{"id":33958,"date":"2023-01-13T08:43:34","date_gmt":"2023-01-13T13:43:34","guid":{"rendered":"https:\/\/www.itworldcanada.com?p=521719"},"modified":"2023-01-16T09:19:09","modified_gmt":"2023-01-16T14:19:09","slug":"cyber-security-today-jan-13-2022-beware-of-fake-salary-increase-emails-scams-try-to-leverage-the-microsoft-voice-service-and-more","status":"publish","type":"post","link":"https:\/\/technewsday.com\/staging\/cyber-security-today-jan-13-2022-beware-of-fake-salary-increase-emails-scams-try-to-leverage-the-microsoft-voice-service-and-more\/","title":{"rendered":"Cyber Security Today, Jan. 13, 2022 \u2013 Beware of fake salary increase emails, scams try to leverage the Microsoft Voice service, and more"},"content":{"rendered":"<p data-ar-index=\"0\">Beware of fake salary increase emails, scams try to leverage the Microsoft Voice service, and more.<\/p>\n<p data-ar-index=\"1\">Welcome to Cyber Security Today. It\u2019s Friday, January 13th, 2023. I\u2019m Howard Solomon, contributing reporter on cybersecurity for ITWorldCanada.com and TechNewsday.com in the U.S.<\/p>\n<p data-ar-index=\"2\"><iframe style=\"border: none;\" title=\"Libsyn Player\" src=\"https:\/\/html5-player.libsyn.com\/embed\/episode\/id\/25592826\/height\/90\/theme\/custom\/thumbnail\/yes\/direction\/forward\/render-playlist\/no\/custom-color\/000000\/\" width=\"100%\" height=\"90\" scrolling=\"no\" allowfullscreen=\"allowfullscreen\"><\/iframe><\/p>\n<table style=\"width: 100%;\">\n<tbody>\n<tr>\n<td><a href=\"https:\/\/www.amazon.com\/ITWC-Cyber-Security-Today\/dp\/B07BRNG89P\/ref=sr_1_1?s=digital-skills&amp;ie=UTF8&amp;qid=1522688435\" rel=\"noopener noreferrer\"><img decoding=\"async\" class=\"aligncenter wp-image-396718 size-full\" src=\"https:\/\/i.itworldcanada.com\/wp-content\/uploads\/2017\/09\/sub-alexa-200.png\" alt=\"Cyb er Security Today on Amazon Alexa\" width=\"200\" height=\"74\" border=\"none\" \/><\/a><\/td>\n<td><a href=\"https:\/\/www.google.com\/podcasts?feed=aHR0cDovL2N5YmVyc2VjdXJpdHl0b2RheS5saWJzeW4uY29tL3Jzcw%3D%3D\" rel=\"noopener noreferrer\"><img decoding=\"async\" class=\"thumbnail aligncenter wp-image-408712 size-full\" src=\"https:\/\/i.itworldcanada.com\/wp-content\/uploads\/2018\/09\/sub-gp-200.png\" alt=\"Cyber Security Today on Google Podcasts\" width=\"200\" height=\"74\" \/><\/a><\/td>\n<td><a href=\"https:\/\/itunes.apple.com\/ca\/podcast\/cyber-security-today\/id1363182054\" rel=\"noopener noreferrer\"><img decoding=\"async\" class=\"aligncenter wp-image-396720 size-full\" src=\"https:\/\/i.itworldcanada.com\/wp-content\/uploads\/2017\/09\/sub-itunes-200.png\" alt=\"Subscribe to Cyber Security Today on Apple Podcasts\" width=\"200\" height=\"74\" border=\"none\" \/><\/a><\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<p data-ar-index=\"3\"><strong>Hackers are taking advantage<\/strong> of bonus and salary reviews going on at this time of the year. Proofpoint tweeted that it has seen evidence of phishing emails being sent to people pretending to be from their organization\u2019s human resources department. The messages include links to infected documents. So be careful before clicking on attachments in messages that have subject lines like, \u201cA Big Rise\u201d, \u201cAre you getting the raise you deserve?\u201d, \u201cCongratulations. Your salary is approved for increment,\u201d and \u201cYou\u2019re getting a pay raise.\u201d You might indeed be getting a raise from your boss. But the message likely won\u2019t include a link to a document that needs your Microsoft password to read it. The password is what the hacker wants.<\/p>\n<p data-ar-index=\"4\"><strong>Threat actors continue<\/strong> to find new ways of attacking firms that use Microsoft\u2019s Dynamic 365 Customer Voice service to send phishing links to victims. <a href=\"https:\/\/www.avanan.com\/blog\/continuing-to-use-microsoft-voice-to-send-phishing-links\" rel=\"noopener\">According to researchers at Avanan,<\/a> one of the latest tactics is sending a target a message from a SharePoint service of a document that allegedly has sensitive or confidential information. The document\u2019s real purpose is to steal the victim\u2019s Microsoft password when they login to read it. Another tactic is sending a notice of a document that has to be printed out. Again, the goal is to steal credentials. Employees need to be reminded to hover their mouse over all URLs before clicking on links in email or text messages. They also need to double-check who has sent a message with a link.