Fortifying Digital Defenses: A Strategic Guide to Penetration Testing in the Modern Cybersecurity Landscape

This paper advocates for a proactive approach to cybersecurity, emphasising the importance of penetration testing as a critical tool in identifying vulnerabilities and strengthening security defences. By simulating the tactics and techniques of real-world attackers, organisations can gain invaluable insights into their security posture, enabling them to fortify their digital frontiers against the ever-evolving landscape…

Identifying Phishing Emails, Ransomware, Malware, and Scams

Objective: This training aims to equip you with the skills to identify and defend against various cyber threats, including phishing emails, ransomware, malware, and scams. By recognising these threats, you can contribute to a more secure online environment for yourself and the organisation. 1. Phishing Emails: Definition: Phishing emails attempt to deceive individuals into revealing…

Phishing

You and phishing

Keep yourself as safe as possible with our guide to phishing – what it is, how to detect it and how to keep your personal details and money away from online crooks. What is phishing? Phishing (pronounced fishing) covers a broad range of online criminal activities, all centred around fooling people into giving up personal…

Vultur, with a V for VNC

by AlienVault Public  TLP:  White In this blogpost, ThreatFabric presents its findings on Vultur, a new banking trojan that can record and keylogging on victims’ devices via VNC, as part of a series of blog posts. REFERENCE: https://www.threatfabric.com/blogs/vultur-v-for-vnc.html TAGS:Vultur, VNC, Keylogging, RAT, Brunhilda INDUSTRY:Banking TARGETED COUNTRIES:Spain, Australia, Italy MALWARE FAMILIES:Brunhilda, Vultur ATT&CK IDS:T1113 – Screen Capture, T1056 – Input Capture, T1219 – Remote Access Software, T1030 –…

FlyTrap Android Malware Compromises Thousands of Facebook Accounts

by AlienVault Public  TLP:  White Mobile security firm Zimperium has uncovered a new family of Android Trojan applications that hijack Facebook accounts and spread the malware to other victims, including the US, Canada, Australia and Japan. REFERENCE: https://blog.zimperium.com/flytrap-android-malware-compromises-thousands-of-facebook-accounts https://thehackernews.com/2021/08/beware-new-android-malware-hacks.html https://blog.zimperium.com/flytrap-android-malware-compromises-thousands-of-facebook-accounts/ https://www.bleepingcomputer.com/news/security/flytrap-malware-hijacks-thousands-of-facebook-accounts/ https://uk.pcmag.com/security/134975/flytrap-android-malware-used-to-compromise-facebook-accounts TAGS:flytrap, google play, trojan, facebook, android MALWARE FAMILY:FlyTrap ATT&CK IDS:T1055 – Process Injection, T1566 – Phishing, T1557 – Man-in-the-Middle, T1503 – Credentials…

Kaseya VSA Supply-Chain Ransomware Attack

Patch now available for Kaseya VSA platform.Alert status HIGH Background The ACSC has observed reporting that organisations globally have been impacted by the Kaseya VSA compromise and REvil ransomware. The ACSC has also received reporting from impacted Australian organisations. The ACSC is aware that a vulnerability in the Kaseya VSA platform enabled the REvil group to distribute malware through…