medusa — Black Arrow Cyber Consulting

Posts tagged medusa

Black Arrow Cyber Threat Briefing 19 January 2024

Black Arrow Cyber Threat Intelligence Briefing 19 January 2024:

-World Economic Forum and UN Warn of Growing ‘Cyber Insecurity’ Amid Heightened Threat Landscape

-Cyber Attacks Reveal Fragility of Financial Markets as Attacks on Financial Services Sector Surge

-Researcher Uncovers One of The Biggest Password Dumps in Recent History

-Email Nightmare: 94% of Firms Hit by Phishing Attacks in 2023

-75% of Organisations Hit by Ransomware in 2023

-The Dangers of Quadruple Blow Ransomware Attacks

-Human Error and Insiders Expose Millions in UK Law Firm Data Breaches

-It’s a New Year and a Good Time for a Cyber Security Checkup

-Applying the Tyson Principle to Cyber Security: Why Attack Simulations are Key to Avoiding Disaster

-Cyber Threats Top Global Business Risk Concern for 2024

-Generative AI has CEOs Worried About Cyber Security, PwC Survey Says

-With Attacks on the Upswing, Cyber Insurance Premiums Poised to Rise Too

-Digital Resilience – a Step Up from Cyber Security

Black Arrow AdminJanuary 21, 2024fujitsu, juniper, woodruff sawyer, lg, bosch, pegasus, calvia, kansas state university, manx care, postgresqql, price waterhouse cooper, vec, world economic forum, wef, united nations office on drugs and crime, financial conduct authority, facebook, roblox, ebay, coinbase, yahoo, egress, nis 2.0, sec, alphv, meridianlink, moveit, goanywhere, mike tyson, allianz, pwc, covid-19, jpmorgan, norton rose fulbright, veeam, akira, medusa, postgre, mysql, teamviewer, capita, british library, lush, frred hutch, foxconn, lockbit, framework, cofense, gitlab, atomic stealer, xprotect, inferno drainer, remcos rat, jinxloader, bigpanzi, cop28, chainalysis, munich, aws, haveibeenpwned, naz.api, adblock, hellofresh, volt typhoon, zelensky, davos, connect secure, sharepoint, sonicwall, citrix netscaler, confluence, qualcomm, amd, apple magic keyboard, balada injector, drupal core, opera myflaw, hackerone, post office, black arrow cyber, black arrow, threat intelligence, osint, ncsc, national cyber security centre, cpni, mi5, gchq, cert, nca, national crime agency, europol, interpol, enisa, nato, cyber, information security, it security, cyber warfare, russia, north korea, china, iran

Black Arrow Cyber Threat Briefing 17 November 2023

Black Arrow Cyber Threat Intelligence Briefing 17 November 2023:

-Cyber Resilience Requires Maturity, Persistence & Board Engagement

-Security is a Process, Not a Tool

-46% of SMBs and Enterprises Have Experienced a Ransomware Attack

-Cyber Threat Intelligence: Getting on the Front Foot Against Adversaries

-67% of Workers Put Businesses at Risk by Downloading Applications and Software Without Permission

-The Persistent Menace: Understanding And Combating Ransomware, as New Ransomware Groups Account for Quarter of All Leaks in 2023

-Financial Services still Stubbornly Vulnerable to Cyber Disruption

-Worlds Biggest Bank Hit by Ransomware, Workers Forced to Trade With USB Sticks

-NCSC Warns UK Over Significant Threat to Critical Infrastructure

-Ransomware Gang Files SEC Complaint Over Victim’s Undisclosed Breach

-Businesses are Losing Huge Chunks of Their Revenue to Cyber Attacks

-Phishing Emails Are More Believable Than Ever. Here's What to Do About It.

Black Arrow AdminNovember 19, 2023ethereum, electric ireland, vietnam post, docker, dragos, long beach, british library, dp world, withsecure, fca, icbc, fs-isac, ukraine, denmark, alphv, blackcat, sec, merdianlink, fortinet, lockbit, opentext, kevin beaumont, google workspace, hive, mgm, caesars, rhysida, google ads, bibi-windows, rackspace, tri-city, maine, moveit, boeing, mr cooper, royal mail, clorox, toyota, medusa, lorenz, stellantis, bulletprooflink, zimbra, bulletproftlink, chatgpt, effluence, atlassian, confluence, ducktail, cherryblos, temu, mclaren, chess.com, linkedin, truepill, ipstorm, alphalock, aon, tetra, nordpass, meta, youtube, morgan stanley, nist, nist csf 2.0, aviram azar, bluenoroff, citrixbleed, juniper, patch tuesday, azure cli, wordpress, apache activemq, sap, darkcasino, citrix, citrix hypervisor, amd, amd epyc, sophos, ooda loop, screenconnect, threatx, black arrow cyber, black arrow, threat intelligence, osint, ncsc, national cyber security centre, cpni, mi5, gchq, cert, nca, national crime agency, europol, interpol, enisa, nato, cyber, information security, it security, cyber warfare, russia, north korea, china, iran

