slack — Black Arrow Cyber Consulting

Posts tagged slack

Black Arrow Cyber Threat Briefing 15 December 2023

Black Arrow Cyber Threat Intelligence Briefing 15 December 2023:

-MPs say UK Could be Brought to Standstill ‘At Any Moment’ as Scathing Report Calls for Greater Security Investment

-Gartner Finds 45% of Organisations Experienced Third Party-Related Business Interruptions

-Major Cyber Attack Paralyzes Ukraine's Largest Telecom Operator; Russia Expected to Ramp Up Attacks on Ukraine’s Allies

-81% of Companies had Malware, Phishing and Password Attacks in 2023

-Cyber Criminals Hit SMEs With Skills Once Limited to Nation State Actors

-Russian Cyber Actors are Exploiting a Known Vulnerability with Worldwide Impact

-Why Cyber Security Is a Competitive Advantage: Reaching Digital Success

-Ransomware-as-a-Service: The Growing Threat You Can't Ignore

-66% of Employees Prioritise Daily Tasks Over Cyber Security

-Cyber Attack on Irish Utility Cuts Off Water Supply for Two Days

-Who Is Responsible for Cyber Security? You.

-Many Popular Websites Still Cling to Password Creation Policies From 1985

Black Arrow AdminDecember 17, 2023jcnss, parliament joint committe on national security strategy, gartner, kyivstar, solntsepek, verizon, sentinalone, jetbrain, mycity, apt29, solarwinds, cyberav3ngers, mgm resorts, sec. securities exchange comission, uber, hive, kraft heinz, google forms, insomniac, bauer, norton, nissan, guloader, lazarus, log4j, spyloan, 5ghoul, whatsapp, slack, 23andme, ubiquiti, toyota, air force, newsquest, donarview, olvx, kelvin security, ledger, joe sullivan, eidas, mitre, nso, volt typhoon, apt28, mi6, killnet, oilrig, adobe, sap, sophos, sellafield, lindy cameron, metaverse, opentext, teamcity, clorox, black arrow cyber, black arrow, threat intelligence, osint, ncsc, national cyber security centre, cpni, mi5, gchq, cert, nca, national crime agency, europol, interpol, enisa, nato, cyber, information security, it security, cyber warfare, russia, north korea, china, iran

Black Arrow Cyber Threat Briefing 18th August 2023

Black Arrow Cyber Threat Intelligence Briefing 18 August 2023:

-Ransomware Group Targeting MSPs Worldwide in New Campaign

-As Ransomware Surges, A lack of Resources Makes SMBs Most Vulnerable

-Business Email Compromise Attack Costs Far Exceeding Ransomware Losses

-Email Phishing Remains the Main Entry for Cyber Criminals; People with Six Personality Traits are More Susceptible

-Gartner Study Finds Generative AI to be a Top Emerging Risk for Organisations

-LinkedIn Suffers Significant Wave of Account Hacks

-High Net-Worth Families are at Risk of Cyber Crime

-Cyber Attack Rule Raises Insurance Risks for Corporate Officers

-PSNI and UK Voter Breaches Show Data Security Should be Taken More Seriously

-The Imperative of Cyber Preparedness: The Power of Tabletop Exercises

-Why Are Phones a Cyber Security Weak Spot?

Black Arrow AdminAugust 20, 2023fortnite, roblox, maginotdns, wordpress, avada, amd, xurum, audiocodes, ivanti, adblock 360, kubernetes, cumbria, suffolk, norfolk, mpd fm, gigabud, ernst& young, secureworks, digiheals, blackcat, crimeware, freedom of information, foi, cloudflare, gartner, chatgpt, blackberry, linkedin, sec, securuties and exchange commission, psni, electoral comission, play, knight, tripadvisor, onedrive, netwalker, lolekhosted, vmware esxi, monti, rapid7, sophos, royal, blalckcat, moveit, hhs, ibm, lockbit, prince goerge, clorox, bianlian, meta, zimbr, owasp, google, openai, zoom, macos, citrix netscaler, xworm, remcos, gootloader, racoon stealer, janelarat, aukill, slack, trello, lapsus$, mirai, ford, sync3, alberta dental, discord.io, ftx, sam bankman, powershell, typosquatting, doubledrive, aws, amazon, whatsapp, mog, apt29, starlink, zulip, apt31, magento, chrome 116, firefox, iso 31000, coso, proxyjacking, hyperjacking, black arrow cyber, black arrow, threat intelligence, osint, ncsc, national cyber security centre, cpni, mi5, gchq, cert, nca, national crime agency, europol, interpol, enisa, nato, cyber, information security, it security, cyber warfare, russia, north korea, china, iran

