Businesses beware of new cyber scams

  • 0

Businesses beware of new cyber scams

    Businesses beware of new cyber scams

Businesses are at risk of being targeted by the latest cyber scams affecting Apple, Android, Adobe Flash, Windows 10 and email users.

In a report issued by the UK’s national fraud and internet crime reporting centre, the most recent threats are outlined along with preventative measures and solutions, as suggested by Action Fraud.

First of the outlined threats is an Apple OS X hack, attackers have been taking advantage of a new bug known as DYLD, installing malware and adware on Macs without the need for a password or administrative permissions. Currently a patch is being created to fix this and Action Fraud recommends keeping a look out for OS X updates.

Apple has also fallen victim to its first firmware worm known as Thunderstrike 2 (firmware is the control programme for a device). After being downloaded onto a computer (via phishing emails, malicious websites etc.) the worm infects accessories connected via Thunderbolt connection.

It then targets and lives in the firmware of a device and can evade a whole system reboot. To combat this, ensure all updates are enabled and avoid using untrusted Thunderbolt devices in your Mac.

The second is a vulnerability that has been detected in Android OS. It causes a device to constantly reboot itself when triggered by an app or a specially crafted website. The trigger prompts the user to play a media file (.MKV) via the media server plugin, which is then exploited causing the device to be stuck in reboot cycle.

To counteract this, the device needs to be rebooted in Safe Mode by holding the power button down and pressing the PowerOff option, until you see the pop-up box asking you to restart in Safe Mode.

A patch for this should be released soon and Google has classified this only as a low level vulnerability.

The Third scam involves fake Windows 10 upgrade emails being sent out as part of a new spam campaign which, once opened, infects victims with ransomware. The email comes from update@microsoft.com and the attachment is named”Win10Installer.zip”.

To avoid becoming victim to the upgrade scam, Action Fraud suggests regularly backing up your files to an external hard drive that is disconnected from your computer when not in use. Avoid downloading any attachments claiming to be Windows 10 upgrades and only download the new OS from either the Microsoft website or the update icon at the bottom corner of the screen.

The fourth scam is a vulnerability reportedly affecting Adobe Flash. This had originally been patched by Adobe on the 14th July, but is now back. A group of hackers have bought ads across Yahoo’s sports, news and finance sites and they are now exploiting Adobe Flash extensively in a Yahoo “malvertising” campaign.

When a computer – in this case one running Windows, visits a Yahoo site, it downloads malware code.

From there, the malware hunts for an out-of-date version of Adobe Flash, which is then used to commandeer the computer – either holding it for ransom until the hackers are paid off, or discreetly directing its browser to websites that paid the hackers for traffic.

So far this is reported to have claimed at least 950,000 victims worldwide with an unprecedented success rate. Ensure Adobe Flash player is updated regularly and enable the “ask to activate” feature.

Lastly, a Distributed Denial of Service (DDoS) attack has been reported to the Internet Crime Complaint Centre, following an increased number of complaints from businesses reporting extortion campaigns via e-mail.

In a typical scenario, the victim business receives an e-mail threatening a (DDoS) attack to its website, unless it pays a ransom.

Action Fraud recommends refraining from opening unknown emails and reporting any emails to: www.actionfraud.police.uk.

Article courtesy of Gloucester Punchline


Leave a Reply