Black Arrow Cyber Threat Briefing 21 April 2023

Black Arrow Cyber Threat Briefing 21 April 2023:

-March 2023 Broke Ransomware Attack Records with a 91% Increase from the Previous Month

-Organisations Overwhelmed with Cyber Security Alerts, Threats and Attack Surfaces

-One in Three Businesses Faced Cyber Attacks Last Year

-Why Your Anti-Fraud, Identity & Cybersecurity Efforts Should Be Merged

-Tight Budgets and Burnout Push Enterprises to Outsource Cyber Security

-Complex 8 Character Passwords Can Be Cracked in as Little as 5 Minutes

-83% of Organizations Paid Up in Ransomware Attacks

-Security is a Revenue Booster, Not a Cost Centre

-EX-CEO Gets Prison Sentence for Bad Security

-Warning From UK Cyber Agency for a New ‘Class’ of Russian Hackers

-KnowBe4 Q1 Phishing Report Reveals IT and Online Services Emails Drive Dangerous Attack Trend

-Outsourcing Group Capita Admits Customer Data May Have Been Breached During Cyber-Attack

-Outdated Cyber Security Practices Leave Door Open for Criminals

-Quantifying cyber risk vital for business survival

-Recycled Network Devices Exposing Corporate Secrets

Black Arrow AdminApril 23, 2023ncc group, fortra, goanywhere mft, goanywhere, clop, cobalt, hive, chatgpt, knowbe4, capita, vice society, action1 rmm, darktrace, rtm locker, western digital, ncr, blackcat, alphv, lockbit, apple, mac, commscope, black basta, bablock, medusa, point32health, play, qbot, conti, fin7, chameleon, cisco, youtube, google drive, raspberry robin, macstealer, aukill, android, nso, zaraza, hikvision, nokia, five eye, volvo, rheinmetall, kodi, jack teixeira, kaspersky, lloyds, insursec, operation cookie monster, ftc, 3cx, lazarus, spectre, alibaba, facebook, instagram, linkedin, truthgpt, solarwinds, quadream, apt41, muddywater, mint sandstorm, killnet, javascript, wordpress, cyberspace solarium commission, black arrow cyber, black arrow, threat intelligence, osint, ncsc, national cyber security centre, cpni, mi5, gchq, cert, nca, national crime agency, europol, interpol, enisa, nato, cyber, information security, it security, cyber warfare

Black Arrow Cyber Threat Briefing 14 April 2023

Black Arrow Cyber Threat Briefing 14 April 2023:

-Almost Half of Former Employees Say Their Passwords Still Work

-Efficient Risk Based Patch Management Means Eliminating Just 2% of Exposures Could Protect 90% of Critical Assets

-Printers Pose Persistent Yet Overlooked Threat

-Employees Are as Likely as Cyber Criminals to Cause Cyber Incidents

-Over 90% of Organisations Find Threat Hunting a Challenge

-75% of Organisations Have Suffered a Cyber Security Breach

-Leak Shows Evolving Russian Cyber War Capabilities

-Outsourced Payroll and HR Services Firm Forced to Shut Down After Cyber Attack

-When a Cyber Criminal Steals Personal Data from Your Organisation What Do You Do and Who Do You Need to Inform?

-Insider Threat and Ransomware: A Growing Issue

-How LockBit Changed Cyber Security Forever

-Hybrid Work Environments Are Stressing CISOs

-Protect Your Data with a USB Condom

-Strategising Cyber Security: Why a Risk-based Approach is Key

Black Arrow AdminApril 16, 2023hp, lexmark, kaspersky, skyhigh, pentagon, moscow, vulcan, sd worx, lockbit, nokoyawa, rorschach, medusa, cyble, cylance, msi, latitude, kfc, pizza hut, lurssen, telegram, rilide, fortra, typhon, blackguard, check point, quadream, kingspawn, redline, chatgpt, blacklotus, emotet, legion, mirai, whatsapp, onenote, npm, vps, flipper zero, amazon, tesla, zigbee, hikvision, service nsw, discord, mod, ministry of defence, hyundai, medicaid, genesis, ares, prc, sentiment defi, nuget, 3cx, azure, ciem, passgan, lastpass, fcc, cookie monster, samsung, openai, ntc vulkan, cnn, zarya, joker, pypi, google, apt29, wordpress, sophos, twitter, sap, javascript, adobe, outlook, msmq, immuniweb, crowdstrike, thales, rapid7, thingsboard, black arrow cyber, black arrow, threat intelligence, osint, ncsc, national cyber security centre, cpni, mi5, gchq, cert, nca, national crime agency, europol, interpol, enisa, nato, cyber, information security, it security, cyber warfare

