UPDATES
1
2
2
1
threat
UPDATES
1
US
Barracuda security researchers are warning of a recent surge in phishing attacks leveraging Adobe InDesign , a known and trusted document publishing system . Some of the attacks are targeted . According to Barracuda Telemetry , there has been a near 30-fold increase since October in emails carrying Adobe InDesign links . The daily count has jumped from around 75 per day to around 2,000 per day . Almost one in 10 ( 9 %) of these emails carry active phishing links . A further 20 % or so include removed content . Many of the phishing links seen by Barracuda researchers have the top-level domain of “. ru ” and are hosted behind a content delivery network ( CDN ) that acts as a proxy for the source site . This helps to obscure the source of the content and makes it harder for security technologies to detect and block the attacks . Some of the attacks leveraging Adobe InDesign appear to be targeted at specific organisations or users . These emails carry legitimate brand logos that have probably been copied from other content or scraped from websites by the attackers . The logos are likely to have been chosen because they are known and trusted by the targets – and suggest the attackers spent time and resources crafting these messages . The rest of the attacks are mainly generic mass-distributed messages featuring the OneDrive , SharePoint and Adobe logos .
2
UK
The British Government has refuted claims by The Guardian about significant cybersecurity breaches at the Sellafield nuclear site in the UK . The Government reports no evidence of successful cyberattacks by state actors as described by The Guardian . Sellafield assures robust cybersecurity measures , with critical networks isolated from general IT systems . The Office for Nuclear Regulation ( ONR ) also found no evidence of such breaches and emphasised the ongoing safety of workers and the public . They acknowledged the need for improvements at Sellafield and enhanced regulatory attention . Industry experts have weighed in on the situation . Jamie Ahktar , CEO of CyberSmart , highlighted the potential for sophisticated state-sponsored attacks and the importance of robust cybersecurity . Dr . Klaus Schenk from Verimatrix underscored the need for transparency in sharing information about hacks . Fergal Lyons , a cybersecurity evangelist , emphasised the importance of understanding and mitigating cyberthreats . Patrick Tiquet of Keeper Security discussed the challenges of securing nuclear plants against cyberattacks and advocated for international cooperation . Finally , James McQuiggan from KnowBe4 stressed the need for continual assessment and improvement of cybersecurity practices in critical sectors .
2
1
24 WWW . INTELLIGENTCISO . COM