Tag: Heightened | SpinSafe

CISA Warns Of Heightened Hacking Threat Using Legit Remote Desktop Tools

January 27, 2023/in Computer Security

hero cisa warns hacking threat remote desktop tools news

Yesterday, the Cybersecurity and Infrastructure Security Agency (CISA), the National Security Agency (NSA), and the Multi-State Information Sharing and Analysis Center (MS-ISAC) published a joint cybersecurity advisory warning network defenders about phishing attacks that leverage remote monitoring and management (RMM) software. This advisory comes after CISA discovered malicious RMM activity on two federal civilian executive branch (FCEB) networks and identified this activity as part of a larger refund scam campaign.

RMM software, similar to remote desktop software, provides users with a set of tools to remotely access and manage computer systems. Unfortunately, as we reported recently, threat actors have taken to using this legitimate software in place of malware to access victims’ devices. Since RMM software is also used by those providing authentic IT support, it can be difficult for users to distinguish between legitimate and malicious uses of this software, particularly when threat actors pose as IT support technicians.

geek squad phishing email sent to fceb staff news — *Geek Squad phishing email sent to FCEB staff (click to enlarge) (source: CISA)*

Starting in June 2022, FCEB staff began receiving phishing emails listing fake, unexpected invoices. Some of these emails prompted recipients to directly visit fraudulent support websites, while others directed recipients to call customer care phone numbers. Calls to these numbers were answered by phony customer support agents who pointed callers to the same fraudulent support websites as the ones linked in other phishing emails.

These websites served RMM software executables to visitors under the pretense that customer support agents would use the software to help resolve problems with the invoice refund process. Since portable executables skip the installation process and directly launch programs, the RMM software distributed by the threat actors could bypass security controls blocking the installation of unapproved programs. The RMM software, whether AnyDesk or ScreenConnect, was configured to automatically connect to the threat actor’s RMM servers, giving the threat actors access to victims’ computers shortly after launching.

Once the RMM software was running, the threat…

Source…

Security Heightened In Delhi Ahead Of Independence Day

August 14, 2022/in Mobile Security

Red Fort, Delhi — Red Fort, New Delhi illuminates in tricolour (ANI Photo)

New Delhi: The Delhi Police is making constant attempts to ensure impregnable security in the national capital on Independence Day, by monitoring the potential terror modules and “anti-social elements” in the city, the police informed.

The security and vigilance at all eight of Delhi’s borders, as well as in the city’s busy markets, have been tightened, the police informed, who also said that the security near the Red Fort has been beefed up with many layers of protection as the inputs received from International Border are not only specific but are considered strong enough.

The police have placed an anti-drone system to ensure protection against drone strikes for increased security during the Independence Day programme, manufactured by the Defence Research and Development Organization (DRDO) and Bharat Electronics (BEL). The Red Fort is guarded from drones by a radar system since they create an additional security concern in addition to technological ones.

The police personnel are also taught the ways to combat suspected objects flying in the sky, the police said.

The police received some specifically strong alerts concerning the security in Delhi on August 15. The Intelligence agencies have issued a high alert for a terrorist attack in the city on Monday: It has been informed that on the basis of the interrogation with the terrorists nabbed from different states including Punjab, a number of Drones from the Pakistan border carrying numerous Improvised Explosive Devices (IEDs) have reached various parts of the country.

In another alert, it was revealed that deadly weapons including Pistol, Hand Grenades, and AK 47 have been sent to India with the help of Drones from Pakistan.

The Police further, quoting the Intelligence forces, said that the terrorists can also lead to several lone wolf attacks on Independence Day. In the attack, a single person can attack the mob with a sharp-edged weapon or a big vehicle.

The police have completely banned the flying of kites around the Red Fort after the alert regarding some terrorist attack via a flying object like a kite was issued to the…

Source…

Bharat Bandh amid Agneepath protests LIVE: Bihar suspends Internet services in 20 districts, security heightened | India News

June 20, 2022/in Internet Security

Bharat Bandh Agneepath Protests Live Updates: Amid a call for ‘Bharat Bandh’ on Monday (June 20, 2022) over the Agneepath scheme, several state governments have tightened their security. The Bihar government temporarily suspended Internet services in 20 districts. The armed forces aspirants have been agitating in 11 states including Delhi, Uttar Pradesh, Bihar, Haryana, Telangana, Odisha, West Bengal, Madhya Pradesh, Punjab, Jharkhand and Assam. Massive protests erupted last week after the Union government announced the contentious Agneepath scheme to recruit youth to serve in the three services of the Armed Forces. The central government has also been defending the scheme, explaining that recruits, or ‘Agniveers’, retiring after four years will be given financial aid.

“Due to agitation over the Agnipath scheme, 181 Mail Express cancelled and 348 passenger trains cancelled. Partially cancelled are 4 Mail Express and 6 passenger trains. No diverted trains,” said Ministry of Railways on Monday. As many as 483 train services were cancelled on Sunday due to protests in different parts of the country against the Centre’s Agneepath scheme. Congress will also hold “peaceful” protests across the country on Monday against the “anti-youth” Agneepath recruitment scheme. Delhi Environment Minister Gopal Rai too will join the protest.

In Delhi`s neighbouring areas Faridabad and Noida, Section 144 of the Code of Criminal Procedure (CrPC), which prohibits the assembly of four or more persons, has been imposed. In Rajasthan`s Jaipur, prohibitory orders under section 144 have been imposed from 6 pm on Sunday till midnight of August 18 in the view of the possibility of disturbance to law and order due to the protests.

Meanwhile, the Indian Army yesterday released terms and conditions and related details for prospective applicants wanting to join the force under the Agneepath military recruitment scheme. The Union Cabinet on June 14 approved a recruitment scheme for Indian youth to serve in the three services of the Armed Forces called Agneepath and the youth selected under this scheme will be known as Agniveers.