Skip to main content

CBL CyberBytes Vol. 48

Page 1

CBL.CYBERBYTES

Monthly Security Awareness Newsletter

Top Cybersecurity News Highlights

01 Nearly10-hourAzureoutagecaused byDDoSattack,saysMicrosoft

Microsoft reported that a recent outage was a distributed-denial-of-service (DDoS) attack, and that a configuration error in its DDoS defenses "amplified" the attack. Link

New Android Malware NGate

Steals NFC Data to Clone Contactless Payment Cards

Cybersecurity researchers have uncovered new Android malware that can relay victims' contactless payment data from physical credit and debit cards with the goal of conducting fraudulent operations. Link

Spot The Phish

There are a number of these little guys throughout this newsletter Find them all for a chance to win!

03 Google Now Offering Up to $250,000 for Chrome Vulnerabilities

Google has significantly increased the rewards for Chrome browser vulnerabilities, offering up to $250,000 for remote code execution bugs. Link

04 Microsoft Mandates MFA for All Azure Sign-Ins

Microsoft has announced it is mandating multi-factor authentication (MFA) for all Azure sign-ins. Link

Fake Google Authenticator ads lure users to download malware on GitHub

Attackers were observed setting up fake ads to lure users to download the popular Google Authenticator app only to find out they downloaded malware from a GitHub site. Link 06

New Phishing Attack Uses Sophisticated Infostealer Malware

Threat actors have been observed making use of fake websites masquerading as legitimate antivirus solutions to propagate malware capable of stealing sensitive information from Android and Windows devices. Link

PHISHY PHISHY BPHISHY BUSINESS BUSINESS USINESS

Top Reporters

Reminder:Ifyou suspectthatyouhave receivedanysuspicious emails,reportit using thePhishAlertButton IMMEDIATELY!!

Do’s&Dont’s:Phish Reporting

Don’t just delete suspicious emails. Don’t forward to other colleagues

Don’t inquire of your suspicion via whatsapp

Don’t just ignore suspicious emails

Do report using the Phish Alert or Report Message buttons

Do forward only to

spamreporting@cablebahamascom

Do alert the appropriate personnel (IT Security Team)

Top Email Attacks

In 2023, approximately 30% of data breaches were attributed to stolen devices or unauthorized access to physical locations

20% of IT professionals reported incidents where unauthorized individuals accessed critical areas of their facilities, highlighting deficiencies in physical security controls

Organizations with robust physical security training programs for employees saw a 40% reduction in security incidents

Turn static files into dynamic content formats.

Create a flipbook
Issuu converts static files into: and more. Sign up and create your flipbook.