Black Arrow Cyber Threat Briefing 23rd June 2023

Black Arrow Cyber Threat Briefing 23 June 2023:

-How the MOVEit Breach Shows Hackers' Interest in Corporate File Transfer Tools

-Attackers Discovering Exposed Cloud Assets Within Minutes

-Majority of Users Neglect Best Password Practices

-One in Three Workers Susceptible to Phishing

-Ransomware Misconceptions Abound, to the Benefit of Attackers

-Threat Actors Scale and Commoditise Uncommon Tools and Techniques

-Goodbyes are Difficult, IT Offboarding Processes Make Them Harder

-Security Budget Hikes are Missing the Mark, CISOs Say

-Understanding Cyber Resilience: Building a Holistic Approach to Cyber Security

-Emerging Ransomware Group 8Base Releasing Data on SMBs Globally

-Cyber Security Industry Still Fighting to Recruit and Retain Talent

-Financial Firms to Build Resilience in Face of Growing Cyber-Threats

-Fulfilling Expected SEC Requirements for Cyber Security Expertise at Board Level

Black Arrow AdminJune 25, 2023moveit, accelion, fortra, dropbox, wetransfer, proofpoint, github, google workspace, slack, okta, 8base, cbest, knowbe4, sec, dora, infosecurityeurope, pwc, bbc, ba, avast, norton, sophos, cisa, fbi, ey, blackcat, adur, worthing, ups, chatgpt, onlyfans, diicot, condi, 3cx, reddit, capita, western digital, megaupload, asus, zyxel, chrome, trellix, lenovo, securities and exchange commission, rorschach, university of manchester, manchester university, usda, joe biden, rdstealer, mystic stealer, apt37, blacklotus, scarcruft, flea, chameldoh, gravityrat, apple, android, mirai, zeeland, pet feeders, us military, mondelez, sap, telegram, blockchain, influencers, social media, amazon, amazon s3, shadow it, intel, ssh, tsunami botnet, lockbit, killnet, gru, apt28, doj, us department of justice, cadet blizzard, apt15, red eyes, vmware, vmware vrealize, gifshell, wordpress, azure, gigabyte motherboards, triangulation spyware, repojacking, black arrow cyber, black arrow, threat intelligence, osint, ncsc, national cyber security centre, cpni, mi5, gchq, cert, nca, national crime agency, europol, interpol, enisa, nato, cyber, information security, it security, cyber warfare, russia, north korea, china, iran

Black Arrow Cyber Threat Briefing 06 January 2023

Black Arrow Cyber Threat Briefing 06 January 2023:

-Cyber War in Ukraine, Ransomware Fears Drive Surge in Demand for Threat Intelligence Tools

-Cyber Premiums Holding Firms to Ransom

-Ransomware Ecosystem Becoming More Diverse For 2023

-Attackers Evolve Strategies to Outmanoeuvre Security Teams

-Building a Security-First Culture: The Key to Cyber Success

-Adobe, Apple, Cisco, Microsoft Flaws Make Up Half of Known Exploited Vulnerabilities Catalogue

-First LastPass, Now Slack and CircleCI. The Hacks Go On (and will likely worsen)

-Data of 235 Million Twitter Users Leaked Online

-16 Car Makers, including BMW, Ferrari, Ford, Honda, Kia, Land Rover, Mercedes and Toyota, and Their Vehicles Hacked via Telematics, APIs, Infrastructure

