Welcome to the latest edition of the Cyber Safe Threat Updates, a weekly series in which we bring attention to the latest cyber attacks, scams, frauds, and malware including Ransomware, to ensure you stay safe online.

Here are the most prominent threats which you should be aware of:

Cyber attack on Australian energy services firm may hit the United Kingdom

Australia’s Energy One, a provider of technology services to the energy sector, is investigating a cyber attack that commenced on August 18. This breach raises concerns about potential repercussions for some of its UK clients. Although Energy One swiftly took measures to minimise the impact and engaged cybersecurity experts, the investigation remains ongoing. It aims to determine the extent of the compromise, encompassing customer systems and personal data that might have been affected.

Which companies may be affected?

Among Energy One’s UK clients are prominent names like Good Energy, SSE, and Yorkshire Gas and Power. However, as of now, there is no substantiated indication that the breach directly impacted these companies.

How important is cyber security for individuals and businesses?

The incident underscores the vulnerability of critical utility infrastructure, which is susceptible to debilitating cyber attacks capable of disrupting vital services such as electricity and communications. This renewed focus on safeguarding crucial infrastructure has emerged following high-profile disruptions like the Colonial Pipeline incident in the US. Experts emphasise the necessity of robust surveillance of operational technology systems, advocating the adoption of automated monitoring tools.

Can Neuways help?

Additionally, enhancing user education and critical thinking in analysing system activity reports are crucial components of a comprehensive defence strategy against such attacks. All of this is included in Neuways’ Cybersafe programs and frameworks, which you can find more about here.

Source: https://bit.ly/45BmXPi

Travellers warned of ‘unsuspecting’ online scams when using mobile phones abroad

To safeguard travellers against the growing menace of online scams, security experts have issued a stern warning to individuals using mobile phones and laptops abroad. They emphasise that even seasoned travellers can be at risk of compromising their data to fraudsters through seemingly innocuous mistakes. The primary concern is connecting to open Wi-Fi networks in hotels, where hackers exploit vulnerabilities to steal sensitive information. The sophistication and danger of travel scams have escalated, prompting the need for heightened awareness and precautionary measures.

A significant portion of the population, nearly two-thirds of Britons, are largely unfamiliar with a practice known as account takeover fraud, as revealed by research from the data company Geonode. Security experts stress that individuals should exercise caution around networks called “evil twin” Wi-Fi accounts and fake USB ports, which are common avenues for account takeovers.

How deceptive are these Wi-Fi Scams?

These malicious networks are often disguised with deceptive names like “free Wi-Fi” or “guest Wi-Fi,” luring unsuspecting users into trusting them. Despite their seemingly innocuous names, these networks are unprotected and offer an easy pathway for cybercriminals to gain access to sensitive information, including passwords.

To avoid falling victim to such scams, travellers are advised to verify Wi-Fi network details with hotel staff before connecting and to opt for password-protected networks whenever possible. Virtual Private Network (VPN) services are also recommended to encrypt data and enhance security.

What else do you need to look out for?

Furthermore, the experts caution against using public charging ports, as hackers can exploit these to engage in “juice jacking.” This technique involves loading malware onto public USB charging stations, enabling cybercriminals to access devices and install malicious software while charged. In situations where no trusted network or method for verification is available, travellers are advised to refrain from engaging in sensitive activities like online banking or shopping to minimise the risk of falling prey to cyber threats while abroad.

Source: https://bit.ly/47MmNXo

Parking app scams: Drivers are being tricked into signing up for expensive subscriptions

Millions of British citizens are potentially vulnerable to online scams, with a new report revealing that more than two-thirds of the population struggle to recognise the warning signs of phishing scams. The study conducted by NordVPN highlights a significant lack of awareness regarding online security among most Brits, exposing them to fraud and cyberattacks. The report shows that 63% of those surveyed needed help identifying the indicators of phishing websites accurately, and many still rely on outdated safety information.

Phishing scams are a prevalent form of cybercrime, where scammers create convincing fake websites to trick individuals into divulging private information such as passwords, bank details, and personal data. Perhaps more interestingly, four out of five UK consumers mistakenly believe that a padlock icon in the web browser address bar signifies a trustworthy site. However, this icon indicates an encrypted connection and can still be exploited by scam websites.

While the report underscores the lack of awareness about online safety red flags, it also acknowledges that most Britons possess fundamental online security skills, such as creating strong passwords and safeguarding personal information on social media. Nevertheless, less than half of respondents know that their Internet provider can collect their email address, browser history, IP address, and time spent online. Additionally, 23% of participants admitted to using public charging points, putting themselves at risk of falling victim to “juice jacking” scams, where cybercriminals can extract information from connected devices.

In the report, there is emphasis on the evolving tactics of cybercriminals and the need for individuals to enhance their online security awareness. He noted that while many individuals rely on outdated knowledge, the value of a strong password is likely to diminish as biometric identification becomes more widespread. It was stressed that individuals must strengthen their cybersecurity strategies in response to these changing dynamics.

Source: https://bit.ly/47Lj7VK

Contact Neuways to help your business become

Cyber Safe

If you need any assistance with cyber security assistance, then please contact Neuways and we will help you where we can. Just get in touch with our team today.