A report by Barracuda said that on average IT staffers receive 40 targeted phishing attacks in a year. The analysis was done between May 2020 and June 2021 on 12mn+ spear phishing and social engineering attacks impacting over 3 mn mailboxes at over 17,000 organizations. 10% of all social engineering attacks were found to be BECs. In a year, an enterprise faces 700 social engineering attacks with 43% of phishing attacks copying Microsoft.
Windows has made Microsoft teams the default channel for communication on windows 11, as it is stepping up the OS security. To protect against phishing attacks, Defender’s ‘Safe Links’ have been added. Suspicious links will be scanned at the time of click to protect the user. The effectiveness of Safe Links is high as it detects 2 mn phishing URLs created by malicious users each month, while over 100 emails with these URLs are blocked every month.
Kaseya, whose software was exploited during the major ransomware attack, said less than 1500 small businesses have been affected by the attack. President Joe Biden has ordered a deep dive into the matter as companies across all continents were affected. Cybersecurity experts, however, suspected that the affected businesses out of Kaseya’s chain of 800,000 to 1,000,000 mostly small businesses are more than what Kaseya claimed.
Lt Gen Rajesh Pant reveals that the Indian govt may release a new cybersecurity strategy this year. This strategy will cover the entirety of the ecosystem of cyberspace of India. It is made in a way to tackle every aspect. Around 80 new deliverables will be coming from this strategy. The government has taken a number of steps to ensure safe, secure, and trusted cyberspace as cybercrime in India has increased by 500% during the pandemic.
Sophos announces findings of its survey report in the Asia Pacific and Japan region, in association with TRA. The study states that despite cyber-attacks, cybersecurity budgets have remained unchanged. India has a shortfall of skilled cybersecurity experts, and Indian companies are struggling to recruit cybersecurity staff, the study pointed out. The need to appoint a CISO will increase from 33% to 40% in the next 24 months.
Volkswagen, in a statement, said a data breach at a vendor has affected 3.3 mn customers and potential buyers in North America. Almost all of them were customers or potential buyers of Audi. The vendor had left sales and marketing information from 2014-19 in an e-file unsecured. Limited personal information about customers and potential buyers was exposed to hackers. VW will offer free credit protection services to the 90,000 customers affected by the leak.