IRONSCALES Blog

Latest IRONSCALES Blog

Follow along for product updates, threat research, and strategies for overcoming the challenges of modern security teams.

Image
  • 18-Jan-2022

Ransomware Gangs: Netwalker

Ransomware Gangs: Netwalker Netwalker is a notorious name on the ransomware scene with a prolific record of successful attacks. An estimated $25 million in ransom extortions between March and September 2020 established the gang as a force to be reckoned with. This article looks at Netwalker's operations, the specifics of the ransomware variant, and some high-profile attacks carried out using Netwalker ransomware.

Image
  • 30-Jun-2022

Smishing Attacks Explained

What Is Smishing? Smishing is a type of social engineering scam that uses mobile texting rather than emails to deliver nefarious messages that dupe people into taking specific actions. The term is a combination of phishing and SMS, and its increasingly widespread use reflects a belief among cybercriminals that people are generally more likely to trust the contents of text messages over emails. Threat actors often text people directly using traditional SMS, but smishing also encompasses messages sent via apps like WhatsApp, Viber, or other messaging apps that require users’ phone numbers. Industry reports and studies continue to highlight the growing prevalence of smishing attacks. One survey reported by Statista found that 74% of organizations and IT professionals experienced smishing attacks during 2021. This figure represented a 13% increase from the previous year.

Image
  • 01-Jul-2022

Wave of Phishing Attacks Possible with OpenSea Data Breach

Wave of Phishing Attacks Possible with OpenSea Data Breach OpenSea, the largest non-fungible token (NFT) marketplace, disclosed a breach on their blog on June 29, stating that an employee of Customer.io, their email delivery vendor “misused their employee access to download and share email addresses – provided by OpenSea users and subscribers to our newsletter.” They went on to advise users to be alert for phishing emails that may attempt to impersonate OpenSea via email. Attackers have been targeting OpenSea users with phishing messages for some time, but this breach will certainly lead to a wave of phishing emails targeted at the estimated 600k leaked email addresses that are probably already being sold on black markets. Since these email addresses will likely be listed as known NFT wallet holders, other NFT platform brands will probably be impersonated with “offer, trade, transfer” themed phishing email attacks.

Image
  • 27-Jun-2022

Product Release Notes v52.00.00

With the v52.00.00 release of IRONSCALES, we are pleased to announce the following product improvements and new features: 'Quick Launch' campaign improvements By design, Quick Launch campaigns randomly select the campaign's template and landing page. However, the selection was done indiscriminately and could include bad or low-quality assets. To correct this, our Simulation & Training team has set up a pool of verified IRONSCALES-created assets for Quick Launch campaigns, ensuring the selected templates and landing pages are of the highest quality. In addition, the campaigns will only use assets that have not been used over the last year.

Image
  • 25-Jan-2022

Ransomware Gangs: FIN7

FIN7 is a unique group in the shady world of cybercrime. Infamous for sophisticated stolen credit and debit card hacks involving phishing emails and other social engineering methods, the gang’s threat actors deploy a range of constantly evolving tactics to steal money; the latest of those tactics is ransomware. This article overviews FIN7’s operations.

Image
  • 22-Jun-2022

Whaling Attacks Explained

What is Whaling? Whaling is a type of spear phishing in which threat actors directly target c-level executives at an organization. This type of social engineering attack sends fraudulent messages to individuals with high levels of seniority to exploit three particular characteristics of these C-suite roles: High levels of information knowledge about the organization High levels of access to different systems, accounts, and sensitive data High levels of authority to perform secondary actions, such as transferring funds, without requiring approval

© 2021 SRC Cyber Solutions LLP. All Rights Reserved.