing campaign using fake Zoom notifications to warn those who work in corporate environments that their Zoom accounts have been suspended. This Phishing campaign impersonating automated Zoom account suspension alerts has landed in over 50,000 mailboxes with the end goal of stealing Office 365 logins. WESTprotect recommends you use extra caution before clicking suspicious links and ensure patches are up-to-date.
Researchers from cybersecurity firm, ACROS Security, have disclosed a zero-day vulnerability in the Windows client of the popular Zoom video conferencing platform. The vulnerability is a remote code execution issue that allows the targeted user to perform some typical action such as opening a document file without any warning being shown. We recommend that you apply the latest patches available immediately to protect from known security risks.
The young adult in your life probably loves it. The federal government in your life likely doesn't. Call it a love-hate relationship with the social media app Tik Tok, whose connection with China is no secret at this point. China-based ByteDance owns the short-form video platform and has quickly reached a global audience. The company has attempted to distance itself from the Chinese Communist Party, but governments around the world are raising privacy and security concerns.
The threat actor behind the Joker Android malware has once again succeeded at slipping spyware infected apps onto the Play Store, Google's official Android app store. Joker malware, a spyware and premium dialer tool, also known as Bread was originally designed to perform SMS fraud on infected Android apps. More recently, Joker's creators have moved to new tactics after Google introduced Play Store policies that restrict the use of SEND_SMS permissions and increase Google Play protects coverage.