Page 3 - Threat Intelligence 11-5-2019
P. 3
Perspective:
State of the
Marketplace
This week saw some troubling news regarding North Korea. The
Kudankulam Nuclear Power Plant in India found malware on their
network leading back to North Korea. The attack came from the Lazarus
Group which has normally ignored the energy market for their attacks.
Thankfully with this attack the malware only affected the administrative
network rather than any plant critical systems that could have caused
massive damage. This event also saw the parent company of the
powerplant make a statement saying that infection was “not possible”
only to back peddle a few days later and announce that it was indeed
the case.
The FBI has released another statement this week. This statement
advises on the dangers of E-Skimming. E-Skimming is one of many ways
attackers are able to gain credit card info during online purchases. With
more and more data breaches and infections happening in web hosting
platforms, these threats could increase at an alarming rate. The FBI
urges small businesses to keep their systems and firewalls up to date to
help avoid these issues from occurring with their clients. It is also
important to be aware of the patch schedule for any web host that are
used, as that is where the root of the issue can occur.
A new phishing scam is also beginning to grow. The scam is targeted at
Office 365 users. The scammers leave a voicemail, followed by a
subsequent email that leads to a fake login page prompting user to
enter their credentials. The page auto populates with partial bits of user
information, leading users to believe that the page is in fact legitimate.
These attacks are very similar to others that have been occurring lately
and seem to be using pieces of the same scripts in their attacks. Its
always good to remember that all links are suspect and should be put
under heavy scrutiny before being opened.
3
~Stay Secure
www.accumepartners.com