Black Arrow Cyber Threat Briefing 10 February 2023

Black Arrow Cyber Threat Briefing 10 February 2023:

-Companies Banned from Paying Hackers After Attacks on Royal Mail and Guardian

-Fraud Set to Be Upgraded as a Threat to National Security

-98% of Attacks are Not Reported by Employees to their Employers

-UK Second Most Targeted Nation Behind America for Ransomware

-Financial Institutions are Suffering from Increasingly Sophisticated Cyber Attacks

-An Email Attack Can End Up Costing You Over $1 Million

-Cyber Crime Shows No Signs of Slowing Down

-Surge of Swatting Attacks Targets Corporate Executive and Board Members

-Phishing Surges Ahead, as ChatGPT and Artificial Intelligence Loom

-Pro-Russian Hacktivist Group is Only Getting Started, Experts Warn

-Crypto Investors Lost Nearly $4 Billion to Hackers in 2022

-PayPal and Twitter Abused in Turkey Relief Donation Scams

-Mysterious Leak of Booking.com Reservation Data is Being Used to Scam Customers

Black Arrow AdminFebruary 12, 2023james cleverly, royal mail, the guardian, guardian newspaper, zscaler, barracuda, crime-as-a-service, caas, swatting, chatgpt, killnet, chainalysis, paypal, twitter, booking.com, esxi, esxiargs, ion, racksapce, vmware, vmware esxi, royal ransomware, nevada ransomware, italy, france, singapore, florida, vesuvius, lockbit, medusa, clop ransomware, hive, mks instruments, hong kong police, newspenguin, aws, water dybbuk, screenshotter, malvert loader, formbook malware, guloader, pixpirate, qaknote, qbot, cryptorom, xiaomi, oneplus, mirai, truthfinder, us cyber ambassador, finland, optus, ftx, sygnia, ubiquiti, rac, romance fraud, telegram, hi mum, brushing, trickbot, blacksprut, solarwinds, toyota, tiktok, vastaamo, exclu, graphiron, snp, scottish national party, mp, stewart mcdonald, zimbra, vmware workstation, goanywhere, binwalk, cisco, iox, f5 big-ip, jira, sonicwall, google chrome, dms, openssl, black arrow, black arrow cyber, cyber experts, cyber consulting, cyber investigators, cyber, cyber security, infosec, information security, threat intel, threat intelligence, threat report, business risk, business risks, cyber risk management, risk management, cyber risk, cyber security risk, cyber risk assessment, risk assessment, cyber incident response, cyber incident response team, cyber emergency response, computer incident response, computer emergency response, emergency response, subject matter experts, it security, trusted adviser, trusted partner, vciso, virtual chief information security officer, viso, information security officer, security executive on demand, security as a service, security on demand, cyber security strategy, cyber strategy, cyber kill chain, security as a a service, security-as-a-service, hr, human resources, human resources management, hrm, tprm, third party risk management, british intelligence, national security, uk national security, military intelligence, mod, ministry of defence, police, law enforcement, ftse 100, ftse100, offshore financial services, gfsc, guernsey financial services commission, fortune 500, fortune500, ncsc, national cyber security centre, cpni, mi5, gchq, cert, cert-uk, cert.gg, five eyes, cyber guernsey, guernsey cyber, nca, national crime agency, europol, interpol, enisa, nato, australian cyber security centre, acsc, canadian centre for cyber security, cccs, new zealand national cyber security centre, ncsc-nz, cybersecurity and infrastructure agency, cisa, national security administration, nsa, federal bureau of investigation, fbi, central intelligence agency, cia, department of homeland security, dhs, secret service, odpa, office of the data protection authority, ico, information commissioners office, isc2, isaca, comptia, sans, sme, smb, small business, medium sized business, accounting, law firms, legal sector, academia, education, schools, retail, maritime, aviation, aerospace, transport, defence, defense, defence contractor, cni, scada, ics, industrial control systems, operational technology, ot, healthcare, medical, pharma, pharmaceuticals, pci-dss, payment card, payment card industry, estate agents, estate