Black Arrow Cyber Consulting
0

Blog

Our weekly Cyber Flash Briefing round up of top open source news and ‘Cyber Tip Tuesday’ videos

Posts tagged data breach
Black Arrow Cyber Threat Briefing 10 September 2021

Black Arrow Cyber Threat Briefing 10 September 2021

-91% Of IT Teams Have Felt 'Forced' To Trade Security For Business Operations

-Ransomware Attacks Increased Exponentially In 2021

-One In Three Suspect Phishing Emails Reported By Employees Really Are Malicious

-Hackers Shift From Malware To Credential Hijacking

-Attacker Breakout Time Now Less Than 30 Minutes

-Hackers Leak VPN Account Passwords From 87,000 Fortinet FortiGate Devices

-The Impact Of Ransomware On Cyber Insurance Driving The Need For Broader Cyber Security Knowledge

-Hackers Exploit Camera Vulnerabilities To Spy On Parents

-39% Of All Internet Traffic Is From Bad Bots

Read More
Black Arrow Admincyber, cyber security, information security, infosec, gfsc, rules, regulations, compliance, operations, ransomware, phishing, hackers, malware, credential harvesting, vpn, fortinet, fortigate, insiders, insider threats, cyber insurance, cameras, iot, spying, bad bots, revil, ragnar locker, hive, microsoft, microsoft outlook, bitcoin, iphones, cables, google, zoho, manageengine, cpu, chrome, atlassian, confluence, zero-day, windows, poc, proof of concept, cisco, guntrader, data breach, trickbot, dos, ddos, denial of service, cloud, whatsapp, privacy, protonmail, owasp, siem, zero trust, hse, brute force, gift cards
Black Arrow Cyber Threat Briefing 06 August 2021

Black Arrow Cyber Threat Briefing 06 August 2021:

-Ransomware Volumes Hit Record High

-Ransomware Gangs Recruiting Insiders To Breach Corporate Networks

-More Than 12,500 Vulnerabilities Disclosed In First Half Of 2021

-New DNS Vulnerability Allows 'Nation-State Level Spying' On Companies

-Constant Review Of Third Party Security Critical As Ransomware Threat Climbs

-Kaseya Ransomware Attack Sets Off Race To Hack Service Providers

-Joint UK/US Advisory Detailing Top 30 Vulnerabilities Include Plenty Of Usual Suspects

Read More
Black Arrow Adminblack arrow, cyber, cyber security, infosec, information security, ransomware, threat report, threat intel, osint, lockbit, vulnerabilities, vulnerability management, dns, third parties, third party, msp, service provider, kaseya, ncsc, cisa, uk, us, data breach, data breaches, ddos, call centres, social engineering, isle of wight, schools, blackmatter, darkside, revil, phishing, microsoft, spearphishing, prometheus, bazarcaller, brave browser, discord, linux, cobalt strike, code execution, cisco, vpn, routers, home routers, tpm, ea games, hospital, healthcare, amazon, raccoon stealer, cryptocurrencies, supply chain, russia, malware, china, iran, cloud, hybrid, windows 11, apple, credit cards, huawei, google, nsa
Black Arrow Cyber Threat Briefing 09 July 2021

Black Arrow Cyber Threat Briefing 09 July 2021: Hackers Demand $70 Million To End Biggest Ransomware Attack On Record; Zero Day Malware Reached An All-Time High In Q1 2021; New Trojan Malware Steals Millions Of Login Credentials; MacOS Targeted In WildPressure APT Malware Campaign; The Cost Of Cyber Insurance Increased 32% Last Year And Shows No Signs Of Easing; Critical Flaws In Windows Print Spooler Service Could Allow For Remote Attacks; British Airways Settles Over Record Claim For Data Breach; Hackers On Loose As 9,000 Data Leaks A Year Recorded

Read More
Black Arrow Admincyber, cyber security, infosec, information security, threat report, threat intel, ransomware, revil, russia, zero-day, malware, trojan, macos, wildpressure, apt, cyber insurance, print spooler, printnightmare, british airways, data breaches, data breach, trickbot, kaseya, phishing, powershell, microsoft, poc, proof of concept, sonicwall, morgan stanley, vpn, ajg, gallagher, nhs, dr hex, interpol, supply chain, ot, cloud, hybrid, nso, solarwinds, gamers
Black Arrow Cyber Threat Briefing 02 July 2021

