Experts Warn of Malicious Brexit Spam

Security experts are urging users to remain cautious online after seeing an increase in Brexit-themed spam designed to trick recipients into downloading malware.

Cyber firm Digital Shadows recently said that cyber-criminals are using classic social engineering techniques to create the kind of urgency among users that forces them into either clicking on a suspicious link or opening a malicious attachment.

 

That means jumping on the Brexit bandwagon and using its popularity at the moment to reel users in.

Subject lines might include “Brexit causes historic market drop,” the firm’s co-founder James Chappell explained. “We advise all consumers to exercise caution,” he added. “Do not open attachments or click on links and delete this type of email straight away.”

It’s not the first time hackers have piggy-backed on popular current events in order to spread malware or trick users into divulging sensitive personal information. Sporting tournaments are particularly popular for this purpose among the black hat community.

In 2014, for example, security experts identified numerous World Cup ticketing scams in which victims were sent emails containing malicious attachments masquerading as free tickets.

Interest in players like Neymar and Messi was also used as bait through email and social networking platforms. Hackers have also extended their campaigns to the app sphere. Recently Avast warned of a slew of Android apps on the official Google Play store designed to ape the popular FIFA app. However, if downloaded, they contain limited functionality and will just bombard the user with ads. The tactic will no doubt be in play again this summer ahead of the Rio Olympic Games.

As for Brexit, there have been concerns that leaving the European Union will make it harder for the UK to share threat intelligence with continental neighbors and recruit the best cybersecurity talent from abroad.

There are also fears that some large multi-nationals could start to move data out of the UK, potentially signaling job losses.

Infosecurity-magazine

« Ukrainian Hacker Pleads Guilty to US Insider Trading Charges
Turkish Coup: Attempt To Block Internet Fails. »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

International Computer Science Institute (ICSI)

International Computer Science Institute (ICSI)

ICSI is a leading independent, nonprofit center for research in computer science. Research areas include network security and privacy.

Compass Security

Compass Security

Compass Security is a specialist IT Security consultancy firm based in Switzerland. Services include pentesting, security assessments, digital forensics and security training.

MAY Cyber Technology

MAY Cyber Technology

MAY Cyber Technology is a Security Management solutions provider located in Turkey & Germany.

TypingDNA

TypingDNA

TypingDNA uses AI to recognise people by the way they type on desktop keyboards and mobile devices.

ISA Security Compliance Institute (ISCI)

ISA Security Compliance Institute (ISCI)

ISCI, a not-for-profit automation controls industry consortium, manages the ISASecure™ conformance certification program for industrial automation and control systems.

Astaara

Astaara

Astaara is an integrated insurance services and risk management advisory business incorporating cyber risk advisory, underwriting and analytics.

GAVS Technologies

GAVS Technologies

GAVS is a global IT services provider with focus on AI-led Managed Services and Digital Transformation.

NASK SA

NASK SA

NASK SA is an integrator of telecommunications services. We provide advanced ICT security services, collocation and hosting, data centre services, and build corporate networks.

ClearHub

ClearHub

The aim of ClearHub is simple: to give businesses like yours access to the best talent, all screened and technically tested by Clearvision’s expert team.

Josef Ressel Centre for Intelligent & Secure Industrial Automation

Josef Ressel Centre for Intelligent & Secure Industrial Automation

The Josef Ressel Centre for Intelligent and Secure Industrial Automation investigates the fundamentals of digital assistants for industrial machines that enable intelligent and secure operation.

Cylab - Carnegie Mellon University

Cylab - Carnegie Mellon University

Carnegie Mellon University CyLab is the University's security and privacy research institute.

BetterWorld Technology

BetterWorld Technology

BetterWorld Technology provides cloud solutions, managed services, SaaS, cybersecurity and virtual CIO, all customized to meet your needs.

Cytex

Cytex

Cytex is the All-in-One solution for SMB data protection & compliance needs.

Ebryx

Ebryx

At Ebryx, we are at the forefront of cybersecurity innovation, leveraging over a decade of expertise to protect and empower organizations worldwide.

LevelBlue

LevelBlue

LevelBlue simplify cybersecurity through award-winning managed security services, experienced strategic consulting, threat intelligence and renowned research.

Rebellion Defense

Rebellion Defense

Rebellion Defense is a technology company developing advanced software to ensure mission-critical organizations stay ahead of emerging threats.