QBot Trojan operators are using new tactics in their campaign to hijack legitimate email conversations to steal sensitive data from the victims. Delivered by spam messages that contain URLs to .ZIP files that serve content designed to download the payload from one of six hardcoded encrypted URLs. WESTprotect recommends that you be wary of unexpected emails that contain links or attachments.
Cyber threats are evolving every day, keeping up with them is a full-time job. The WESTprotect Cyber News is your source for how these changes affect you in the real estate, title, mortgage, and settlement services industry. From cyber threats to new Tactics, Techniques, and Procedures (TTP’s) we’ve got you covered.
Email service provider Sendgrid is grappling with an unusually large number of customer accounts whose passwords have been cracked, sold to spammers, and abused for sending phishing and email malware attacks. Sendgrid’s parent company Twilio says it is working on a plan to require multi-factor authentication for all of its customers, but that solution may not come fast enough for organizations having trouble dealing with the fallout in the meantime.
Every single day, over 350,000 pieces of new malware are detected. Competing with this is difficult but staying on top of cyber security risks is vital for your business. A data breach can cost a fortune and if you are attacked, you could lose days, weeks, or even months of work. Could your business survive this?
North American land developer and homebuilder Brookfield Residential is the first victim of the new DarkSide Ransomware. DarkSide will breach a network and spread laterally between devices while stealing unencrypted data. Upon gaining access to a Windows domain controller, the threat actors deploy ransomware throughout the network. As part of their extortion strategy, DarkSide will create an entry for each victim whose data has been stolen on their data leak site.
Hackers have increased their attacks against streaming companies, as research has shown that phishing URLs which include Netflix, HBO, YouTube, and Twitch has risen dramatically. Phishing is an attempt to steal sensitive information such as usernames, passwords, credit card numbers, bank account details and other personal data.