With the influx of remote workers, it’s a perfect opportunity to flood people’s inboxes with malicious emails and fake links. The Cofense Phishing Defense Center (PDC) recently uncovered a phishing campaign that targets employees to harvest their Microsoft credentials. Ironically, the phish was found in an environment protected by Microsoft’s own secure email gateway (SEG). The phishing email, which was reported to the PDC using the Cofense Reporter button, included a well thought out “AudioChat” notification link supposedly from Microsoft Teams.

Teams is one of the most popular platforms for remote employees. Predictably, the threat actors have taken this into consideration – especially during the COVID-19 pandemic with millions of people teleworking. We expect this trend to continue with similar communication platforms.

 

In the interest of helping to keep you safe not only at work but at home, SOPHOS has made available multiple free products that are available for personal use that you may find useful.  This is even more vital if you are working remotely from a personal computer. 

In recent months we've seen an increase in email that has the name of a staff member, usually a supervisor or director, on it but is from an unknown email address.  Anyone can put any name they like on an email account, so it's very hard to prevent this.  However they tend to send phishing email like this in an attempt to steal money.  Please see the blog post for further details and an amazing example.

The City has seen an influx of phishing emails lately that claim to be sending you a Voicemail Message.  Check out this post for further details.

Your mobile devices – including smartphones, laptops and tablets – are always within reach everywhere you go, whether for work, travel or entertainment. These devices make it easy to connect to the world around you, but they can also pack a lot of info about you and your friends and family, like your contacts, photos, videos, location and health and financial data. It's important to use your mobile devices safely. The first step is to STOP. THINK. CONNECT. STOP: make sure security measures are in place. THINK: about the consequences of your actions and behaviors online. CONNECT: and enjoy your devices with more peace of mind.

VPNs ('Virtual Private Networks') are a good idea to use on your mobile devices to protect your privacy when connected to a public or other ...

Have you ever experienced odd happenings on your computer, gotten weird messages, had friends get strange messages supposedly from you, etc? Then there is a ...

Over the past few years, gadgets have become increasingly common in our homes to make them 'smart'. The devices range from voice assistants (such as ...

While we have written about the various ways to identify phishing emails, we want to alert you to a specific type of phishing that we have noticed has been on the rise lately, Credential Phishing. 

As we are upon another tax season, scams involving tax filing always increase in intensity. 

Phishers take advantage of the increase in year-end online shopping during the most popular shopping holidays of the year—Black Friday, Cyber Monday, and the days leading up to Christmas.

We have recently seen an uptick in emails that contain foreign languages, especially German and Chinese. Be extremely careful with them. 

Phishing via email is a significant problem and is where over 90% of malicious attacks begin. Payroll phishing is a type that is increasing. Find ...

There is malware called VPNFilter going around the Internet that is designed to infect various models of home and small-business type routers.  Reboot to protect your device.

Equifax, one of three U.S. credit reporting agencies, recently experienced a security breach that affects 143 million Americans.

Read these eight tips to help you avoid getting tricked into clicking a link in a malicious email with phishy content.

Today is the day to #LayerUp by making sure you have strong passwords protecting your information. Here’s how: Never give your password to anyone. If ...

Mobile apps have become part of our daily lives.  Find out how to keep them - and your personal information - secure.

Here’s why that’s a bad idea.

USB "Thumb" Drives are popular tools for backing up and transporting
data. They are small and feather-light, yet can hold mountains of data.
Their compact design enables us to conveniently slip them into our
pockets when on the go and then used in almost any device that's handy.
However, it is precisely this efficient usefulness that also makes them
dangerous. Consider the following...

Ransomware is a type of malicious software designed to block access to a computer system until a sum of money is paid. It's a thriving new virus that offers hackers a simple, reliable revenue stream. Classic malware sits and waits in the dark corners of your system, hoping that you'll eventually type in personal details like a credit card number they can steal. However, ransomware isn't shy. Once it's on your system, it encrypts your files and holds your data hostage and loudly demands that you pay your attacker directly. The demand often looks something like this: