Trends
Analysis
Bulletin
Hear from the Security Team
Subscribe for Email Updates.
We will be rolling out new articles and guides on a regular basis. Sign up to get the latest delivered to you. Get new articles and guides, a curated list of events and job openings, and more.
John Filitz
Sr. Technical Cybersecurity Content Writer
Responsible for Technical Cybersecurity Content Writing at Tessian. Proficient enterprise IT subject matter areas are varied and include cybersecurity, cloud adoption, industry vertical technology trends, disruptive emerging technologies, and navigating the hybrid workplace. Previous work assignments have included leading enterprise IT innovation, research and advisory services for Fortune 1000 clients across industry verticals: Finance, retail, healthcare, manufacturing, telecommunications and IT, to name a few.
All posts by John Filitz 5
10 May 2022
How Cybercriminals Exploited The Covid-19 Vaccine Roll-Out
The National Cyber Security Centre (NCSC) recently revealed that it removed more online scams in 2020 than in 2016-2019 combined, due to a surge in malicious activity related to the Covid-19 pandemic. It’s revealed that more than 120 phishing campaigns in which the NHS was impersonated were detected in 2020 - up from 36 in 2019. The lure? The vaccine roll-out.
Read More →
10 February 2022
Spear Phishing Attack Impersonating C-Suite Targets Junior Employees at Law Firm
Our latest threat intelligence example reveals how attackers impersonated a leading law firm's chairman, in an attempt to socially engineer junior staff. In late January 2022 a specialist law firm was the target of a spear phishing campaign flagged by Tessian Defender where the threat actor attempted to impersonate the Chairman of the firm. Leveraging common social engineering tactics, the threat actor then targeted the firm's junior employees. This is known as CEO Fraud.
Read More →
04 February 2022
Threat actors use phish kits to launch man-in-the-middle attacks
Threat actors have been found to be using phish kits that leverage transparent reverse proxy, which enables them to man-in-the-middle (MitM) a browser session and steal credentials and session cookies in real-time.
Read More →
14 January 2022
Comment: Russia takes down REvil hacking group at U.S. request
Russia has dismantled ransomware crime group REvil at the request of the United States in an operation in which it detained and charged the group's members, according to the FSB domestic intelligence service.
Read More →
12 January 2022
Account Takeovers of High-Profile Accounts of ‘FIFA Ultimate Team’ Players
Electronic Arts (EA) announced that cybercriminals “exploited human error” among EA’s customer support staff, using socially engineered phishing emails to compromise less than 50 top trader accounts. A series of takeovers of high-profile accounts of FIFA Ultimate Team players led to accounts being cleared of points and thousands of dollars in game currency.
Read More →