Black Arrow Cyber Consulting
0

Blog

Our weekly Cyber Flash Briefing round up of top open source news and ‘Cyber Tip Tuesday’ videos

Posts tagged insider threats
Black Arrow Cyber Threat Briefing 10 September 2021

Black Arrow Cyber Threat Briefing 10 September 2021

-91% Of IT Teams Have Felt 'Forced' To Trade Security For Business Operations

-Ransomware Attacks Increased Exponentially In 2021

-One In Three Suspect Phishing Emails Reported By Employees Really Are Malicious

-Hackers Shift From Malware To Credential Hijacking

-Attacker Breakout Time Now Less Than 30 Minutes

-Hackers Leak VPN Account Passwords From 87,000 Fortinet FortiGate Devices

-The Impact Of Ransomware On Cyber Insurance Driving The Need For Broader Cyber Security Knowledge

-Hackers Exploit Camera Vulnerabilities To Spy On Parents

-39% Of All Internet Traffic Is From Bad Bots

Read More
Black Arrow Admincyber, cyber security, information security, infosec, gfsc, rules, regulations, compliance, operations, ransomware, phishing, hackers, malware, credential harvesting, vpn, fortinet, fortigate, insiders, insider threats, cyber insurance, cameras, iot, spying, bad bots, revil, ragnar locker, hive, microsoft, microsoft outlook, bitcoin, iphones, cables, google, zoho, manageengine, cpu, chrome, atlassian, confluence, zero-day, windows, poc, proof of concept, cisco, guntrader, data breach, trickbot, dos, ddos, denial of service, cloud, whatsapp, privacy, protonmail, owasp, siem, zero trust, hse, brute force, gift cards
Black Arrow Cyber Threat Briefing 03 September 2021

Black Arrow Cyber Threat Briefing 03 September 2021

-Ransomware Attacks Soar 288% in H1 2021

-Ransomware Costs Expected To Reach $265 Billion By 2031

-Brute Force Email Attacks and Account Takeover Attempts Rise 671%, Reaching Unprecedented Levels, Causing Financial And Reputational Damage

-Investigation Into Hacked "Map" Of UK Gun Owners

-Eight US Financial Services Firms Given Six-Figure Fines Over BEC Data Breaches

-Ransomware Has Been A ‘Game Changer’ For Cyber Insurance

-WhatsApp hit with $267 million GDPR fine for bungling user privacy disclosure

-Microsoft Warns About Open Redirect Phishing Campaign

Read More
Black Arrow Adminblack arrow, cyber, cyber security, infosec, information security, ransomware, cyber crime, brute force, hackers, guns, gun owners, financial services, insurance, cyber insurance, third parties, third party, supply chain, microsoft, open redirect, phishing, employees, bec, business email compromise, scammers, insider threats, lockfile, fbi, cisa, smart cities, cofense, passwords, gpus, graphics cards, amd, nvidia, cloud, azure, android, malware, npm, qnap, apple, meltdown, braktooth, bluetooth, cisco, proxytoken, exchange, atlassian, confluence, mozi, iot, botnet, tp-link, voip, cloudflare, ddos, zero trust, t-mobile, china, lockbit
Black Arrow Cyber Threat Briefing 16 July 2021

Black Arrow Cyber Threat Briefing 16 July 2021: 84% Of Orgs Experienced Phishing Or Ransomware Attacks In The Last Year; Phishing continues to be one of the easiest paths for ransomware; Only Half Of Orgs Can Defend Against Ransomware; MI5 Chief Warns Public Of Cyber-Threat From Hostile States Such As China & Russia; Almost All Orgs Suffered Insider Data Breaches; Cyber Crime Costs Orgs Nearly $1.79 Million Per Minute; Sonicwall Releases Urgent Notice About 'Imminent' Ransomware Targeting Firmware; Google Finds Zero-Day Security Flaws In All Your Favourite Browsers