Black Arrow Cyber Threat Briefing 02 July 2021: Russian Hackers Target IT Supply Chain In Ransomware Attack Leading To Hundreds Of Firms Being Hit; 71% Of Orgs Experienced BEC Attacks Over The Past Year; Cyber Insurance Making Ransomware Crisis Worse; Breach Exposes 92% Of LinkedIn Users; Users Clueless About Cyber Security Risks; Paying Ransoms Make You A Bigger Target; Cyber Crime Never Sleeps; Classified MOD Docs Found At Bus Stop; Don’t Leave Your Cyber IR Plan To IT, It’s An Organisational Risk

Read More
Black Arrow Admincyber, cyber security, infosec, information security, threat report, threat intel, ransomware, russia, revil, supply chain, rmm, it provider, bec, business email compromise, cyber insurance, linkedin, data breach, api, users, staff, ir, ir plans, incident response, it sector, health sector, health, healthcare, manufacturing, ministry of defence, mod, classified documents, cabinet offices, government, ncsc, cryptocurrencies, cryptojacking, cryptomining, go, babuk, virustotal, vm, virtual machines, chachi, hmrc, phishing, indexsinas, iot, smart homes, microsoft, cisco, cisco asa, firewall, rce, remote code exploit, remote code execution, MyBook, western digital, fortiweb, waf, nfc, cash machines, 5g, zero-day, printnightmare, zyxel, police, tulsa, cobalt strike, fin7, jail, pirated software, central bank, cloud, privacy, solarwinds, ea games, council
Black Arrow Cyber Threat Briefing 23 April 2021

Black Arrow Cyber Threat Briefing 23 April 2021: Cyber Attacks Rise For Businesses, Pushing Many To The Brink; MI5 Warns Of Spies Using LinkedIn To Trick Staff; Sonicwall Warns Customers To Patch 3 Zero-Days Exploited In The Wild; FBI Removed Backdoors From Vulnerable Exchange Servers, Not Everyone Likes The Idea; Pulse Secure VPN Zero-Day Used To Hack Defense Firms & Govt Orgs; Solarwinds Hack Could Cost Insurance Firms $90M; Mount Locker Ransomware Aggressively Changes Up Tactics; QR Codes Offer Easy Cyber Attack Avenues as Usage Spikes

Read More
Black Arrow Admincyber, cyber security, infosec, information security, threats, threat report, threat intel, mi5, espionage, social media, social engineering, fbi, linkedin, sonicwall, vulnerabilities, vulnerability management, zero-day, exploited, backdoor, exchange, pulse vpn, solarwinds, insurance, cyber insurance, ransomware, mount locker, qr, google, google alerts, university, academia, discord, phishing, office 365, microsoft, malware, apple, rce, remote code execution, iot, google chrome, qnap, nas, cisco, firefox, codecov, dating site, privacy, data breach, fin7, natwest, cryptocurrencies, supply chain, telegram, japan, china, apt, nation state actors, huawei, ddos, telecoms, GCHQ, tls, tiktok, MFA, 2fa, astrolocker
Black Arrow Cyber Threat Briefing 26 March 2021

Black Arrow Cyber Threat Briefing 26 March 2021: Cyber Warfare Will Grind Britain’s Economy To A Halt; $2 Billion Lost To BEC Scams In 2020; Ransomware Gangs Targets Firms With Cyber Insurance; Three Billion Phishing Emails Are Sent Every Day; $50 Million Ransomware For Computer Maker Acer; Office 365 Phishing Attack Targets Financial Execs; MS Exchange Hacking, Thousands Of Email Servers Still Compromised; Average Ransom Payment Surged 171% in 2020; Phishers’ Perfect Targets: Employees Getting Back To The Office; Nasty Malware Stealing Amazon, Facebook And Google Passwords

