Hackers are more likely to adopt practices that legitimate business owners will recognize.
A new Phishing operation that targets major banks has been discovered. These banks include Bank of America and Citibank, and Wells Fargo in the US as well as Capital One, PNC. Lloyds Bank, Santander and Commonwealth Bank of Australia.
The service, snarkily called "Robin Banks", also offers templates to steal T-Mobile and Netflix accounts, Google accounts, and Microsoft accounts.
IronNet analysts discovered the group and their evidence suggests that it has been active at least since March 2022.
Although the group isn't active for very long, they have already established a reputation for creating high-quality phishing pages for customers of the mentioned organizations.
There are two pricing options available to members who want to use their services. The budget option costs only fifty dollars per month and includes a single page as well as 24/7 support. The deluxe package costs $200 per month and gives customers unlimited access to templates as well as 24/7 support.
This service also offers a professionally designed dashboard. Threat actors can use this service to monitor their illicit operations, manage their pages using the templates provided, as well as wallet management and other advanced tools such as reCAPTCHA services to stop bots.
These details should alarm anyone who is involved in information security. Robin Banks' popularity has exploded on the Dark Web. The most alarming thing about their service is the fact that hackers are increasingly able to create phishing campaigns without having to have a wide or deep skill set. They do all the work.
IT Security has become more difficult, unfortunately. Maybe it is time for you to call Integrated Technology Systems for a thorough network systems check. Here are a few cybersecurity tips:
Cyber Security Best Practices for Businesses
It is often difficult for smaller companies to invest in IT security systems that are robust. This can make them more vulnerable to cyberattacks.
Here's some information to help you decide which investments to make and how to spend your IT security money.
1 - Door Access Control
This falls under cybersecurity, even though magnetic door locks and swipe card technology are managed by a server in your company's network.
We strongly recommend that you have one if you don't already have one. It's important to review the access levels of each person every so often once it is in place.
Additionally, most door security systems have some form of monitoring software. It pays to set up automatic alerts for employees who are not following their routine.
Example: Linda might be entering the office at 8AM and leaving shortly after 5PM. Then suddenly, Linda appears to have arrived at 3:00 AM. This is a sign of something amiss and warrants investigation.
2 - Encryption Encryption Encryption Encryption Encryption Encryption
Even if hackers breach your network, they cannot access any files they find if they are unable to decrypt them.
You should be focusing on encryption at rest, encryption used, and encryption while in transit. Even if hackers manage to break into your network, it will be difficult for them to gain access to your files if they are in each of these three states.
3 - Continuous Security Training
It is possible to bypass all the expensive hardware and software by simply going after your weakest link in your security chain. This is always your people. Hackers can gain access to your computer by using a weak password just for convenience.
Another potential entry point is someone who opens email attachments from unknown sources. This is because many employees aren't aware of the security risks associated with seemingly harmless activities. You must make sure that they are aware. Integrated Technology Systems can provide security training for your employees. Awareness solves many potential problems.
Although there are many things that go into strong security, Integrated Technology Systems suggests you start with these three items. Then give us a call for complete peace of mind.
Integrated Technology Systems
6 East 45th Street, Suite 400
New York, NY 10017
212-750-5420
https://www.itsnyc.com
