2021 Most Dangerous Scams - Scareware

Scareware.jpg

For a long time Scareware was associated with Pop-ups, informing a user that their computer had been infected. Then it would offer a free antivirus scan that if you accepted not only installs malicious malware on your device, but additionally charge you a fee for supposedly removing what was not there in the first place. Unfortunately, this scam remains in various forms with the latest version finding other ways to cash in on fake alerts. Thereby using them as the entry point to technical support scams or prompting their victims to purchase fraudulent apps from a mobile app store. These fake pop ups aren’t just limited to desktop operating systems, but also mobile ones too. For example, fake Android notifications have become a common danger to users. Scammers are combining two mobile attack modes to deliver one convincing threat that is seemingly impossible to escape from. It starts in the form of social engineering and trying to get the victim to download a seemingly legitimate app onto their Android phone. This is then used to send ransomware-based attacks which doesn’t actually encrypt or hold any data to ransom, however it looks like It does. This is called a screen overlay attack and they are an increasingly common way for attackers to execute such ransomware attacks. It involves allowing a user to be locked out from their device until the ransom is met.

One recent threat found recently is called MalLocker.B which was identified by Microsoft security researchers and it involves abusing incoming phone call notifications. In operation to the user, it will seem as if they have an incoming phone call. However, when they press the answer button, it invokes a persistent screen overlay demanding a ransom and preventing access to anything else, including your home screen. Microsoft found that the code written into MalLocker.B would make sure the overlay screen matched the device screen resolution perfectly to make it as believable as possible.

The best way to ultimately avoid this is to not install any malicious apps in the first place. Don’t download anything from unofficial app stores and especially don’t install “cracked” apps. Malicious adverts are a major scam distribution method, so its recommended to use an add blocking plugin on your browser that blocks any known dodgy ads.

2021 Most Dangerous Scams - Formjacking

Formjacking.jpg

Whilst there are many phishing scams around, at least you have a chance to spot them. You can’t really say the same for online fraud card skimming, formjacking malware such as Magecart will continue to be a huge problem for retailers and their customers. Shoppers aren’t able to easily detect the malware because it runs on the server side with no noticeable differences from a legitimate transaction on the customer’s side. Scammers will be keen to target and inject their payloads into the websites used by small businesses, as they may not be as secure against threats like large organisations. Now I am going to explain what formjacking is and additionally how it can catch you out. From a scamming point of view, an online form is targeted so that when the user completes it, the information that is inputted also gets sent to the scammer. You could think of it like the petrol station card scamming trick, where a secondary reader is used, so that any cards swiped replicates the payment data and this is then resulting in fraud.

Technically it is far more challenging than that, as the hackers are deploying a malicious JavaScript code that will capture secure data directly from the HTML before its then sent to the website server. When you see old examples of this, hackers are trying to hide their tools in the server under deceptive names like gocgle.com (replacing the o with a c). Now they are clearly using legitimate and manipulative tools to avoid detection. They attack a third-party JavaScript vendor, meaning your website infrastructure doesn’t necessarily need to be breached for formjacking code to be inserted. Ultimately this means the risk for organisations targeted is extremely high.

10 Tips To Keep Your Business Safe This Christmas

10 Tips To Keep Your Business Safe This Christmas

Here at Eipsys, we are always excited for the festive season. However, as exciting Christmas is, its important to take precautions when it comes to the security of your business. Unfortunately opportunists spend their Christmas attempting to breach data and jeopardise organisations - we have come up with ten top tips to stay safe and prevent this from happening to your business.