We’ve had a lot going on since the start of the year and so I’ve recorded a short update for you. Click to watch and listen!
We are very thankful for all our customers, those who have been with us since we started and the new ones over the past months.
Held annually on 28 January every year since 2007, Data Privacy Day was introduced by the Council of Europe to commemorate Convention 108 – the first, legally binding, international treaty on data protection signed in 1981. Data Privacy Day exists now to bring the concept of data privacy to the forefront, and encourage everyone to consider the steps they take to keep their data safe, and what more they could be doing.
The landscape of data privacy has changed dramatically since that first celebration in 2007. Wholesale changes to legislation have been implemented, new international regulations brought in and enforced, and on the whole, a shift in the dynamic of how the general public thinks about the privacy of their data.
Managing your data privacy can be a daunting task – our data is everywhere, and we’re not always consciously aware of what is happening to it. Unsecured data, oversharing online, interacting with suspicious communications – these are all things that the threat actors of the world rely on from their victims to achieve their criminal goals. Here are several simple things that can be done to improve your online privacy:
Social media is a gold mine of information for those with malicious intentions. Sharing events such as birthdays, names of loved ones, employment details etc, can allow a threat actor to very quickly socially engineer scams to encourage you to divulge sensitive information. Although we shouldn’t, quite often those details such as birthdays and loved ones’ names end up in our passwords too, so it doesn’t take much for a threat actor with a little motivation to work these out. Ensuring privacy settings are set to maximum, and not over-sharing, will do much to protect from these threats.
We receive a deluge of emails every day, in both our personal and work lives. Threat actors know this too which is why they’ll use email as a method to target individuals and businesses to gain access to sensitive data. Phishing scams rely on the innocent victim not realising that the email in front of them is fake, or trying to get them to do something they shouldn’t be doing. So if in doubt, stop and think before clicking on links or opening attachments.
Know your data privacy rights, and what applies in your country. In Europe, this will be GDPR, which gives a lot of control back to the person to whom the data relates. This includes:
Despite best efforts, threat actors are constantly looking for new and novel ways to gain access to our data, and inevitably, some of this will be stolen and used for criminal activity. SOS Intelligence has been diligently monitoring the digital landscape over 2023. Our recent findings are a stark reminder of the rising threat of phishing attacks. Over the past year, we have observed over half a million unique credentials compromised through phishing, and with the growth of Generative AI techniques, we expect that number to grow in 2024.
One standout feature of our technology is our real-time alert system. This capability ensures that our clients are promptly notified when their staff have fallen victim to phishing, allowing for a swift response and effective risk mitigation, helping you to ensure that your data remains as private as possible.
Photo by Jason Dent on Unsplash
I’m delighted to invite you to our next webinar on Wednesday 14th June at 11am for twenty minutes.
Understanding Third-Party Risk for Cybersecurity
Who is this for?
You will learn:
We are recording the session so if you sign up and are not able to make it, you will be sent a replay.
Sign up takes seconds, just click the button below.
SOS Intelligence has recently seen indications of brute-force login activity against VPN services associated with a customer.
Our research has linked this activity to an Initial Access Broker (IAB), who has recently released access to a brute force scanning tool through their profile on a high-profile cyber-crime forum.
Thanks to Daniel, our new Threat Intelligence Analyst who has been investigating this. Future flash alerts and intelligence reports will come from Daniel via email. If you would like to get these, you can sign up here.
The IAB has shared information with our Intelligence Team, showing statistics relating to successful logins they have found whilst scanning VPN networks.
This has highlighted a concerning amount of networks accessible using commonly known default login credentials. However, the IAB has acknowledged that some of these may represent honeypots.
Source: SOS Intelligence discussion with Bassterlord
Initial Access Brokerage is a common feature of cyber-crime forums. The individuals concerned involve themselves with the compromise of computer networks.
Once persistence within the network has been maintained, they monetize that access by selling it within forums, often to actors with access to destructive malware. Therefore, IAB activity can often be a precursor to Ransomware and/or Data-exfiltration attacks.
Other Discussions identified by the SOS Intelligence Platform related to VPN Provider Scanning
Recommendation
We recommend reviewing any VPN services in use to ensure all default account passwords have been changed, and any built-in accounts have been disabled, in accordance with the best practices of your provider.
