What’s been happening recently in our areas of interest:
- DP World Australia, a port operator in Australia, suffered a cyberattack that forced it to limit access to ports in Sydney, Melbourne, Brisbane, and Fremantle for several days. Key incident response focus: (1) prioritize sensitive inbound freight (e.g.,stuff in the real world that perishes), and (2) determine the effect on its systems and data. Bloomberg
- IRONSCALES released the Fall 2023 update of its email security platform, with an emphasis on fighting image-based and QR code attacks that bypass text analysis. Internal data shows a 215% increase in phishing emails that incorporate images over the past six months. There are new automated simulation capabilities, too. IRONSCALES
- KnowBe4 published a new report on security behaviors of workers in the UK. Findings: attentiveness to cybersecurity concerns varies throughout the day, responding to emails while on a bio-break is a thing, and a distracted worker is more likely to click on a suspicious link. KnowBe4
- Egress released an integration with KnowBe’s Adaptive Security models, so that Egress users are automatically enrolled in role-relevant and risk-level appropriate training based on the threats arriving in their inbox. The intent: “individualized security coaching that drives behavioral change and reduces overall risk.” Egress
- A firm in New Zealand experienced an attempted BEC scam that included a deepfake video call in Microsoft Teams, although the scam emphasized the video lookalike only, not the voice soundalike. NZ Herald
Leave a Reply