<\/p>\n<p data-ar-index=\"5\"><strong>A pro-Russian hacktivist group<\/strong> that has been going after targets in NATO countries since the war against Ukraine has turned its attention to Denmark and the Czech Republic. <a href=\"https:\/\/www.sentinelone.com\/labs\/noname05716-the-pro-russian-hacktivist-group-targeting-nato\/\" rel=\"noopener\">According to researchers at Sentinel Labs<\/a>, this week the group called NoName057(16) disrupted bank services in Denmark and began targeting the websites of those running for president of Czechia in today\u2019s election. Until it was stopped, the gang was also using GitHub to host their distributed denial of service tools. There\u2019s a link to the report in the text version of this podcast for those who want more details on how this gang works.<\/p>\n<p data-ar-index=\"6\"><strong>A police app<\/strong> used by California law enforcement agencies to co-ordinate the arrest of more than 600 suspected sex offenders has been pulled after an investigation by Wired magazine. The publication said this week that the app, called SweepWizard, leaked confidential information about suspects, police officers and details about raids. The problem, the story says, is the app was misconfigured. Anyone who knew a specific URL could retrieve the data without logging in. At the time this podcast was recorded SweepWizard <a href=\"https:\/\/www.odinintelligence.com\/#!\/solutions\" rel=\"noopener\">wasn\u2019t listed on the website of its developer, a company called Odin Intelligence.<\/a><\/p>\n<p data-ar-index=\"7\"><strong>Microsoft says<\/strong> the Cuba ransomware gang is hacking firms through Exchange email servers that haven\u2019t yet installed a patch released last year. The Bleeping Computer news service said <a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/microsoft-cuba-ransomware-hacking-exchange-servers-via-owassrf-flaw\/\" rel=\"noopener\">it has seen<\/a> a recent warning Microsoft is sending to customers using its Defender protection service. This follows a report that the Play ransomware gang is also exploiting this hole. Microsoft released security updates to address this vulnerability in November.<\/p>\n<p data-ar-index=\"8\"><strong>Finally<\/strong>, <a href=\"https:\/\/www.itworldcanada.com\/article\/cyber-security-today-jan-9-2023-russian-gang-tried-to-hack-us-nuclear-research-labs-and-more-malware-in-pypi\/520831\" rel=\"noopener\">in Monday\u2019s podcast<\/a> I said Mac users might be interested in a Microsoft blog on ransomware that can run on the macOS operating system. That blog has been taken down. <a href=\"https:\/\/www.techrepublic.com\/article\/microsoft-retracts-mac-ransomware-report\/\" rel=\"noopener\">According to Tech Republic<\/a>, this came after an author complained the research was close to material in his book, but without attribution.<\/p>\n<p data-ar-index=\"9\">Later today the Week in Review edition will be out. Guest commentator Jim Love of ITWorldCanada.com and I will discuss fake ChatGPT apps, whether ransomware attacks are going up or down, and more.<\/p>\n<p data-ar-index=\"10\">Follow Cyber Security Today on Apple Podcasts, Google Podcasts or add us to your Flash Briefing on your smart speaker. U.S. listeners can also find my stories and podcasts on TechNewsday.com.<\/p>\n<p data-ar-index=\"11\">The post <a href=\"https:\/\/www.itworldcanada.com\/article\/cyber-security-today-jan-13-2022-beware-of-fake-salary-increase-emails-scams-try-to-leverage-the-microsoft-voice-service-and-more\/521719\">Cyber Security Today, Jan. 13, 2022 \u2013 Beware of fake salary increase emails, scams try to leverage the Microsoft Voice service, and more<\/a> first appeared on <a href=\"https:\/\/www.itworldcanada.com\/\">IT World Canada<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>This episode reports on the latest efforts of a pro-Russian hacktivist group, unpatched Exchange servers being leveraged by ransomware group<\/p>\n","protected":false},"author":17,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[360,16],"tags":[389,62],"class_list":["post-33958","post","type-post","status-publish","format-standard","hentry","category-podcasts","category-security","tag-cyber-security-today","tag-microsoft"],"acf":[],"_links":{"self":[{"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/posts\/33958","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/users\/17"}],"replies":[{"embeddable":true,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/comments?post=33958"}],"version-history":[{"count":3,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/posts\/33958\/revisions"}],"predecessor-version":[{"id":34067,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/posts\/33958\/revisions\/34067"}],"wp:attachment":[{"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/media?parent=33958"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/categories?post=33958"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/tags?post=33958"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}