Blog
Hiatus Malware Targets Business Routers
There is a new malware campaign targeting business-grade routers. It is called Hiatus, a complex operation that deploys the HiatusRAT malware. It is a kind of Remote Access Trojan (RAT) that cybercriminals use to gain remote control over a target system. Hiatus is the first of its kind. Lumen’s security experts say it has been […]
Cerebral Data Breach – 3.18 Million Affected
Cerebral, an online platform that offers mental health care services, recently suffered a data breach that may have affected up to 3.18 million users. According to its report, the breach was due to the company’s use of third-party pixel trackers. Cerebral did not say the exact number of users affected. However, the company said it […]
Reduce the Risk of Business Email Compromise Attacks
Email threats have been around since the early 90s. But phishing techniques are much more sophisticated now than they were back then. One of the most successful and lucrative tactics is business email compromise (BEC). BEC scams have stolen over $43 billion from businesses worldwide between July 2019 and December 2021. Threat actors are making […]
Maintain Customer Trust By Scaling Up IT Systems
Every business owner knows that forming a strong relationship with customers is essential to succeed. And two important elements of this relationship are positive customer experience and customer trust. Having these will help you bring in new customers and repeat or loyal customers. With businesses relying more on computer systems for various functions, data breaches […]
Hatch Bank Falls Victim to Data Breach
Hatch Bank confirmed a data breach that compromised its customers’ personal data. The financial technology firm said hackers found a vulnerability in its internal file-transfer software. This allowed the hackers to access and steal around 140,000 customer names and social security numbers from Jan. 30-31, 2023. Hatch is using Fortra’s GoAnywhere file-transfer platform. Many other […]
Chick-fil-A Confirms Credential Stuffing Attack
Credential stuffing is one of the many forms of cyberattacks on the rise. It’s a low-risk, low-cost automated method. It uses bots to access username-password combinations from past data breaches. It then uses that information to exfiltrate data from a new target system. It relies on people’s habit of reusing the same login credential across […]
US Government: Royal Ransomware Targets Critical Infrastructure
The United States government is alerting organizations about the Royal ransomware operation. The Federal Bureau of Investigation (FBI) and the Cybersecurity & Infrastructure Security Agency (CISA) said in a joint advisory that the Royal ransomware gang poses an increasing threat to critical infrastructure of numerous sectors in the U.S. The Royal ransomware group has been […]
How to Protect Your Organization From Callback Phishing
Callback phishing scams are one of the worst cyberattacks you can encounter. It is devastating to experience on a personal level. But it is even more disastrous if it happens to your organization. To help you, here is a guide covering how callback phishing works and the steps you should take to address it. How […]
Password Mask Attacks
Having a password for online accounts is not enough protection. Hackers and cybercriminals have found a way to crack passwords and hijack emails, bank accounts, social media pages, and other digital real estate. Through password mass attacks, cyber threat actors no longer have to spend a long time trying to guess your online credentials. Understanding […]
Microsoft Exchange Online Outage Blocks Access to Mailboxes Worldwide
Microsoft Corp. announced via Twitter on March 1 that a worldwide outage affected Exchange Online – its cloud-based email service. According to the software giant in a series of tweets, Exchange Online users can’t access their mailboxes. Users can’t send or receive emails and got error messages. The good news is that Microsoft resolved these […]
A Visionary Approach to Your Security
The purpose of an IT partner isn’t just to fix something when it is broken, it is to keep your people working and your data secure. Astral moves beyond traditional managed services by addressing all the key areas of cybersecurity in today’s complex landscape.
