Rewterz Threat Advisory – Multiple Mozilla Security Vulnerabilities
March 24, 2021Rewterz Threat Alert – LokiBot – Active IOCs
March 24, 2021Rewterz Threat Advisory – Multiple Mozilla Security Vulnerabilities
March 24, 2021Rewterz Threat Alert – LokiBot – Active IOCs
March 24, 2021Severity
Medium
Analysis Summary
Social engineering attacks are increasing, where deception is used to manipulate people into disclosing confidential or personal information that could be used for fraudulent purposes. There’s a 36% rise on the social engineering attacks 40% rise in phishing attacks including spoofed phishing attempts, HTTPS encryption in URL-based attacks and cloud-based attacks focused on publicly hosted, trusted file-sharing services. Another attempt to rob off people from their finances are in full swing with Whatsapp scam messages are being distributed through business accounts with the message “With this single investment, your money doubles in power, because every penny that goes into your pocket doubles in profit”.
It is important to identify messages from unsolicited messages from banks, telcos and in this instance, financial service providers should always be treated with suspicion.
Impact
- Information theft
- Exposure of sensitive data
Remediation
- Always be wary of being added in unverified groups.
- Never disclose your personal information to unknown senders.
- Never disclose your banking and credit card details and one-time passwords online or via messages under any circumstance