Read More
Black Arrow Admincyber, cyber security, infosec, information security, ransomware, phishing, insider threats, insiders, mi5, terrorism, espionage, cyber crime, data breaches, cve, vulnerabilities, vulnerability management, sonicwall, firmware, google, internet explorer, safari, apple, zero-day, browsers, revil, hellokitty, business email compromise, bec, kaseya, social engineering, propaganda, malware, trickbot, biopass, ios, solarwinds, microsoft, print spooler, printnightmare, china, russia, draytek, morgan stanley, insurance, cyber insurance, magecart, cryptocurrencies, dark web, gfsc, supply chain, rce, zoom, iran, linkedin, user education, israel
Black Arrow Cyber Threat Briefing 09 April 2021

Black Arrow Cyber Threat Briefing 09 April 2021: Ransomware Attacks Grew By 485% In 2020; Cyber Insurance Firm Suffers Cyber Attack; Ransom Gangs Emailing Victim Customers For Leverage; 'We Have Your Porn Collection' - The Rise Of Extortionware; Should Firms Be More Worried About Firmware Cyber Attacks; Armed Conflict Draws Closer As State-Backed Cyber Attacks Intensify; Coca-Cola Trade Secret Theft Underscores Importance Of Insider Threat Early Detection; Attackers Blowing Up Discord, Slack With Malware

Read More
Black Arrow Admincyber, cyber security, infosec, information security, threats, threat report, threat intel, ransomware, insurance, cyber insurance, customers, firmware, armed conflict, cyber warfare, warfare, coca-cola, insider threats, insiders, insider, detection, discord, slack, malware, azko-nobel, dow chemical, eastman chemical, toyochem, linkedin, facebook, revil, spear-phishing, spearphishing, android, supply chain, emotet, icedid, gigaset, iot, iiot, zoom, vulnerabilities, vulnerability management, zero-day, amd, vmware, carbon black, qnap, nas, sap, onlyfans, credit cards, booking.com, vietnam, espionage, spy, north korea, home office, encryption, ubiquiti, unifi, visa, web shells, watering hole
Black Arrow Cyber Threat Briefing 29 January 2021

Black Arrow Cyber Threat Briefing 29 January 2021: Phishing Attacks Show High-Ranking Execs ‘Most Valuable Asset’ and ‘Greatest Vulnerability’; Paying Ransomware Funding Organised Crime; Police take down botnet that hacked millions of computers; After SolarWinds Hack, Who Knows What Cyber Dangers We Face; Russian businesses warned of retaliatory cyber attacks; iOS vulns actively exploited; Top Cyber Attacks of 2020

Read More
Black Arrow Admincyber, cyber security, infosec, information security, phishing, execs, senior executives, c-suite, organised crime, funding organised crime, emotet, police, solarwinds, north korea, russia, fsb, retaliation, ios, vulnerabilities, active exploitation, iphone, ipad, apple, ransomware, nefilim, nemty, netwalker, bec, google, social engineering, researchers, dreambus, botnet, malware, trickbot, wordpress, android, mobile malware, buffer overflow, linux, sudo, cisco, rce, lulzsec, vpn, kindledrip, amazon, kindle, grindr, insider, insider threats, charities, woodland commission, ddos, denial of service, tracking apps, signal, whatsapp, rusi, fraud, tiktok, nat
Black Arrow Cyber Threat Briefing 11 December 2020

Black Arrow Cyber Threat Briefing 11 December 2020: Cyber crime costs the world more than $1 trillion, 50% increase from 2018; One of the world's largest security firms breached; Chinese Breakthrough in Quantum Computing a Warning for Security Teams; Ransom payouts hit record-highs, surging 178% in a year; Ransomware Set to Continue to Evolve

