8th February | Become Cybersafe | Cyber Security – Technologist

Welcome to the latest edition of the Cybersafe Cyber Threats Update, a weekly series in which we bring attention to the latest cyber attacks, scams, frauds, and malware including Ransomware, to ensure you stay safe online.

Here are the most prominent threats which you should be aware of:

AnyDesk says hackers breached its production servers, reset passwords

AnyDesk recently faced a cyber attack that breached its production systems, leading to the theft of source code and private code signing keys. While the company promptly responded by engaging cyber security experts and implementing remediation measures, details about the data theft remain undisclosed.

AnyDesk has reassured users of the software’s safety but advised updating to the latest version and changing passwords as a precautionary measure. The replacement of stolen code signing certificates is underway, with users encouraged to transition to the updated version.

Despite assurances that passwords were not compromised, users are strongly urged to change them, particularly if reused on other platforms. This incident underscores the persistent threat of cyber attacks against major companies, echoing recent breaches at Cloudflare and Microsoft and emphasising the importance of robust cyber security measures.

Firms lead on tackling spyware as they encourage taking cyber security more seriously

Britain, France, and the United States spearheaded a joint statement involving 35 nations and major tech firms like Google, Microsoft, and Meta to address the proliferation of malicious cyber-spying tools.

At a conference convened by Britain and France, signatories recognised the pressing need to combat the widespread availability and misuse of spyware, which threatens national security and human rights. The agreement emphasises the importance of employing such tools legally and responsibly, advocating for enhanced oversight and transparency in dealings with commercial spyware vendors. Concerns were raised about the potential expansion of the spyware market, enabling both state and non-state actors to access powerful surveillance capabilities.

Additionally, the statement highlighted the risks of mercenary hackers utilising spyware for malicious purposes. Despite claims by spyware firms that their products serve national security interests, incidents of their misuse against civil society, political opposition, and journalists have been documented.

Recent scandals, such as the NSO’s Pegasus spyware revelations, have intensified scrutiny on the industry. In response, the United States announced visa restrictions targeting individuals involved in the misuse of commercial spyware, underscoring efforts to curb illicit activities in the cyber industry.

As a business owner, you can speak to cyber security firms like Neuways to learn about the impact of spyware and malware on your company. As a Microsoft Partner based in the East Midlands, Neuways are happy to hear from business owners who would like to know more about cyber security and what measures need to be in place to protect data. For info on Business Disaster and Continuity Recovery, you need can listen to the latest Neuways podcast on discussing the matters.

Europcar denies data breach amid alleged sale of customer info – blames AI

According to Teiss, Europcar faced allegations of a data breach when a threat actor advertised the sale of personal data belonging to 50 million customers on a hacking forum.

However, Europcar swiftly refuted the claims, asserting that the data breach was fabricated and the shared data generated using artificial intelligence. A spokesperson highlighted discrepancies in the advertised data, including inconsistencies and non-existent email addresses. This

Cyber Security analysts also noted irregularities, questioning the involvement of AI and suggesting sensationalism as a potential motive. Furthermore, other security researchers emphasised the existence of projects capable of generating data similar to the alleged leak, casting doubt on the authenticity of the purported breach.

This story highlights even more of an issue with companies and business owners becoming more concerned about Artificial Intelligence and what impact it can have on cyber security. East Midlands based Neuways have written on the concerns of cyber security. If you think your employees could benefit from Managed Phishing Awareness Training to help spot AI-influenced phishing attacks which are targeting your data, speak to Neuways via our contact form.

—————————————————————————————————————————–

Contact Neuways for Cyber Security For Businesses

If you need any assistance with cyber security to become Cybersafe, then please contact Neuways and we will help you where we can. Just get in touch with our team today. We’re based in Derby but we work with clients all over the country and can travel for your needs.