-Ransomware Gang Apologizes, Gives SickKids Hospital Free Decryptor

Black Arrow AdminJanuary 8, 2023ukraine, cyberrisk alliance, mactavish, marsh, darkside, sodinokibi, revil, conti, titaniam, lastpass, slack, circleci, twitter, bmw, ferrari, ford, genesis, honda, hyundai, infiniti, jaguar, kia, land rover, mercedes-benz, nissan, porsche, rolls royce, toyota, vin, vehicle identification number, lockbit, sickkids, toronto, rackspace, the guardian, megacotrex, wabtec, arnold clark, bitdefender, nhs, flipper zero, raspberry robin, bluebootle, pytortch, dridex, bitrat, blind eagle, wordpress, vidar stealer, linux, five guys, meta, redzei, chatgpt, cloudsek, ghostwriter, poland, zoho, manageengine, netgear, fortinet, qualcomm, lenovo, synology, fortiadc, confidential computing, black arrow, black arrow cyber, cyber experts, cyber consulting, cyber investigators, cyber, cyber security, infosec, information security, threat intel, threat intelligence, threat report, business risk, business risks, cyber risk management, risk management, cyber risk, cyber security risk, cyber risk assessment, risk assessment, cyber incident response, cyber incident response team, cyber emergency response, computer incident response, computer emergency response, emergency response, subject matter experts, it security, trusted adviser, trusted partner, vciso, virtual chief information security officer, viso, information security officer, security executive on demand, security as a service, security on demand, cyber security strategy, cyber strategy, cyber kill chain, security as a a service, security-as-a-service, hr, human resources, human resources management, hrm, british intelligence, national security, uk national security, military intelligence, mod, ministry of defence, police, law enforcement, ftse 100, ftse100, offshore financial services, gfsc, guernsey financial services commission, fortune 500, fortune500, ncsc, national cyber security centre, cpni, mi5, gchq, cert, cert-uk, cert.gg, five eyes, cyber guernsey, guernsey cyber, nca, national crime agency, europol, interpol, enisa, nato, australian cyber security centre, acsc, canadian centre for cyber security, cccs, new zealand national cyber security centre, ncsc-nz, cybersecurity and infrastructure agency, cisa, national security administration, nsa, federal bureau of investigation, fbi, central intelligence agency, cia, department of homeland security, dhs, secret service, odpa, office of the data protection authority, ico, information commissioners office, isc2, isaca, comptia, sans, sme, smb, small business, medium sized business, accounting, law firms, legal sector, academia, education, schools, retail, maritime, aviation, aerospace, transport, defence, defense, defence contractor, cni, scada, ics, industrial control systems, operational technology, ot, healthcare, medical, pharma, pharmaceuticals, pci-dss, payment card, payment card industry, estate agents, estate agency, child safety, parental controls, regulated firms, financial services, critical infrastructure, mergers and acquisitions, manda, m&a, research and development, r&d, intellectual property, ip, telecoms, telecommunications, executives, executive, insiders, insider threat, staff, users, end users, senior executives, c-suite, boards, human element, human centric security, human centric, weakest link, boardroom, board room, ciso, ceo, cto, cio, cfo, nist, cyber essentials, cyber essentials plus, iasme, iasme governance, iasme gold, iso 27001, iso27001, cyber killchain, mitre, mitre att&ck, cis, cis controls, cap1753, cap 1753, caa, civil aviation authority, fraud investigations, forensics, cyber forensics, forensic investigations, expert witness, technical investigations, apt, china, russia, iran, north korea, nation state actors, gru, svr, fsb, ransomware, ransomware-as-a-service, raas, crime-as-a-service, bec, business email compromise, email, social engineering, phishing, spear-phishing, whaling, credentials, credential stuffing, account takeover, account takeovers, ato, extortion, blackmail, denial of service, distributed denial of service, dos, ddos, rddos, botnet, cryptomining, cryptojacking, rootkits, rootkit, shadow it, remote code execution, rce, zero-day, malware, vishing, smishing, heat attacks, heat, highly evasive adaptive threats, rat, remote access trojan, cyber bullying, cyber stalking, sextortion, blockchain, wipers, destructive attacks, vulnerability, vulnerabilities, vulnerability management, patch management, patching, kev, kevs, known exploited vulnerabilities, epss, cvss, insurance, cyber insurance, incident response, incident response plan, disaster recovery, disaster recovery plan, drp, business continuity, business continuity planning, business continuity plan, training, education and awareness training, awareness, exercising, exercise, proctored exercise, facilitated exercise, simulations, gap analysis, cyber gap analysis, board upskilling, senior executive cyber risk and governance, senior executive cyber risk and governance workshops, technical assessment, technical analysis, penetration testing, pentesting, physical penetration testing, tas, targeted attack simulations, iso 27001 iso27001, technical IT security, iam, idam, identity and access management, digital transformation, change management, compliance, grc, governance risk and compliance, esg, hackers, criminals, cyber criminals, cyber warfare, espionage, cyber espionage, fraudsters, fraud, scammers, scams, scam, organised crime, criminal actor, criminal actors, terrorism, terrorists, cyber terrorists, cyber terrorism, supply chain, third parties, mssp, msp, managed service provider, managed security service provider, external it provider, internal it, apple, mac, macos, ios, iphone, android, microsoft, windows, cloud, saas, iaas, paas, dark web, databases, encryption, cryptocurrencies, iot, ai, endpoint protection, antivirus, antimalware, wfh, work from home, dns, email gateway, gdpr, online, open source, attack surface, edr, mdr, xdr, monitoring and detection, api, andorra, anguilla, antigua and barbuda, aruba, bahamas, barbados, bermuda, british virgin islands, bvi, cayman islands, channel islands, ci, cyprus, dominica, dublin, dutch antilles, gibraltar, grenada, guernsey, isle of man, jersey, liechtenstein, london, luxembourg, malta, monaco, netherlands antilles, philippines, st kitts and nevis, st lucia, st vincent and grenadines, switzerland, turks and caicos islands, scotland, edinburgh, glasgow, bristol, southampton, portsmouth, fareham, exeter, europe, offshore, south west, south east, uk, england, great britain, british isles, germany, south africa, ireland, australia, new zealand, canada

