Experts Warn of Malicious Brexit Spam

Uploaded on 2016-07-15 in TECHNOLOGY--Hackers, NEWS-Cybersecurity News, FREE TO VIEW

Security experts are urging users to remain cautious online after seeing an increase in Brexit-themed spam designed to trick recipients into downloading malware.

Cyber firm Digital Shadows recently said that cyber-criminals are using classic social engineering techniques to create the kind of urgency among users that forces them into either clicking on a suspicious link or opening a malicious attachment.

 

That means jumping on the Brexit bandwagon and using its popularity at the moment to reel users in.

Subject lines might include “Brexit causes historic market drop,” the firm’s co-founder James Chappell explained. “We advise all consumers to exercise caution,” he added. “Do not open attachments or click on links and delete this type of email straight away.”

It’s not the first time hackers have piggy-backed on popular current events in order to spread malware or trick users into divulging sensitive personal information. Sporting tournaments are particularly popular for this purpose among the black hat community.

In 2014, for example, security experts identified numerous World Cup ticketing scams in which victims were sent emails containing malicious attachments masquerading as free tickets.

Interest in players like Neymar and Messi was also used as bait through email and social networking platforms. Hackers have also extended their campaigns to the app sphere. Recently Avast warned of a slew of Android apps on the official Google Play store designed to ape the popular FIFA app. However, if downloaded, they contain limited functionality and will just bombard the user with ads. The tactic will no doubt be in play again this summer ahead of the Rio Olympic Games.

As for Brexit, there have been concerns that leaving the European Union will make it harder for the UK to share threat intelligence with continental neighbors and recruit the best cybersecurity talent from abroad.

There are also fears that some large multi-nationals could start to move data out of the UK, potentially signaling job losses.

Infosecurity-magazine

« Ukrainian Hacker Pleads Guilty to US Insider Trading Charges
Turkish Coup: Attempt To Block Internet Fails. »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

Panzura

Panzura

Panzura optimizes enterprise data storage management and distribution in the cloud, making cloud storage simple and secure.

A10 Networks

A10 Networks

A10 Networks is a leader in application networking, helping organizations of all sizes to accelerate, optimize and secure their applications.

IGEL Technology

IGEL Technology

IGEL Technology is one of the world's leading thin client vendors. Thin clients increase data security and compliance.

Stormshield

Stormshield

Stormshield is a European leader in digital infrastructure security. We offer smart, connected solutions in order to anticipate attacks and protect digital infrastructures.

Silverfort

Silverfort

Silverfort introduces the first security platform enabling adaptive authentication and identity theft prevention for sensitive user, device and resource throughout the entire organization.

Fidus Information Security

Fidus Information Security

Fidus is a team of security professionals providing Penetration Testing and Cyber Security Consulting services throughout the UK and worldwide.

MER Group

MER Group

MER Group is a world-leading integrator in the areas of communications and security. MER cyber solutions cover the entire range of cyber and intelligence related products and services.

PSYND

PSYND

PSYND is a Swiss consultancy company based in Geneva specialized in CyberSecurity and Identity & Access Management.

Hallam-ICS

Hallam-ICS

Hallam-ICS designs MEP systems for facilities and plants, control and automation solutions, and ensures safety and regulatory compliance.

Curricula

Curricula

Curricula's cyber security awareness training delivers short relatable security stories to your employees. We make learning cyber security simple and fun.

Kratos Defense & Security Solutions

Kratos Defense & Security Solutions

The Kratos Space, Training, and Cybersecurity division addresses key cybersecurity challenges, including cloud security, continuous monitoring, IT security, and risk management.

Abu Dhabi Gov Digital

Abu Dhabi Gov Digital

Gov Digital (formerly Abu Dhabi Digital Authority - ADDA) enable, support and deliver a digital government that is proactive, personalised, collaborative and secure.

Venari Security

Venari Security

Venari is an award-winning cybersecurity SaaS provider that has developed an ETA (Encrypted Traffic Analysis) platform which fundamentally changes the way encrypted traffic is analysed.

Alethea

Alethea

Alethea is a technology company helping companies, nonprofits, and democracies protect themselves from harms stemming from disinformation and social media manipulation.

Virtual Infosec Africa (VIA)

Virtual Infosec Africa (VIA)

Virtual InfoSec Africa (VIA) is a wholly-owned Ghanaian company specializing in information security and cybersecurity solutions and services.

Varutra Consulting

Varutra Consulting

Varutra Consulting is an Cyber Security Consulting, Solutions and Training services firm, providing specialized security services for software, mobile and network.