Cyber Security RESOURCES

Financial institutions are facing an alarming rise in sophisticated cyber fraud, often overlooked due to siloed operations among departments. To address this, FS-ISAC has published “Leveling Up: A Cyber Fraud Prevention Framework for Financial Services,” which offers a structured approach to improve coordination, enhance investigations, and prevent losses. Here’s a brief overview of its contents and how DefenseStorm can help implement this vision.

A new phishing tool called Astaroth threatens the security of online accounts globally. This malicious tool bypasses two-factor authentication (2FA), which is meant to be a vital layer of protection for private accounts, enabling hackers to steal sensitive information such as usernames, passwords, credit card details, bank information, and more.

On Friday March 28, 2025 CISA released a report with analysis of a new malware variant CISA has identified and named as RESURGE. RESURGE is a persistent malware that shares similar characteristics to the malware SPAWNCHIMERA. Please review the information that is taken directly from CISA and compiled by DefenseStorm Director of Cyber Threat Intelligence to learn more about RESURGE, its capabilities, and attack vectors.

Business Email Compromise (BEC) is a sophisticated email scam where cybercriminals trick victims into transferring funds or sharing sensitive data. Learn more about common BEC attack types, how they work, and essential strategies for protection.

Microsoft 365 accounts are facing an extensive password spraying attack by a Chinese botnet, which possesses the ability to bypass multifactor authentication (MFA). This botnet comprises over 130,000 compromised devices, utilizing stolen credentials from infostealer accounts and then systematically attempting to log into M365 accounts globally.

With recruiters using LinkedIn as a very popular way to research and reach out to potential candidates, bad actors have begun to try to abuse people’s trust and desire for new challenges to lure them in with fake job opportunities as a way capture their credentials and deliver additional malware.

The IRS has already made several reminders for individuals to be aware of bad actors trying to take advantage of this season to gain access to your personal data and finances. Read tips and guidance taken directly from the IRS’ website, including associated links to stay safe during tax season.

As the holiday season approaches, there’s a beautiful spirit of giving that fills the air, with many of us feeling inspired to spread joy and lend a helping hand to those in need. However, the rise of charity scams that prey on the kind-hearted are becoming more and more common. Read about one woman who opened her heart – and her wallet – to a charity, only to end up scrambling to secure her accounts and recover money lost to scammers.

Take a minute and think about the password(s) you use in both your professional and personal capacities. When passwords are reused or weak, they are far more susceptible to being stolen. One stolen password can lead to a detrimental data breach for your organization.

To prepare for the FFIEC Cybersecurity Assessment Tool sunset date, financial institutions should identify a new framework around which to build their programs and self-assess themselves against that framework using a risk based approach to ascertain that the appropriate level of maturity is reached within various areas.

As the excitement of Black Friday and Cyber Monday draws shoppers in with unbeatable deals and discounts, it’s important to remember that the online shopping frenzy also brings increased cybersecurity risks.

Contrary to the common belief that fraud schemes are quick scams leading to minor losses, one woman was deceived into thinking she was a prime suspect in a money laundering operation for three long months. Fearing imprisonment or deportation, she became entangled in the deception and lost $300,000 before discovering it was a scam.

With the remote workforce not showing any signs of slowing down, many organizations are starting to evaluate and implement ways to access these systems through the usage of Remote Access Tools. While these tools provide an incredible amount of value to an organization to stay connected and retain access, Remote Access Tools are a significant attack vector in cybersecurity and are something that should not be taken lightly.

Election years are a critical moment for any democracy. Unfortunately, they are also prime opportunities for hackers and cybercriminals to exploit the heightened political atmosphere.  A voter registration verification scam is a common and deceptive tactic employed by cybercriminals. These scams specifically target individuals, tricking them into divulging sensitive personal information under the guise of verifying or updating their voter registration status.

CISA is alerting the public to be cautious of potential cyber scams following hurricanes. After major natural disasters, fraudulent emails and social media messages—often containing harmful links or attachments—are common.

Announcing the NEW GRID Active Cyber Risk Readiness Action Dashboard.  The additions to DefenseStorm’s Cyber Security Risk Management platform delivers customers with an overview and actionable steps to stay ready against cyber attacks

The Federal Financial Institutions Examination Council (FFIEC) released important information surrounding the commonly used Cybersecurity Assessment Tool (CAT).

During the process of purchasing a house, newlyweds Lilah Jones and her husband were deceived into sending money to a scammer. The fraudster used the scam, Business Email Compromise (BEC), to pose as the title company. False wiring instructions were provided, leading the couple to transfer a $130,000 downpayment to a fraudulent account instead of the title company.