Black Arrow Cyber Threat Briefing 23 September 2022

Black Arrow Cyber Threat Briefing 23 September 2022:

-Cyber Insurers Clamp Down on Clients' Self-Attestation of Security Controls

-Survey Shows CISOs Losing Confidence in Ability to Stop Ransomware Attacks

-MFA Fatigue: Hackers’ New Favourite Tactic In High-Profile Breaches

-Credential Stuffing Accounts For One-third Of Global Login Attempts, Okta Finds

-Ransomware Operators Might Be Dropping File Encryption In Favour Of Corrupting Files

-Revolut Hack Exposes Data Of 50,000 Users, Fuels New Phishing Wave

-Researchers Say Insider Threats Play A Larger Role In Security Incidents

-SMBs vs. Large Enterprises: Not All Compromises Are Created Equal

-Cyber Attack Costs for Businesses up by 80%

-Morgan Stanley Fined $35m By SEC For Data Security Lapse, Sold Devices Full of Customer PII

-Eyeglass Reflections Can Leak Information During Video Calls

-Uber Says It Was Likely Hacked by Teenage Hacker Gang LAPSUS$

Black Arrow AdminSeptember 25, 2022travelers insurance, travelers property casualty company of america, international control systems, spycloud, mfa fatigue, okta, blackcat, alphv, exmatter, ftp, sftp, webdav, blackmatter, s3, mongodb, elasticsearch, redis, revolut, cisco, cisco talos, lumu, hiscox, morgan stanley, sec securities and exchange commission, zoom, lapsus$, targetcompany, lockbit, lockergoga, bosnia, herzegovina, lausd, microsoft exchange, oauth, linkedin, bbc, dkim, github, american airlines, chromeloader, seo poisoning, void balaur, ukraine, do kwon, nigeria, cambodia, uber, wintermute, twitch, france, germany, metador, whatsapp, instagram, albania, zoho, manageengine, attachme, atlassian, confluence, bind, python, magento, vmware, slack, microsoft teams, black arrow, black arrow cyber, cyber experts, cyber consulting, cyber investigators, cyber, cyber security, infosec, information security, threat intel, threat intelligence, threat report, business risk, business risks, cyber risk management, risk management, cyber risk, cyber security risk, cyber risk assessment, risk assessment, cyber incident response, cyber incident response team, cyber emergency response, computer incident response, computer emergency response, emergency response, subject matter experts, it security, trusted adviser, trusted partner, vciso, virtual chief information security officer, viso, information security officer, security executive on demand, security as a service, security on demand, cyber security strategy, cyber strategy, cyber kill chain, security as a a service, security-as-a-service, british intelligence, national security, uk national security, military intelligence, mod, ministry of defence, police, law enforcement, ftse 100, ftse100, offshore financial services, gfsc, guernsey financial services commission, fortune 500, fortune500, ncsc, national cyber security centre, cpni, mi5, gchq, cert, cert-uk, cert.gg, five eyes, cyber guernsey, guernsey cyber, nca, national crime agency, europol, interpol, enisa, nato, australian cyber security centre, acsc, canadian centre for cyber security, cccs, new zealand national cyber security centre, ncsc-nz, cybersecurity and infrastructure agency, cisa, national security administration, nsa, federal bureau of investigation, fbi, central intelligence agency, cia, department of homeland security, dhs, secret service, odpa, office of the data protection authority, ico, information commissioners office, isc2, isaca, sme, smb, small business, medium sized business, accounting, law firms, legal sector, academia, education, schools, retail, maritime, aviation, aerospace, transport, defence, defense, defence contractor, cni, scada, ics, industrial control systems, operational technology, ot, healthcare, medical, pharma, pharmaceuticals, pci-dss, payment card, payment card industry, estate agents, estate agency, child safety, parental controls, regulated firms, financial services, critical infrastructure, mergers and acquisitions, manda, m&a, research and development, r&d, intellectual property, ip, telecoms, telecommunications, executives, executive, insiders, insider threat, staff, users, end users, senior executives, c-suite, boards, human element, human centric security, human centric, weakest link, boardroom, board room, ciso, ceo, cto, cio, cfo, nist, cyber essentials, cyber essentials plus, iasme, iasme governance, iasme gold, iso 27001, iso27001, cyber killchain, mitre, mitre att&ck, cis, cis controls, cap1753, cap 1753, caa, civil aviation authority, fraud investigations, forensics, cyber forensics, forensic investigations, expert witness, technical investigations, apt, china, russia, iran, north korea, nation state actors, gru, svr, fsb, ransomware, bec, business email compromise, email, social engineering, phishing, spear-phishing, whaling, credentials, credential stuffing, account takeover, account takeovers, ato, extortion, blackmail, denial of service, distributed denial of service, dos, ddos, rddos, botnet, cryptomining, cryptojacking, rootkits, rootkit, shadow it, remote code execution, rce, zero-day, malware, vishing, smishing, heat attacks, heat, highly evasive adaptive threats, rat, remote access trojan, cyber bullying, cyber stalking, sextortion, blockchain, vulnerability, vulnerabilities, vulnerability management, patch management, patching, kev, kevs, known exploited vulnerabilities, insurance, cyber insurance, incident response, incident response plan, disaster recovery, disaster recovery plan, drp, business continuity, business continuity planning, business continuity plan, training, education and awareness training, awareness, exercising, exercise, proctored exercise, facilitated exercise, simulations, gap analysis, cyber gap analysis, board upskilling, senior executive cyber risk and governance, senior executive cyber risk and governance workshops, technical assessment, technical analysis, penetration testing, pentesting, physical penetration testing, tas, targeted attack simulations, iso 27001 iso27001, technical IT security, iam, idam, identity and access management, digital transformation, change management, hackers, criminals, cyber criminals, cyber warfare, espionage, cyber espionage, fraudsters, fraud, scammers, scams, scam, organised crime, criminal actor, criminal actors, terrorism, terrorists, cyber terrorists, cyber terrorism, supply chain, third parties, mssp, msp, managed service provider, managed security service provider, external it provider, internal it, apple, mac, macos, ios, iphone, android, microsoft, windows, cloud, saas, iaas, paas, dark web, databases, encryption, cryptocurrencies, iot, ai, endpoint protection, antivirus, antimalware, wfh, work from home, dns, email gateway, gdpr, online, open source, attack surface, edr, mdr, xdr, monitoring and detection, andorra, anguilla, antigua and barbuda, aruba, bahamas, barbados, bermuda, british virgin islands, bvi, cayman islands, channel islands, ci, cyprus, dominica, dublin, dutch antilles, gibraltar, grenada, guernsey, isle of man, jersey, liechtenstein, london, luxembourg, malta, monaco, netherlands antilles, philippines, st kitts and nevis, st lucia, st vincent and grenadines, switzerland, turks and caicos islands, scotland, edinburgh, glasgow, bristol, southampton, portsmouth, fareham, exeter, europe, offshore, south west, south east, uk, england, great britain, british isles, south africa, ireland