agency, child safety, parental controls, regulated firms, financial services, critical infrastructure, mergers and acquisitions, manda, m&a, research and development, r&d, intellectual property, ip, telecoms, telecommunications, executives, executive, insiders, insider threat, staff, users, end users, senior executives, c-suite, boards, human element, human centric security, human centric, weakest link, boardroom, board room, ciso, ceo, cto, cio, cfo, nist, cyber essentials, cyber essentials plus, iasme, iasme governance, iasme gold, iso 27001, iso27001, cyber killchain, mitre, mitre att&ck, cis, cis controls, cap1753, cap 1753, caa, civil aviation authority, fraud investigations, forensics, cyber forensics, forensic investigations, expert witness, technical investigations, apt, china, russia, iran, north korea, nation state actors, gru, svr, fsb, dprk, ransomware, ransomware-as-a-service, raas, bec, business email compromise, email, social engineering, phishing, spear-phishing, whaling, credentials, credential stuffing, account takeover, account takeovers, ato, extortion, blackmail, denial of service, distributed denial of service, dos, ddos, rddos, botnet, cryptomining, cryptojacking, rootkits, rootkit, shadow it, remote code execution, rce, zero-day, malware, vishing, smishing, heat attacks, heat, highly evasive adaptive threats, rat, remote access trojan, cyber bullying, cyber stalking, sextortion, blockchain, wipers, destructive attacks, vulnerability, vulnerabilities, vulnerability management, patch management, patching, kev, kevs, known exploited vulnerabilities, epss, cvss, insurance, cyber insurance, incident response, incident response plan, disaster recovery, disaster recovery plan, drp, business continuity, business continuity planning, business continuity plan, training, education and awareness training, awareness, exercising, exercise, proctored exercise, facilitated exercise, simulations, gap analysis, cyber gap analysis, board upskilling, senior executive cyber risk and governance, senior executive cyber risk and governance workshops, technical assessment, technical analysis, penetration testing, pentesting, physical penetration testing, tas, targeted attack simulations, iso 27001 iso27001, technical IT security, iam, idam, identity and access management, digital transformation, change management, compliance, grc, governance risk and compliance, esg, hackers, criminals, cyber criminals, cyber warfare, espionage, cyber espionage, fraudsters, fraud, scammers, scams, scam, organised crime, criminal actor, criminal actors, terrorism, terrorists, cyber terrorists, cyber terrorism, supply chain, third parties, mssp, msp, managed service provider, managed security service provider, external it provider, internal it, apple, mac, macos, ios, iphone, android, microsoft, windows, cloud, saas, iaas, paas, dark web, databases, encryption, cryptocurrencies, iot, ai, endpoint protection, antivirus, antimalware, wfh, work from home, dns, email gateway, gdpr, online, open source, attack surface, edr, mdr, xdr, monitoring and detection, api, andorra, anguilla, antigua and barbuda, aruba, bahamas, barbados, bermuda, british virgin islands, bvi, cayman islands, channel islands, ci, cyprus, dominica, dublin, dutch antilles, gibraltar, grenada, guernsey, isle of man, jersey, liechtenstein, london, luxembourg, malta, monaco, netherlands antilles, philippines, st kitts and nevis, st lucia, st vincent and grenadines, switzerland, turks and caicos islands, scotland, edinburgh, glasgow, bristol, southampton, portsmouth, cosham, fareham, exeter, europe, offshore, south west, south east, uk, england, great britain, british isles, germany, south africa, ireland, australia, new zealand, canada

Black Arrow Cyber Threat Briefing 11 February 2022

Black Arrow Cyber Threat Briefing 11 February 2022:

-UK, US, Australia Issue Joint Advisory: Ransomware on the Loose, Critical National Infrastructure Affected

-Ransomware Groups and APT Actors Laser-Focused on Financial Services

-Why the C-Suite Should Focus on Understanding Cybersecurity and Investing Appropriately