Read More
Black Arrow Admincyber, cyber security, cyber crime, infosec, information security, fireeye, china, quantum computing, ransomware, passwords, foxconn, netgain, schools, academia, malwareless, malware, spearphishing, adobe, iot, microsoft, social media, windows 10, medical devices, android, mobile malware, vulnerabilities, vulnerability management, wormable, vmware, nsa, hmrc, data breach, security tools, offensive, embraer, paypay, norway, russia, apt28, apt, advanced persistent threats, bank, insiders, insider threats, experian, smart devices, 5g, finland, sophos
Black Arrow Cyber Threat Briefing 04 December 2020

Black Arrow Cyber Threat Briefing 4 December 2020: Covid vaccine supply chain targeted by hackers; Criminals Favour Ransomware and BEC; Bank Employee Sells Personal Data of 200,000 Clients; 2020 Pandemic changing short- and long-term approaches to risk; Cyber risks take the fun out of connected toys; Remote Workers Admit Lack of Security Training

Read More
Black Arrow Admininformation security, infosec, cyber, cyber security, espionage, threat report, threat intel, insiders, insider threats, covid, wfh, privacy, banks, lastpass, passwords, password manager, pandemic, training, ransomware, masterchef, sopra steria, phishing, bec, business email compromise, fbi, zoom, windows 10, trickbot, hackers, monero, russia, apt, macbook, apple, zerologon, ai, artificial intelligence, cloud, mod
Black Arrow Cyber Threat Briefing 06 November 2020

Cyber Threat Briefing 06 November 2020

Read More
Black Arrow Admincyber, cyber security, infosec, information security, ransomware, emotet, campari, hackney, mattel, criminals, cyber crime, bec, business email compromise, office 365, bbc, phishing, us cyber command, russia, malware, iot, zero-day, windows, cobalt strike, adobe, adobe acrobat, oracle, solaris, cisco, marriott, ico, fines, databases, financial services, akamai, proofpoint, deloitte, insider threats
Cyber Weekly Flash Briefing 11 September 2020: Ransomware 41% of H1 2020 cyber insurance claims, MS Critical RCE Bugs, 60% of emails May/June fraudulent, Insider Data Breaches, Linux Targeting More

Cyber Weekly Flash Briefing 11 September 2020: Ransomware 41% of all H1 2020 cyber insurance claims, MS Patch Tuesday Critical RCE Bugs, 60 percent of emails May/ June were fraudulent, Insider-Enabled Data Breaches, Linux-Based Devices Targeted More, Chilean bank shut down following ransomware, meddling in US politics by Russia, China & Iran, TikTok battles to remove video of livestreamed suicide

Read More
Black Arrow Admincyber, infosec, information security, ransomware, insurance, microsoft, patches, patching, vulnerabilities, remote code exploit, insiders, insider threats, data breach, apt, linux, attacks, russia, china, iran, politics, us, tiktok, social media, children, suicide, livestreaming, parental controls, palo alto
Cyber Weekly Flash Briefing 28 August 2020: cyber crime cost per minute $11.4m by 2021, Trend block 28 billion Cyber Threats H1 2020, Malicious Attachments Top Threat, NK hackers ramp up bank heists

Cyber Weekly Flash Briefing 28 August 2020: global cost of cybercrime per minute to reach $11.4 million by 2021, Trend blocks 28 Billion Cyber-Threats in H1 2020, Malicious Attachments Remain a Cyber Criminal Threat Vector Favourite, 80% of Exploits Published Faster than CVEs, North Korean hackers ramp up bank heists

Read More
Black Arrow Admincyber crime, cyber security, information security, infosec, exploits, vulnerabilities, vulnerability management, cisco, insiders, insider threats, north korea, hackers, banks, russia, ransomware
Cyber Weekly Flash Briefing 14 August 2020: Travelex goes bust following ransomware, Microsoft fix 120 vulns inc two zero-days, more ransomware victims paying up, Cloud misconfigurations create risks

