Another email job scam and how to celebrate International Women’s Day in Cyberspace.
Welcome to Cyber Security Today. Today is Wednesday, August 31, 2022. I’m Howard Solomon, Contributing Cybersecurity Reporter for ITWorldCanada.com.
Another victim of an email job offer scam came forward. Earlier this month, this person received an email invitation to interview for a job at cybersecurity firm Splunk. They would have been selected because their profile on AngelList showed that their skills would be a good match. A few days after doing a Skype interview with a supposed HR person, the victim received a job offer. This was followed by a conversation with the supposed CIO, who said they would receive company funds to purchase equipment for their home office, including an iPhone. All the victim had to do was link their credit card to a corporate account, purchase the computer equipment, ship that equipment to an address for installation of security software, and then the equipment would be sent to the victim. After doing this, this person became suspicious. Too late. The Apple equipment presumably went to the fraudsters.
The victim missed a few clues. One is the email address which is supposed to be from the company was “info[at]splunkcareers.us”. But the real domain of the company is “splunk.com”. Second, no company will ask you to link your payment card to their company. To his credit, the victim researched the profile of the person who would be interviewing him to see if it was a real person. But that wouldn’t tell her that the “Matt” she was talking to was the real Matt. The lesson is to be careful when accepting and interviewing online. This applies not only to job seekers, but also to HR departments.
As I said, simply checking online is not always enough to dispel suspicion. Here’s a recent example from security researchers at Proofpoint: hackers believed to be from China send emails and attempt to trick targeted government officials and companies into visiting an infected website. In their emails, the hackers claim to be journalists or employees of an online news site called Australian Morning News, with links to the publication’s website. Here’s the problem: Hackers have created a fake website called Australian Morning News. Everyone who visited the site had their computers infected with malware. If a victim didn’t want to risk clicking on a link in the email, but just searched Australian Morning News and landed on the site that way, they too would be infected. That’s why it’s not only wise to be careful with every email, but it’s also important to keep all your software up to date with the latest security patches, including your browser. Additionally, you need strong antivirus or antimalware protection on your computing devices.
A judge certified a class action lawsuit against the Canadian government following the 2020 hack of thousands of Revenue Canada taxpayer accounts. In some cases, hackers reportedly used credential stuffing attacks to access and modify victims’ tax accounts to fraudulently obtain COVID-19 emergency funds. The hackers could have seen taxpayers’ personal information such as their social insurance numbers and dates of birth. The lawsuit accuses the government of systemic negligence, breach of trust and violation of privacy. The allegations have yet to be proven in court.
Pirates stole a database of the Russian media streaming platform called START. According to news service Bleeping Computer, the database – with usernames, more than 7 million email addresses and phone numbers – is believed to have been published on the internet over the weekend. end.
Data of over 2.5 million people in the United States was recently compromised in an attack on a company called Nelnet Servicing. Nelnet oversees student loans. In a filing with the Maine state attorney general, the company says the breach began June 1 and wasn’t detected until July 17. Hackers were able to access people’s names, addresses, email addresses, phone numbers, and social security numbers.
scare the victims clicking on a link is an old hacker tactic. A common tactic is to send an email or text saying that you are late paying a bill. Another, used against content creators, alleges that something they wrote or recorded violates copyright. Security researcher John Hammond of Huntress Labs tweeted this week that he received one of these notifications on his smartphone, allegedly from YouTube about a video he made. A word of advice: the sender’s email address was far from being from YouTube. In fact, it came from a Google Drive account, to lend legitimacy. KnowBe4 security researchers say there are two questions you should ask to avoid falling victim to many phishing scams. First question: does the message arrive unexpectedly? If yes, go to the second question: is this the first time the sender has asked you to perform the requested action? If the answer is also yes, you must confirm the message other than by replying to the email or SMS. Do not call the phone number given in the message. It could be a fake.
To finish, tomorrow, September 1, is International Women in Cyberspace Day. It is a day to celebrate the achievements of women in the field of cybersecurity and to encourage women to pursue it as a career. It’s also a day that IT and business leaders should consider ways to increase the number of women in their organizations’ cybersecurity teams. Start by recognizing that diversity on any team in an organization is an advantage. The more varied voices there are around the table, the greater the possibility of finding solutions to a problem. Leaders should offer to mentor women and encourage them in their efforts. And leaders — and women — need to remember that not all cybersecurity-related hires need to have a computer background. Smart and imaginative women are ready to learn technology as they go. In fact, in some areas of the business, such as online customer support, women may already be computer literate. I’ll have more on that tomorrow in an article on ITWorldCanada.com.
Follow Cyber Security Today on Apple Podcasts, Google Podcasts or add us to your Flash Briefing on your smart speaker.