-Almost $1.3bn Paid to Ransomware Actors Since 2020

-Cyber Crooks Frame Targets by Planting Fabricated Digital Evidence

-Highly Evasive Adaptive Threats (HEAT) Bypassing Traditional Security Defenses

-LockBit, BlackCat, Swissport, Oh My! Ransomware Activity Stays Strong

-2021 Was The Most Prolific Year On Record For Data Breaches

-$1.3 Billion Lost to Romance Scams in the Past Five Years

-Cyber Security Compliance Still Not A Priority For Many

-The World is Falling Victim to the Growing Trickbot Attacks in 2022

-“We Absolutely Do Not Care About You”: Sugar Ransomware Targets Individuals

Black Arrow AdminFebruary 13, 2022fco, modifiedelephant, heat, highly evasive adaptive threats, lockbit, blackcat, swissport, coveware, ibm, netflix, tindler swindler, identity theft research center, itrc, trickbot, sugar, sugar ransomware, puma, vodafone, fortune 500, catfishing, sim swaps, sim swapping, roaming mantis, smsishing, smishing, qbot, linux, linux malware, lockbit 2.0, emil frey, ilya lichtenstein, heather morgan, medusa, flubot, lokibot, hytera, fritzfrog, magecart, hpe server, magento, meta, facebook, instagram, molerats, oracle, apache, apple, foreign and commonwealth office, php everywhere, wordpress, sap, hivenightmare, serioussam, adobe, adobe illustrator, office macros, black arrow, black arrow cyber, cyber experts, cyber consulting, cyber investigators, cyber, cyber security, infosec, information security, threat intel, threat intelligence, threat report, business risk, business risks, cyber risk management, risk management, cyber risk assessment, risk assessment, cyber incident response, cyber incident response team, cyber emergency response, computer incident response, computer emergency response, emergency response, subject matter experts, it security, trusted adviser, trusted partner, vciso, virtual chief information security officer, viso, information security officer, security executive on demand, security as a service, security on demand, cyber security strategy, cyber strategy, british intelligence, national security, uk national security, military intelligence, mod, ministry of defence, police, law enforcement, ftse 100, ftse100, offshore financial services, gfsc, guernsey financial services commission, fortune500, ncsc, national cyber security centre, cpni, mi5, gchq, cert, cert-uk, cert.gg, nca, national crime agency, europol, interpol, enisa, nato, cisa, fbi, nsa, cia, dhs, odpa, office of the data protection authority, ico, information commissioners office, sme, smb, small business, medium sized business, accounting, law firms, legal sector, academia, education, schools, retail, maritime, aviation, transport, cni, scada, ics, industrial control systems, operational technology, ot, healthcare, medical, pharma, pharmaceuticals, pci-dss, payment card, payment card industry, estate agents, estate agency, defence, child safety, parental controls, regulated firms, financial services, critical infrastructure, executives, executive, insiders, insider threat, staff, users, senior executives, c-suite, boards, human element, human centric security, human centric, weakest link, boardroom, board room, ciso, ceo, cto, cio, nist, cyber essentials, cyber essentials plus, iso 27001, iso27001, fraud investigations, forensics, cyber forensics, forensic investigations, expert witness, technical investigations, apt, china, russia, iran, north korea, nation state actors, ransomware, bec, business email compromise, email, social engineering, phishing, spear-phishing, whaling, credentials, credential stuffing, extortion, blackmail, denial of service, ddos, botnet, cryptomining, cryptojacking, rootkits, rootkit, shadow it, remote code execution, rce, zero-day, malware, vulnerability, vulnerabilities, vulnerability management, patch management, patching, insurance, cyber insurance, incident response, incident response plan, disaster recovery, disaster recovery plan, drp, business continuity, business continuity planning, business continuity plan, training, education and awareness training, awareness, exercising, exercise, proctored exercise, facilitated exercise, simulations, gap analysis, cyber gap analysis, board upskilling, senior executive cyber risk and governance, senior executive cyber risk and governance workshops, technical assessment, technical analysis, penetration testing, pentesting, physical penetration testing, tas, targeted attack simulations, iso 27001 iso27001, iasme, iasme governance, technical IT security, hackers, criminals, cyber criminals, cyber warfare, espionage, cyber espionage, fraudsters, fraud, scammers, scams, scam, organised crime, criminal actor, criminal actors, terrorism, terrorists, cyber terrorists, cyber terrorism, supply chain, third parties, mssp, msp, mac, macos, ios, iphone, android, microsoft, windows, cloud, dark web, databases, external it, internal it, encryption, cryptocurrencies, iot, ai, endpoint protection, antivirus, antimalware, wfh, work from home, dns, email gateway, gdpr, online, open source, attack surface, andorra, anguilla, antigua and barbuda, aruba, bahamas, barbados, bermuda, british virgin islands, bvi, cayman islands, channel islands, ci, cyprus, dominica, dublin, dutch antilles, gibraltar, grenada, guernsey, isle of man, jersey, liechtenstein, london, luxembourg, malta, monaco, netherlands antilles, philippines, st kitts and nevis, st lucia, st vincent and grenadines, switzerland, turks and caicos islands, scotland, edinburgh, glasgow, bristol, southampton, portsmouth, exeter, europe, offshore, south west, south east, uk, england, great britain, british isles

Blog