threat updates
UAE
Proofpoint, a leading cyber security and compliance
company, released research identifying that 65% of the top
20 online retailers in the UAE have no published DMARC
(Domain-based Message Authentication, Reporting
and Conformance) record, making them susceptible to
cybercriminals spoofing their identity and increasing the
risk of email fraud for customers.
Only 10% have implemented the strictest and
recommended level of DMARC protection, which actively
blocks fraudulent emails from reaching their intended
target, while 90% may be putting their online shoppers in
the UAE at risk of email fraud.
The research was released in light of Black Friday, when
online retail traffic was expected to be at a yearly high,
with consumers scanning both the Internet and their
inboxes for the hottest deals.
GLOBAL
Cybereason’s Nocturnus research team
has been tracking a new keylogger gaining
traction among cybercriminals, dubbed
Phoenix. The keylogger first emerged in
July 2019 and is packed with a myriad of
information-stealing features. These features
extend beyond solely logging keystrokes, to the point
where Cybereason is inclined to classify it as an
infostealer.
Cybereason has released research on Phoenix, which
operates under a malware-as-a-service model and steals
personal data from almost 20 different browsers.
The research offers a look into the underground community,
a technical breakdown of the Phoenix keylogger and the
connection to the ‘orphaned’ Alpha keylogger.
The full research can be found at cybereason.com/blog/
phoenix-the-tale-of-the-resurrected-alpha-keylogger
www.intelligentciso.com
|
Issue 20
25