Black Arrow Cyber Threat Briefing 05 August 2022

-Average Cost of Data Breaches Hits Record High of $4.35 Million: IBM

-Researchers Warns of Large-Scale Adversary-in-the-Middle (AiTM) Attacks Targeting Enterprise Users

-UK NHS Suffers Outage After Cyber Attack on Managed Service Provider

-A Third of Organisations Experience a Ransomware Attack Once a Week

-Ransomware Products, Services Ads on Dark Web Show Clues to Danger

-Wolf In Sheep’s Clothing, How Malware Tricks Users and Antivirus

-Microsoft Accounts Targeted with New MFA-Bypassing Phishing Kit

-Cyber Attack Prevention Is Cost-Effective, So Why Aren’t Businesses Investing to Protect?

-Securing Your Move to the Hybrid Cloud

-Lessons from the Russian Cyber Warfare Attacks

-Four Sneaky Attacker Evasion Techniques You Should Know About

-Zero-Day Defence: Tips for Defusing the Threat

Black Arrow AdminAugust 7, 2022ponemon, ponemon institute, ibm, ibm security, aitm, adversary-in-the-Middle, 2fa, mfa, advanced, advanced adastra, nhs, 111, venafi, forensic pathways, babuk, goldeneye, darkside, blackcat, virustotal, skype, adobe, vlc, 7zip, malwarebytes, zoom, brave, firefox, protonvpn, zscaler, zscaler threatlabz, attackiq, hybrid cloud, lockbit, german chamber of industry and commerce, havanacrypt, encevo, amex, snapchat, gmail, aol, gootkit, woody rat, rapperbot, ssh, discord, bluetooth, nomad, solana, coinbase, t-mobile, robinhood, c2-as-a-service, parliament, tiktok, twitter, imminent monitor rat, australia, nancy pelosi, taiwan, greek intelligence, pegasus, huawei, draytek, cisco, f5, kaspersky, kaspersky vpn, atlassian, atlassian confluence, confluence, slack, zimbra, covid-19, ukraine, drp, black arrow, black arrow cyber, cyber experts, cyber consulting, cyber investigators, cyber, cyber security, infosec, information security, threat intel, threat intelligence, threat report, business risk, business risks, cyber risk management, risk management, cyber risk, cyber security risk, cyber risk assessment, risk assessment, cyber incident response, cyber incident response team, cyber emergency response, computer incident response, computer emergency response, emergency response, subject matter experts, it security, trusted adviser, trusted partner, vciso, virtual chief information security officer, viso, information security officer, security executive on demand, security as a service, security on demand, cyber security strategy, cyber strategy, cyber kill chain, security as a a service, security-as-a-service, british intelligence, national security, uk national security, military intelligence, mod, ministry of defence, police, law enforcement, ftse 100, ftse100, offshore financial services, gfsc, guernsey financial services commission, fortune 500, fortune500, ncsc, national cyber security centre, cpni, mi5, gchq, cert, cert-uk, cert.gg, five eyes, cyber guernsey, guernsey cyber, nca, national crime agency, europol, interpol, enisa, nato, australian cyber security centre, acsc, canadian centre for cyber security, cccs, new zealand national cyber security centre, ncsc-nz, cybersecurity and infrastructure agency, cisa, national security administration, nsa, federal bureau of investigation, fbi, central intelligence agency, cia, department of homeland security, dhs, secret service, odpa, office of the data protection authority, ico, information commissioners office, isc2, isaca, sme, smb, small business, medium sized business, accounting, law firms, legal sector, academia, education, schools, retail, maritime, aviation, aerospace, transport, defence, defense, defence contractor, cni, scada, ics, industrial control systems, operational