Security News > 2022 > November

A new eBook illuminates how one solution can not only help increase security operations efficiency but also provide economic safeguards for security teams that are already strapped for cash. If you're evaluating your security strategy and budget for the coming year, here are five reasons why consolidating your security technology stack can help you ensure your organization is safe - no matter what comes our way in 2023.

Roid users are often advised to get mobile apps from Google Play, the company's official app marketplace, to minimize the possibility of downloading malware. "Distribution through droppers on official stores remains one of the most efficient ways for threat actors to reach a wide and unsuspecting audience. Although other distribution methods are also used depending on cybercriminals targets, resources, and motivation, droppers remain one of the best option on price-efforts-quality ratio, competing with SMiShing," Threat Fabric researchers recently pointed out, after sharing their discovery of several apps on Google Play functioning as droppers for the Sharkbot and Vultur banking trojans.

Cybercriminals are getting craftier as auto retailers continue to fall victim to well-disguised cyberattacks. According to the second annual dealership cybersecurity study by CDK Global, 15% of dealers have experienced a cybersecurity incident in the past year.

Data sprawl refers to the spread of company information to various places, which often comes from dispersed and unmanaged cloud app use. Incidents like these cause organizations to reactively prioritize better security policies, which include data visibility and monitoring, but a proactive strategy can be more effective in safeguarding sensitive data amid such massive data sprawl.

Emotet, one of the most evasive and destructive malware delivery systems, caused substantial damage during its initial reign. After a coordinated takedown by authorities in early 2021, Emotet has reemerged as a global threat that will persist for organizations.

Every successful attack has breached the security stack. Once the foundation of good cybersecurity, firewalls, and other security products are not enough to block all of the sophisticated attacks that are being used by today's attackers.

ENISA, EU's Agency for Cybersecurity, released its annual Threat Landscape report, covering the period from July 2021 up to July 2022. EU Agency for Cybersecurity Executive Director, Juhan Lepassaar stated that "Today's global context is inevitably driving major changes in the cybersecurity threat landscape. The new paradigm is shaped by the growing range of threat actors. We enter a phase which will need appropriate mitigation strategies to protect all our critical sectors, our industry partners and therefore all EU citizens."

Over 80% of home-office routers were found to be vulnerable to potential cyberattacks. When it comes to these cyberattacks, malware remains a major concern.

While the FBI alert doesn't name said hacktivists in its latest cyber squad notification [PDF] for private industry, the Feds may be talking about Killnet, a "Relatively unsophisticated" gang whose "Nuisance-level DDoS attacks" don't live up to its rhetoric, according to security researchers. These attacks are generally opportunistic in nature and, with DDoS mitigation steps, have minimal operational impact on victims; however, hacktivists will often publicize and exaggerate the severity of the attacks on social media.

The Azov Ransomware continues to be heavily distributed worldwide, now proven to be a data wiper that intentionally destroys victims' data and infects other programs. Last week, Checkpoint security researcher Jiří Vinopal analyzed the Azov Ransomware and confirmed to BleepingComputer that the malware was specially crafted to corrupt data.