At SOS Intelligence we can provide bespoke intelligence feeds to help monitor your data to help you identify when credentials have been leaked and are appearing online, helping you to stay ahead of the attackers and keep your networks safe.
We are delighted to announce that we are the newest Eastern Cyber Resilience Centre Community Ambassador.
The Eastern Cyber Resilience Centre (ECRC) supports and helps protect SMEs, supply chain businesses and third sector organisations in the East of England against cyber crime.
The ECRC began its journey in November 2020. Led by Policing and facilitated by Business Resilience International Management (BRIM), they have followed a structured modular programme based on a highly successful model that had previously been established for over 9 years in Scotland.
They work in structured partnership with regional Policing, Academia, Businesses, Third and Public Sector organisations through a variety of ways.
What is a Community Ambassador?
Community Ambassadors are local businesses who recognise that cyber resilience is essential for their own customers and supply chains and want to help the ECRC promote this message.
We fully support what the ECRC are doing and very much look forward to working closely with them in the future.
I’m delighted to announce that our new UI is now live on the SOS Intelligence platform. This is something we have been working on for a good few months and is the culmination of customer feedback since launch.
Not only does it give a better experience visually, it’s more intuitive, easier to navigate and much simpler to use.
This is the first important step as part of a series of improvements across the platform. This development and investment in SOS Intelligence as part of our growth funding project which we recently announced.
Our old UI, whilst ok, was not as good as it should be. Ever since launching SOS Intelligence it’s something that’s always caused me to wince slightly – the design and UI didn’t match the product.
Good software lives or dies by how easy it is to use and interact with and it sure helps to look nice too!
We’ve focused on improving the menus and navigation so that you can see exactly where you are and see how to get to the next thing. We’ve also made use of a full screen on desktop. Previously it felt cramped and we still had a lot of unused space. No more! We now have a well laid out screen which has easy-to-read visuals and the new colours.
Here is a walk through video showing the new UI:
You can see most of the new screens below with an explanation of what they are and what you can do:
Our new alerts UI allow you to get the information you need fast. Highlighting of matched keyword enables you to zone in on exactly what’s been identified. View the full content for accurate context. Not only do we provide you with the full URL but also the full unredacted content.
Acknowledge the alert once you have completed your review.
Provide feedback to us if the alert was useful or not, and you can provide a reason and commentary.
OSINT Search – You can view posts on a forum or any collection, live without having to have an account on that forum yourself, this is especially useful for closed forums. Narrow down your search with the Search by Date option or add a keyword if you are searching for something or some one specific.
The new Dark Search – Use our Onion address search feature to search for just part of an onion address or URL – search for what you have or know and we will match the most relevant Onion service address.
Generate an on demand live screenshot of an onion website without having to use a Tor browser. Images on Onion sites are not rendered.
Search the dark web and retrieve thumbnail for Onion websites, text content and generate on demand screenshots for your search results. You can also customise your search by searching just for the page titles, content, content & title or part of an onion address.
Last but not least, we have the user management:
It’s been a complex project, not only the design but also the integration into the code base and structure of the platform.
If you’d like to know more and let us show you how easy it is to use, then please book a demo call here. Thank you!
Last year, Wavestone’s UK Cyber Radar provided a perspective of the emerging themes and trends arising in the UK Cyber Sector and to take the pulse of the UK’s Cyber Security ecosystem.
We are delighted to be featured and have only seen that we were recently!
For more information and to download the report, head on over to the Wavestone site.
To celebrate the launch of the special plan we just announced, we are having a webinar on Wednesday February 22nd at 11am and you’re invited.
Join us on the webinar to learn why we are doing this, how to apply and the details of the special plan.
Who is this for?
You will learn:
If you are a UK Charity, School or NHS Trust, you can apply for a special plan with SOS Intelligence, which gives you the first six months for free.
You can apply now by clicking here.
We look forward to seeing you!
Firstly, a very Happy New Year to you! We hope you had a terrific festive period, recharged the batteries and avoided getting the “worst cold ever” – we sadly didn’t and are still recovering!
Following our first webinar in December we are going to be doing regularly events through out this year.
We are using a terrific platform called Livestorm which allows you to sign up in seconds, receive timely reminder emails and during the event, ask questions and answer polls 🙂
We have a dedicated page with the schedule on, which you can find here.
We will be constantly adding to this throughout the year, so we look forward to welcoming you!
Recent Comments