technology, ot, healthcare, medical, pharma, pharmaceuticals, pci-dss, payment card, payment card industry, estate agents, estate agency, child safety, parental controls, regulated firms, financial services, critical infrastructure, mergers and acquisitions, manda, m&a, research and development, r&d, intellectual property, ip, telecoms, telecommunications, executives, executive, insiders, insider threat, staff, users, end users, senior executives, c-suite, boards, human element, human centric security, human centric, weakest link, boardroom, board room, ciso, ceo, cto, cio, cfo, nist, cyber essentials, cyber essentials plus, iasme, iasme governance, iasme gold, iso 27001, iso27001, cyber killchain, mitre, mitre att&ck, cis, cis controls, cap1753, cap 1753, caa, civil aviation authority, fraud investigations, forensics, cyber forensics, forensic investigations, expert witness, technical investigations, apt, china, russia, iran, north korea, nation state actors, gru, svr, fsb, ransomware, bec, business email compromise, email, social engineering, phishing, spear-phishing, whaling, credentials, credential stuffing, account takeover, account takeovers, ato, extortion, blackmail, denial of service, distributed denial of service, dos, ddos, rddos, botnet, cryptomining, cryptojacking, rootkits, rootkit, shadow it, remote code execution, rce, zero-day, malware, vishing, smishing, heat attacks, heat, highly evasive adaptive threats, rat, remote access trojan, cyber bullying, cyber stalking, sextortion, blockchain, vulnerability, vulnerabilities, vulnerability management, patch management, patching, kev, kevs, known exploited vulnerabilities, insurance, cyber insurance, incident response, incident response plan, disaster recovery, disaster recovery plan, business continuity, business continuity planning, business continuity plan, training, education and awareness training, awareness, exercising, exercise, proctored exercise, facilitated exercise, simulations, gap analysis, cyber gap analysis, board upskilling, senior executive cyber risk and governance, senior executive cyber risk and governance workshops, technical assessment, technical analysis, penetration testing, pentesting, physical penetration testing, tas, targeted attack simulations, iso 27001 iso27001, technical IT security, iam, idam, identity and access management, digital transformation, change management, hackers, criminals, cyber criminals, cyber warfare, espionage, cyber espionage, fraudsters, fraud, scammers, scams, scam, organised crime, criminal actor, criminal actors, terrorism, terrorists, cyber terrorists, cyber terrorism, supply chain, third parties, mssp, msp, managed service provider, managed security service provider, external it provider, internal it, apple, mac, macos, ios, iphone, android, microsoft, windows, cloud, saas, iaas, paas, dark web, databases, encryption, cryptocurrencies, iot, ai, endpoint protection, antivirus, antimalware, wfh, work from home, dns, email gateway, gdpr, online, open source, attack surface, edr, mdr, xdr, monitoring and detection, andorra, anguilla, antigua and barbuda, aruba, bahamas, barbados, bermuda, british virgin islands, bvi, cayman islands, channel islands, ci, cyprus, dominica, dublin, dutch antilles, gibraltar, grenada, guernsey, isle of man, jersey, liechtenstein, london, luxembourg, malta, monaco, netherlands antilles, philippines, st kitts and nevis, st lucia, st vincent and grenadines, switzerland, turks and caicos islands, scotland, edinburgh, glasgow, bristol, southampton, portsmouth, exeter, europe, offshore, south west, south east, uk, england, great britain, british isles, germany, south africa

