Welcome to the latest edition of the Neu Cyber Threats, a weekly series in which we bring attention to the latest cyber attacks, scams, frauds, malware including Ransomware and DDoS, in order to ensure you stay safe online.

Here are the most prominent threats which you should be aware of:

 

Ransomware groups target Meals on Wheels

Wiltshire Farm Foods is the UK’s largest provider of ready-meals, and there are speculations that a ransomware attack hit them, which caused significant disruption to Meals on Wheels.

Ransomware attacks are always devastating and can greatly damage a company in terms of reputation and finances.

This attack has created issues within supply lines that have had drastic consequences for Meals on Wheels, leaving the elderly potentially without food.

It is important to ensure your supply chain has robust security enforcement. You can perform checks by asking to see your supply chain’s incident response plan and what precautions they take regarding cyber security.

But what about protecting yourselves? Start training your staff to identify phishing attempts, employ a reputable ant-virus/malware, and adopt reasonable backup solutions and incident response.

Your Chrome might be vulnerable

Google has released a security update for their ever-popular Chrome browser; this update addresses four security concerns, including a zero-day vulnerability.

The latest release, 103.0.5060.114, is now available. Open your Chrome Browser, and click the three dots in the top right corner. Then navigate to Settings-> About Chrome at the bottom left. You can then see if your version of Chrome is up to date.

The security issues addressed in the patch are:

  • · High CVE-2022-2294: Heap buffer overflow in WebRTC.
  • · High CVE-2022-2295: Type Confusion in V8.
  • · High CVE-2022-2296: Use after free in Chrome OS Shell.

It is essential to ensure that all patches are applied and everything is up to date to make sure these security concerns are covered.

For more information, click here.

The top mobile security threats in 2022

Smartphones are used daily for many tasks for organisations. One of the reasons why cyber attackers are targeting them is the fact they hold a vast amount of data and can also act as a conduit to your business network.

So what are the most common attacks on mobile devices in 2022?

  • Spyware – that pretends to be an update. It is essential to ensure that your devices are updated and that the latest security patches are installed. But attackers have started disguising spyware as updates. Ensure you only get updates and applications from trusted places like the App Store or Google Play Store. Blocking the ability to install untrusted applications is something that should be in place by default but check if this is the case.
  • Malware Via SMS Messages – We have all received phishing emails and possible phishing SMS texts with a link that urges you to click. This particular attack will deploy malware on the device. It is vital to check all links before clicking. Take a moment to think if this is genuine.
  • Data Breach – Whilst there is little we can do about data breaches, we can determine the information the organisations have about us. When downloading new applications and you get asked about allowing permissions, ensure you check what permissions are being requested before approving. Not all information requested is needed to enable the application to run.

The mobile threats are evolving with time, and they will keep improving further. The only thing that needs our concern is our security and privacy. Therefore, one must take all the precautionary measures to evade potential danger.

If you are concerned about any cyber security issues within your business, contact us today on 01283 753 333 or email hello@neuways.com.