Weekly Intelligence Summary 28 August 2020

August 28, 2020

Since mid-July 2020, remote workers have been falling victim to a voice-phishing (vishing) campaign that involves phone calls and custom phishing pages intended to solicit virtual private network (VPN) credentials. The perpetrators, some of them hackers-for-hire, work collaboratively and reportedly have a high success rate, despite the simplicity of their techniques. The US Cybersecurity and Infrastructure Agency (CISA) and the FBI have warned that many organizations are susceptible to vishing, performed by threat actors who study potential victims to boost their credibility in social engineering attempts. Successful vishing operators have obtained access to company tools they can use to steal information for financial profit; it is also realistically possible that in future attacks they will work on behalf of nation-state or ransomware threat actors.

Previous Report
A Practical Guide to Reducing Digital Risk
A Practical Guide to Reducing Digital Risk

This practical guide provides advice to help understand how to identify critical business assets, understan...

Next Video
Ransomware Round-Up: Trends in Q2 - August 2020
Ransomware Round-Up: Trends in Q2 - August 2020

The Digital Shadows Photon Research team review ransomware variants observed this year and dive into how se...

Want To Try Our Digital Risk Protection Tool?

Get Started Free