Read More
Black Arrow Admincyber, cyber security, infosec, information security, threat report, threat intel, osint, cyber warfare, nation state actors, bec, business email compromise, cyber insurance, ransomware, acer, office 365, financial services, execs, senior executives, malware, amazon, facebook, google, iot, schools, colleges, universities, academia, phishing, botnet, clubhouse, fraud, fraudsters, scams, purple fox, us government, f5, vulnerabilities, vulnerability management, wordpress, openssl, fatface, data breach, data breaches, shell, accellion, russia, criminal, china, oauth, api, exchange
Black Arrow Cyber Threat Briefing 22 January 2021

Black Arrow Cyber Threat Briefing 22 January 2021: Ransomware Biggest Cyber Concern; Ransomware Payments Grew 311% In 2020; Cyber Security Spending To Soar In 2021; Ransomware Provides The Perfect Cover For Other Attacks; Gdpr Fines Skyrocket As Eu Gets Tough On Data Breaches; Popular Pdf Reader Has Database Of 77 Miliion Users Leaked Online; Malware Incidents On Remote Devices Increase

Read More
Black Arrow Admincyber, cyber security, threat intel, threat report, ransomware, solarwinds, spending, budgets, criminals, cyber crime, SEPA, pdf, pdf reader, nitro, gdpr, fines, malware, remote workers, remote devices, phishing, macs, apple, signal, telegram, vulnerabilities, SAP, dnspooq, dns, dnsmasq, cisco, sd-wan, botnet, freakout, health, data breach, breaches, ubiquiti, iot, rdp, windows, cloud, aviation, privacy, vishing, ms defender, pixlr
Black Arrow Cyber Threat Briefing 15 January 2021

Black Arrow Cyber Threat Briefing 15 January 2021: Two Thirds of Employees Don’t Consider Security Whilst Working from Home; Ransomware Gangs Targeting Top Execs; Microsoft emits 83 security fixes – and miscreants are already exploiting vulnerabilities in Windows Defender; Android malware gives hackers full control of your smartphone; Massive fraud campaign sees millions vanish from online bank accounts

Read More
Black Arrow Admincyber, cyber security, infosec, information security, working from home, wfh, training, threat report, threat intel, open source, ransomware, criminals, execs, senior executives, c-suite, microsoft, vulnerabilities, patching, android, malware, rat, remote access trojan, fraud, banks, solarwinds, russia, hackers, iot, health sector, sms, smishing, phishing, iran, nation state actors, macos, apple, windows 10, adobe, new zealand, british airways, data breach, parler, china, united nations, europol, dark web, criminal marketplace, whatsapp, privacy, facebook, nissan, default creds
Black Arrow Cyber Threat Briefing 31 December 2020

Black Arrow Cyber Threat Briefing 31 December 2020: SolarWinds hack may be much worse than originally feared; Threat actor selling 368.8 million records from 26 data breaches; The Worst Hacks of 2020; Nasty Strain of malware is back and hits 100K recipients per day; Ransomware in 2020: A Banner Year for Extortion; Russia’s global hacking efforts are going to unwind in 2021

Read More
Black Arrow Admincyber, infosec, information security, cyber security, russia, cyber crime, data breach, hacks, malware, emotet, fbi, iot, windows, microsoft, kawasaki, finland, india, citrix, surveillance, brexit, deepfakes, t-mobile, dns, zero-day, solarwinds
Black Arrow Cyber Threat Briefing 25 December 2020

Black Arrow Cyber Threat Briefing 25 December 2020: The Cyber Threat Is Real and Growing; Ransomware Attacks Surge in Q3; In 2021 there will be a cyber attack every 11 seconds; The West has suffered a massive cyber breach and it's hard to overstate how bad it is; Big tech companies including Intel, Nvidia, and Cisco were all infected during the SolarWinds hack

Read More
Black Arrow Admincyber, cyber security, cyber crime, infosec, information security, threats, ransomware, solarwinds, intel, nvidia, cisco, victims, malware, tcp, iot, microsoft, chrome, microsoft edge, windows, zero-day, signal, data breach, dark web, jokers stash, nsa, cloudflare, ddos, c19, privacy, surveillance, al jazeera, insurance
Black Arrow Cyber Threat Briefing 11 December 2020

