Experts Warn of Malicious Brexit Spam

Security experts are urging users to remain cautious online after seeing an increase in Brexit-themed spam designed to trick recipients into downloading malware.

Cyber firm Digital Shadows recently said that cyber-criminals are using classic social engineering techniques to create the kind of urgency among users that forces them into either clicking on a suspicious link or opening a malicious attachment.

 

That means jumping on the Brexit bandwagon and using its popularity at the moment to reel users in.

Subject lines might include “Brexit causes historic market drop,” the firm’s co-founder James Chappell explained. “We advise all consumers to exercise caution,” he added. “Do not open attachments or click on links and delete this type of email straight away.”

It’s not the first time hackers have piggy-backed on popular current events in order to spread malware or trick users into divulging sensitive personal information. Sporting tournaments are particularly popular for this purpose among the black hat community.

In 2014, for example, security experts identified numerous World Cup ticketing scams in which victims were sent emails containing malicious attachments masquerading as free tickets.

Interest in players like Neymar and Messi was also used as bait through email and social networking platforms. Hackers have also extended their campaigns to the app sphere. Recently Avast warned of a slew of Android apps on the official Google Play store designed to ape the popular FIFA app. However, if downloaded, they contain limited functionality and will just bombard the user with ads. The tactic will no doubt be in play again this summer ahead of the Rio Olympic Games.

As for Brexit, there have been concerns that leaving the European Union will make it harder for the UK to share threat intelligence with continental neighbors and recruit the best cybersecurity talent from abroad.

There are also fears that some large multi-nationals could start to move data out of the UK, potentially signaling job losses.

Infosecurity-magazine

« Ukrainian Hacker Pleads Guilty to US Insider Trading Charges
Turkish Coup: Attempt To Block Internet Fails. »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

Resecurity

Resecurity

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

Perimeter 81 / How to Select the Right ZTNA Solution

Perimeter 81 / How to Select the Right ZTNA Solution

Gartner insights into How to Select the Right ZTNA offering. Download this FREE report for a limited time only.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

Code Decode Labs

Code Decode Labs

Code Decode Labs provides consulting for IT Technology, Cyber Security, Advanced Defense & Policing Technologies, Intelligent Networks, and Information Security.

IT GRC Forum

IT GRC Forum

The IT GRC Forum is an online resource and networking platform for the Governance, Risk Management, and Compliance (GRC) community

IntaForensics

IntaForensics

IntaForensics offer a full range of digital investigation services and are able to adapt to the individual needs of solicitors, private clients, Law Enforcement Agencies and commercial businesses.

Avatu

Avatu

Avatu specialise in providing clients the advice, technology and tools they need to fight cyber and insider threats.

Openminded (OPMD)

Openminded (OPMD)

Openminded is a French security and network services company.

CyberOwl

CyberOwl

CyberOwl builds on cutting-edge research and combines decades of experience in developing, securing and operating large distributed systems.

Bunifu Technologies

Bunifu Technologies

Bunifu Technologies is an Information Security and Custom Software Development Company.

Lynx

Lynx

Lynx provides high added value services in the area of information systems security and ICT infrastructure building.

Clari5

Clari5

Clari5 redefines real-time, cross channel banking Enterprise Fraud Management using a central nervous system approach to fight financial crime.

Metrarc

Metrarc

Metrarc has developed a ground-breaking technology called ICMetrics™ for deriving secure encryption keys from the properties of digital systems without the need to store any of the encryption keys.

SecZetta

SecZetta

SecZetta provides third-party identity risk solutions that are easy to use, and purpose built to help organizations execute risk-based identity access and lifecycle strategies.

Anthony Timbers LLC

Anthony Timbers LLC

Anthony Timbers is a cybersecurity consulting and penetration testing firm providing services to the Federal and Commercial sectors nationwide.

CWSI

CWSI

CWSI provide a full suite of enterprise mobility, security and productivity solutions to many of Ireland and the UK’s most respected organisations across a wide range of industry and public sectors.

LogicGate

LogicGate

The LogicGate Risk Cloud™ is an agile GRC cloud solution that combines powerful functionality with intuitive design to enhance enterprise GRC programs.

Immunefi

Immunefi

Immunefi provides bug bounty hosting, consultation, and program management services to blockchain and smart contract projects.

Finesse Global

Finesse Global

Finesse is a global system integration and digital business transformation company.