Black Arrow Cyber Threat Briefing 09 April 2021

Black Arrow Cyber Threat Briefing 09 April 2021: Ransomware Attacks Grew By 485% In 2020; Cyber Insurance Firm Suffers Cyber Attack; Ransom Gangs Emailing Victim Customers For Leverage; 'We Have Your Porn Collection' - The Rise Of Extortionware; Should Firms Be More Worried About Firmware Cyber Attacks; Armed Conflict Draws Closer As State-Backed Cyber Attacks Intensify; Coca-Cola Trade Secret Theft Underscores Importance Of Insider Threat Early Detection; Attackers Blowing Up Discord, Slack With Malware

Black Arrow Cyber Threat Briefing 05 March 2021

Black Arrow Cyber Threat Briefing 05 March 2021: New Strain Of Ransomware Implements Self-Spreading Capabilities; One In Four People Use Work Passwords For Consumer Websites; Massive Rise In Threats Across Expanding Attack Surfaces; Half of Orgs Concerned Remote Working Puts Them at Greater Risk of Cyber Attacks; Microsoft Patches Four Zero-Day Exchange Server Bugs; A Booming Trade In Bugs Is Undermining Cyber Security; Weaponized Spectre Exploit Discovered; Solarwinds Security Fiasco May Have Started With Simple Password Blunders

Blog