Cyber Weekly Flash Briefing 14 August 2020: Travelex Forced into Administration After Ransomware Attack, Microsoft fixes 120 vulnerabilities inc two zero-days, More ransomware victims are paying up, Misconfiguration #1 Cloud Security Threat, Beware What You Ask Amazon Alexa, Ex-Uber engineer sentenced to 18 months in prison for stealing driverless car secrets from Google, Google and Amazon are now the most imitated brands for phishing

Read More
Black Arrow Admincyber security, infosec, information security, travelex, ransomware, microsoft, patches, patching, zero-day, vulnerabilities, vulnerability management, russia, cloud, misconfigurations, amazon, alexa, voice assistants, uber, insiders, insider threats, data theft, google, intel, sap, citrix
Cyber Weekly Flash Briefing 26 June 2020: Covid changes infosec landscape, ransomware actors lurk post attack, hacker earns millions, rogue bank staff steal $3.2m, massive DDoS against European bank

Cyber Weekly Flash Briefing 26 June 2020: Covid changes infosec landscape, ransomware actors lurk post attack, hacker earns millions, rogue bank staff steal $3.2m, massive DDoS against European bank

Read More
Black Arrow Admincyber, cyber security, infosec, information security, covid-19, hackers, ransomware, police, easyjet, dropbox, criminal, ddos, denial of service, postbank, bank, insiders, insider threats
Cyber Weekly Flash Briefing 22 May 2020: EasyJet say 9m customers hacked, firm phishes its own staff and 20% fail, 60% insider threats involve staff planning to leave, 1 in 10 WFH Brits breach GDPR

Cyber Weekly Flash Briefing 22 May 2020: EasyJet say 9m customers hacked, firm phishes its own staff and 20% fail, 60% insider threats involve staff planning to leave, 1 in 10 WFH Brits breach GDPR

Read More
Black Arrow Admincyber, cyber security, information security, infosec, easyjet, hack, phishing, phishing testing, insider threats, gdpr, wfh, microsoft, supercomputers, cryptomining, shadow it, android, mobile malware, ransomware, smart phones, bluetooth
Cyber Weekly Flash Briefing 15 May 2020: Attacks on UK up 30% in Q1, 238% surge against banks, Microsoft fixes 111 vulns, Adobe patches 36 vulns, Thunderspy, 73m user records for sale on dark web

Cyber Weekly Flash Briefing 15 May 2020: Attacks on UK up 30% in Q1, 238% surge against banks, Microsoft fixes 111 vulns, Adobe patches 36 vulns, Thunderspy, 73m user records for sale on dark web

Read More
Black Arrow Admincyber, cyber security, infosec, information security, weekly, flash briefing, attacks, covid-19, coronavirus, microsoft, patches, patching, vulnerabilities, vulnerability management, thunderbolt, dark web, credentials, ransomware, android, malware, mobile malware, insiders, insider threats, cognizant, law firms, legal, industrial control systems, national grid, ics
Cyber Weekly Flash Briefing for 21 February 2020 – Adobe out-of-band fix, critical Cisco bugs, Insider Threats, PayPal phishing, Supply Chain Risks

Cyber Weekly Flash Briefing for 21 February 2020 – Adobe out of band fix, critical Cisco bugs, Insider Threats, PayPal phishing, Supply Chain Risks

Read More
Black Arrow Adminguernsey, cyber, cyber security, adobe, patching, vulnerabilities, cisco, microsoft, insider threats, paypal, phishing, windows, russia, ncsc, gdpr, google, edge, home users, malware, ransomware
Week in review 13 October 2019: Europol state ransomware dominated in 2019, 11 ways employees can be the weak link in your security, steps firms should take to improve their incident response strategy

Week in review 13 October 2019: Europol state ransomware dominated in 2019, 11 ways employees can be the weak link in your security, steps firms should take to improve their incident response strategy

Read More
Antony Clealincident response, ransomware, europol, employees, apt, vulnerabilities, phishing, guernsey, cyber, cyber security, insider threats, cloud, north korea