CCTR
CCTR
  • Brewing Cyber Coffee
  • CCTR.23.MAY.24
  • CCTR.22.MAY.24
  • CCTR.21.MAY.24
  • CCTR.20.MAY.24
  • CCTR.19.May.24
  • CCTR.18.April.24
  • CCTR.17.April.24
  • CCTR.16.April.24
  • CCTR.15.April.24
  • CCTR.14.April.24
  • CCTR.13.March.24
  • CCTR.12.March.24
  • CCTR.11.March.24
  • CCTR.10.FEB.24
  • CCTR.9.FEB.24
  • CCTR.8.FEB.24
  • CCTR.7.FEB.24
  • CCTR.6.FEB.24
  • CCTR.5.JAN.24
  • CCTR.4.JAN.24
  • CCTR.3.JAN.24
  • CCTR.2.JAN.24
  • CCTR.1.JAN.24
Powered by GitBook
On this page

CCTR.13.March.24

Board cyber security tool kits, Volt Typhoon and new ML attacks

PreviousCCTR.14.April.24NextCCTR.12.March.24

Last updated 11 months ago

Good cybersecurity is essential for improving cyber resilience, enabling organisations to withstand and recover from cyberattacks. The National Cyber Security Centre Board Toolkit assists board members in asking the right questions to understand the organisation's cyber risk profile, supporting effective decision-making and risk management. Board members don't require technical expertise in cybersecurity, but they should have sufficient knowledge to engage in discussions with key staff. Ref Microsoft warns that new tax phishing scams are targeting taxpayers, impersonating trusted sources, and using urgency tactics to steal personal and financial data. These scams are on the rise during tax season, with specific groups like new taxpayers, recent immigrants, and small business owners who file taxes independently being prime targets due to their potentially limited familiarity with tax procedures. Ref SlashNext has uncovered a new attack technique known as "Conversation Overflow," which involves cloaking emails to bypass machine learning (ML) security controls, allowing malicious payloads to enter enterprise networks. In this attack, threat actors trick ML tools by splitting emails into visible and hidden sections, with the hidden part containing innocuous text and blank spaces inserted to evade detection. This approach targets ML algorithms' focus on deviations from normal communications rather than malicious content, making it a potent threat to organisations. Ref Cybersecurity and Infrastructure Security Agency released guidance to counter the threat Microsoft posed by Volt Typhoon (PRC State-Sponsored Actor) related activities. Volt Typhoon is strategically positioning itself within U.S. critical infrastructure networks to disrupt or destroy essential services in case of heightened geopolitical tensions or military conflicts involving the United States and its allies. Ref An interesting trend has emerged as a prominent New Zealand advertising and interactive media company investigates a data breach that could impact over 2.5 million individuals. Although the company has not officially confirmed the breach, threat actors are reportedly attempting to exploit the stolen data by contacting victims and demanding payments. Ref

https://www.ncsc.gov.uk/collection/board-toolkit
https://www.microsoft.com/en-us/security/blog/2024/03/20/microsoft-threat-intelligence-unveils-targets-and-innovative-tactics-amidst-tax-season/
https://slashnext.com/blog/new-attack-techniques-to-bypass-machine-learning-security-controls/
https://www.cisa.gov/resources-tools/resources/prc-state-sponsored-cyber-activity-actions-critical-infrastructure-leaders
https://www.bitdefender.com/blog/hotforsecurity/hackers-demand-ransom-from-new-zealanders-whose-data-was-allegedly-stolen-in-a-data-breach-at-local-media-firm/