In edition no. 161 of Internet Security Week , the dangers of new employees, ChatGPT becomes bait for new scams, research highlights the 50 brands most used in Phishing attacks and much more.
News
Espionage operation steals files and takes screenshots of infected PCs
An espionage operation has been underway since 2021 using malware that has only just been discovered. Apparently linked to geopolitical interests, the attacks target companies in the administration, agriculture and transport sectors in three European countries and appear to focus on the theft of privileged information.
By Felipe Demartini on Canaltech
How Eager-to-Please New Employees Get Scammed
Scammers are using social engineering to extort newly hired employees.
By John Snow on Kaspersky Daily
Essential Spyware Protection for Business: What You Need to Know
Is it possible to protect yourself from spyware? Thinking about helping you, we have prepared complete material with everything you need to know about the risks and losses that can be caused by this type of malware.
By Kelvin Zimmer on Lumiun Blog
ChatGPT becomes bait for new scams
Malicious extensions, fake ChatGPT websites that propagate malware or fake profiles on social networks are some of the ways in which cybercriminals use the name of this service to attract new victims.
By Juan Manuel Harán in We Live Security
Research points out the 50 most faked brands in phishing
Internet security services company Cloudflare has released a list of the 50 most spoofed brands in phishing emails. According to the company, the analysis was possible thanks to the breadth of its network, which protects almost 20% of global internet traffic.
In CISO Advisor
Around 16% of companies fell victim to malware in 2021
About 16% of organizations worldwide have detected communication with domains associated with command and control (known as C&C) servers, indicating network breaches during the past year. This is according to the new State of the Internet report, from Akamai Technologies, which analyzes global DNS (domain name system) traffic.
In CISO Advisor
Amounts Receivable Scam offers almost R$2,000 to steal data
The Central Bank's Receivables system continues to give rise to phishing schemes, with criminals using fake websites and the promise of high financial returns to steal victims' personal data. The current campaign, as usual, is spread via WhatsApp and features a fraudulent website, hosted on a Russian domain, to simulate consultations.
By Felipe Demartini on Canaltech
Brazil and WhatsApp phishing attacks
In 2022, Brazil was the country with the most WhatsApp phishing attacks in the world. The survey also shows that we are the fourth country that received the most malicious emails.
In Kaspersky Daily
How to monitor what employees are accessing on the internet
Creating a company internet access control policy can avoid many internet security problems. The first step to creating an efficient policy is to monitor what employees are accessing on the company's internet.
By Kelvin Zimmer on Lumiun Blog
Reconnaissance: the first step in a cyber attack
Collection of information that helps criminals understand the environment they will attack. Follow the first article in the series that will explain the steps taken by criminals to compromise environments.
By Daniel Cunha Barbosa in We Live Security
Podcast
RedCast – The Information Security podcast
- We invite big names in the market to share their experience on the most important issues of the moment. Each episode can help your company take the next steps towards Security!
Are you not yet subscribed to our newsletter to receive this content weekly by email? Then sign up using the link below:
https://br.lumiun.com/semana-da-seguranca-na-internet
Share the link with your colleagues and friends.