Black Arrow Cyber Threat Briefing 11 December 2020: Cyber crime costs the world more than $1 trillion, 50% increase from 2018; One of the world's largest security firms breached; Chinese Breakthrough in Quantum Computing a Warning for Security Teams; Ransom payouts hit record-highs, surging 178% in a year; Ransomware Set to Continue to Evolve

Read More
Black Arrow Admincyber, cyber security, cyber crime, infosec, information security, fireeye, china, quantum computing, ransomware, passwords, foxconn, netgain, schools, academia, malwareless, malware, spearphishing, adobe, iot, microsoft, social media, windows 10, medical devices, android, mobile malware, vulnerabilities, vulnerability management, wormable, vmware, nsa, hmrc, data breach, security tools, offensive, embraer, paypay, norway, russia, apt28, apt, advanced persistent threats, bank, insiders, insider threats, experian, smart devices, 5g, finland, sophos
Cyber Weekly Flash Briefing 11 September 2020: Ransomware 41% of H1 2020 cyber insurance claims, MS Critical RCE Bugs, 60% of emails May/June fraudulent, Insider Data Breaches, Linux Targeting More

Cyber Weekly Flash Briefing 11 September 2020: Ransomware 41% of all H1 2020 cyber insurance claims, MS Patch Tuesday Critical RCE Bugs, 60 percent of emails May/ June were fraudulent, Insider-Enabled Data Breaches, Linux-Based Devices Targeted More, Chilean bank shut down following ransomware, meddling in US politics by Russia, China & Iran, TikTok battles to remove video of livestreamed suicide

Read More
Black Arrow Admincyber, infosec, information security, ransomware, insurance, microsoft, patches, patching, vulnerabilities, remote code exploit, insiders, insider threats, data breach, apt, linux, attacks, russia, china, iran, politics, us, tiktok, social media, children, suicide, livestreaming, parental controls, palo alto
Cyber Weekly Flash Brief 21 August 2020: Uber infosec exec charged with cover-up, 50% anti-malware products fail, WFH security breach surge, 40% of firms sacked staff for cyber breaches during Covid

Cyber Weekly Flash Briefing 21 August 2020: Former Uber security exec charged with cover-up, half of anti-malware products fail to recognise threats, millions of social media accounts compromised by data breach, WFH causes surge in security breaches, staff 'oblivious' to best practices, 40% of firms have sacked staff for cyber security breaches during Covid, HMRC Investigating Over 10,000 COVID-Related Phishing Scams

Read More
Black Arrow Admincyber security, infosec, information security, uber, antivirus, data breach, working from home, wfh, google, huawei, hmrc, criminals
Cyber Weekly Flash Briefing 31 July 2020: 386M user records stolen, Twitter spear-phishing, Garmin may have paid ransom, 27% of consumers hit with Covid19 phishing scams, Netflix phishing scam

Cyber Weekly Flash Briefing 31 July 2020: 386M user records stolen, Twitter says attack was spear-phishing, Criminals still exploiting COVID19, Netwalker ransomware, Garmin may have paid ransom, QNAP NAS devices infected, Hackers exploit networking vulns, 27% of consumers hit with pandemic-themed phishing scams, New Netflix phishing scam

Read More
Black Arrow Admincyber, cyber security, cyber crime, flash briefing, infosec, information security, users, data breach, twitter, spear-phishing, criminals, fbi, ncsc, ransomware, netwalker, hackers, netflix, phishing, consumers, garmin, nas, qnap, vulnerabilities, covid-19, coronavirus, networking, f5
Cyber Weekly Flash Briefing 10 July 2020: firms concerned by cloud security: most already breached, 15 Billion passwords on sale, routers present huge risk, BMW cust breach, NK hackers target retail

Cyber Weekly Flash Briefing 10 July 2020: firms concerned by cloud security: most already breached, 15 Billion passwords on sale, routers present huge risk, BMW cust breach, NK hackers target retail

Read More
Black Arrow Admincyber, cyber security, infosec, information security, cloud, passwords, routers, home routers, surveymonkey, phishing, covid-19, british army, armed forces, microsoft, bmw, data breach, north korea, lazarus, retail, cyber warfare