Welcome to the latest edition of the Neu Cyber Threats, a weekly series in which we bring attention to the latest cyber attacks and threats including Ransomware and DDoS, in order to ensure you stay safe online.

Here are the most prominent threats which you should be aware of:

 

Google Chrome vulnerabilities could allow for seriously harmful access to your machine

Google Chrome has recently been found to have multiple vulnerabilities, some of which could allow for arbitrary code execution.

This is a flaw in the software or hardware of a device or system that, if an attacker finds it, could allow them to edit or delete data or install harmful software on the machine. In this context, the browser is the access point for a would-be attacker.

While there are no current indications this threat is being exploited, any versions of Google Chrome prior to 99.0.4844.74 are in danger and should be updated as soon as possible.

This security vulnerability is deemed a high risk for small, medium and large businesses as well as a similar level of risk for all government entities. As for home users, the risk posed is lower but still a threat.

In order not to be caught out yourselves over a cyber attack such as this, the Centre for Internet Security has published a list of recommendations to businesses on how to prevent this:

  • Apply updates to Google Chrome to take it past the vulnerable version
  • Run software without administrative permissions
  • Remind users not to visit un-trusted websites or follow links provided by unknown or un-trusted sources
  • Teach users about the threat of clicking on hyperlinks from untrusted sources
  • Give users access to only the most necessary resources to stop the spread of malware

With the complexity of this type of attack, not all businesses may be prepared to deal with a serious cyber incident. Make sure you are not next on the long list of targets.

Research suggests persistent cyber criminals target key industries

TA2541, a persistent cybercriminal actor that targets aviation, aerospace and manufacturing industries, is still proving to be a threat through phishing attacks.

Phishing attacks begin with unsophisticated emails to staff members, which in this instance, aim to trick people into downloading malware.

Proofpoint first identified this campaign in 2017, and the attacks continue in a similar vein to this day – gaining remote access and stealing data on compromised machines.

The NCSC has published guidance for both companies and the public to help protect themselves from phishing and malware attempts. See below for their official guidance:

Follow these steps to ensure you do not fall victim to these nefarious attempts at taking your data.

Survey highlights cyber security risks of remote working

Remote working still looks to be a key part of UK organisations going forward. It is important to realise the risks that come with working from home.

Diligent, a software provider, revealed that UK businesses lost £374 million in 2021 due to cyber incidents while working from home. 450 senior finance and risk professionals at UK listed companies responded to the survey.

The survey stated that 64% of respondents had experienced a data breach in the previous 18 months. 82% of those affected said a technical issue related to working from home was the cause, and 75% lost money because of this.

The NCSC urges organisations to use VPN and SaaS applications, as well as training to avoid issues such as phishing. Such guidance can be found here: ‘Top Tips for Staff’ e-learning training package.

Ransomware attacks on the rise

Researchers at SonicWall, a cybersecurity company, have stated that the volume of ransomware attacks on their customers rose by 105% in the last year. A total of 623 million attempted incidents were recorded throughout 2021.

The National Cyber Security Centre does not recommend paying ransom demands as it can paint you as a target in the future. Criminals can also fall back on blackmail for releasing data they may have stolen.

However, the fact that cyber crime is so lucrative means that whenever a group is taken down, it is replaced shortly afterwards.

The NCSC has stated that organisations can take further steps to protect themselves from incidents like this. Use unique passwords, implement Multi-factor Authentication and make sure your systems are up to date.

The Cyber Essentials report can help you become secure, while specific Phishing and ransomware advice from the NCSC is also available.

If you are concerned about any cyber security issues within your business, contact us today on 01283 753 333 or email hello@neuways.com.