top of page
  • Donald E. Hester

Cyber Risk Update 18 AUG 2023

This is a selection of this week's events. For more news and advisories check out our discord server.

Local Government Cyber Watch discord server. This server is focused on cybersecurity collaboration with local government stakeholders. (TLP Clear Only) Invite: https://discord.gg/PGz3NDKb5V

Resources

Incident

Critical Alert

TTP and Malware

Governance

Payment Card

AI

Phishing

  • Novel phishing ploy uses QR codes, Bing URL redirects, fake Microsoft security alerts. Researchers warn of escalating phishing campaigns using QR codes that are likely test runs for a larger wave of attacks targeting Microsoft credentials. https://www.scmagazine.com/news/novel-phishing-qr-codes-bing-url-microsoft-security

  • You've probably never heard of "16Shop," but there's a good chance someone using it has tried to phish you. Last week, the international police organization INTERPOL said it had shuttered the notorious 16Shop, a popular phishing-as-a-service platform launched in 2017 that made it simple for even complete novices to conduct complex and convincing phishing scams. INTERPOL said authorities in Indonesia arrested the 21-year-old proprietor and one of his alleged facilitators, and that a third suspect was apprehended in Japan. https://krebsonsecurity.com/2023/08/karma-catches-up-to-global-phishing-service-16shop/

Banned

  • New York City Banning TikTok From City-Owned Devices. NYC Cyber Command found that TikTok “posed a security threat to the city’s technical networks.” The city is banning the app from city-owned devices and requiring agencies to delete it within the next 30 days. City employees are immediately barred from downloading or using the app and from accessing TikTok’s website on any city-owned devices. A number of states, including New York, already banned TikTok on government-owned devices, citing risks that ByteDance, which owns the app, can use it to spy on residents. https://www.theverge.com/2023/8/16/23834579/nyc-tiktok-ban-new-york-china-surveillance-spy

  • The Software Freedom Conservancy, a not-for-profit enterprise that supports open-source projects, is asking developers not to use Zoom, citing the videoconferencing company's stance of allowing its data to be used for machine learning models. From the Conservancy's statement: "Zoom has abused their household name for profit, knowing that users will not be able to understand the change of terms of service or have an option to use any other software." https://techcrunch.com/2023/08/16/open-source-developers-urged-to-ditch-zoom-over-user-data-controversy/

In Other News

Careers

Related Posts

See All

Comments

Rated 0 out of 5 stars.
No ratings yet

Add a rating
Featured Posts
Recent Posts
Posts By Category
Follow Me
  • Facebook Basic Square
  • LinkedIn Social Icon
  • Twitter Basic Square
  • YouTube Social  Icon
  • SlideShare
bottom of page