Entries by

,

Cyber Security Bulletin: SolarWinds Supply-Chain Compromise

On 13 December, 2020 SolarWinds disclosed a security advisory outlining recent malicious activity impacting SolarWinds Orion Platform resulting from a supply chain compromise. The SolarWinds technology is used by many businesses to manage their network environments including mapping and capacity planning. This is a widespread campaign by a “highly evasive” actor gaining access to numerous […]

,

Cyber Security Bulletin: FireEye Cyber Security Breach

This Cyber Security alert is intended for organizations that utilize this technology as part of their cyber security protection program. On December 8, 2020, cyber security firm FireEye disclosed that it was recently a victim of a targeted security breach by a threat actor. The threat actors were successful at infiltrating the internal network and […]

,

Cyber Security Bulletin: Phishing Attack Campaigns Target MS Teams Users

A new attack vector has been identified specific to those organizations that use Microsoft Teams for collaboration with internal teams as well as with your customers. The phishing campaign pretends to be an automated message from Microsoft Teams. In reality, the attack aims to steal Office 365 recipients’ login credentials. Teams is Microsoft’s popular collaboration […]

,

Cyber Security Bulletin: Increased Threat from Emotet Malware Campaigns

Since July 2020 there has been an increase in malicious activity associated with Emotet malware campaigns. Emotet has been frequently observed working in tandem with Trickbot and Ryuk malware in a persistent attempt to compromise computer systems within Canada. These threats have been successfully used to attack many Canadian companies since 2019. Emotet is an […]

,

Cyber Security Bulletin: Due Diligence vs Bad Actors

While bad actors continue their denial-of-service for ransom activities, SRG would like to remind all clients and businesses to continue your due diligence as you work to protect your company assets: Actors claiming to be various Advanced Persistent Threat (APT) groups have been threatening to carry out large-scale distributed denial-of-service attacks for ransom, commonly known […]

,

Cyber Security Bulletin: Working from home during the COVID-19 Pandemic

During the COVID-19 pandemic, there has been a significant increase in the adoption of additional network software by companies endeavoring to enable their employees to work from home. This has turned the attention of the “bad actors” looking to exploit potential vulnerabilities in these work-from-home technologies. As always, their intent is to disrupt business or […]

Cyber Security Bulletin: COVID-19

The industry is seeing heightened activity pertaining to COVID-19 themed malware that is proliferating on the internet. Counterfeit websites and email phishing campaigns are leveraging public fear of and interest in the COVID-19 pandemic to spread malware that can infect corporate and personal systems.   As staff use the internet to search out status and […]