Credential security best practices for your MSP tools
End customers are being targeted and infected with ransomware via their relationships and connections to MSPs, with increasing frequency. Some attackers even go as far as accessing customer credentials from the remote management consoles of the MSP to successfully distribute...
Cybersecurity Threat Advisory: DNSpionage Malware Finds New Way to Avoid Detection.
What is the threat? An attack campaign called DNSpionage – first detected in November 2018 – has recently resurfaced with new attack vectors and methodologies. This attack campaign redirects users via unauthorized DNS modification to malicious versions of job posting...
Cybersecurity Threat Advisory: New Spam Campaign Redirects Attachments to Malicious Websites
What is the threat? A new spam campaign has been discovered: These spam emails will have subject lines of “Delivery [number]”, such as “Delivery 0802” (which may appear to be from a legitimate package tracking service, vendor, or online shop)...
Cybersecurity Threat Advisory: AMCA Healthcare Hack
What is the threat? The compromise of the American Medical Collection Agency (AMCA), a third-party bill collection vendor, has potentially impacted the personal data of over 20 million patients across three laboratory services providers. Why is this noteworthy? Personal data...
Cybersecurity Threat Advisory: APT Group Uses Text-Based Steganography Attack Technique
What is the threat? On June 5, Kaspersky researchers revealed a highly sophisticated cyberespionage campaign by the advanced persistent threat (APT) group “Platinum” which employs new text-based steganography techniques to obscure their communication and install malware and a backdoor on...
Cybersecurity Threat Advisory: Malware Campaign Targets Certain Windows Servers
What is the threat? A recent malware campaign is targeting Windows MS-SQL and PHPMyAdmin based servers using different techniques. According to Guardicore Labs, the malware has breached over 50,000 servers that belong to companies in the healthcare, telecommunications, media and...
Cybersecurity Threat Advisory: Phishing Email Scam Targets Companies by using Legal Threats
What is the threat? A recent phishing campaign targeting businesses using legal threats has been detected in which businesses are receiving emails claiming to be from law firms notifying them that they are being sued. The emails have a Microsoft...
Cybersecurity Threat Advisory: Backdoor LightNeuron Targets Microsoft Exchange Servers
What is the threat? A security researchers group discovered a Backdoor called LightNeuron on May 7th, 2019. This backdoor specifically targets Microsoft Exchange Servers and is one of the first malware to obtain complete control over all the emails that...
Cybersecurity Threat Advisory: Anti-malware Vendor Source Code Theft
In light of the recent news about US Anti-malware companies getting hacked and their source code being stolen, SkOUT wants its customers to be aware of the situation and remain vigilant for the next few days as the investigation continues...
Cybersecurity Threat Advisory: How Migration to Windows 10 Will Reduce the Risk of Threats
What is the threat? The end of life date for Windows 7 will be January 14, 2020 at which point support will no longer be offered by Microsoft. Computers running older versions of Windows will be susceptible to cyber-attacks and...
