In 2020 Toll Group went twice through a ransomware attack, now Sophos which acted as a response and investigation team for the events, announces that the entry point was an account of an employee who died but remained active in the system.
Nefilim Ransomware Attack Used “Ghost” Credentials.
According to the report by Sophos, the Nefilim group responsible for the infidelity attack that was on the company’s network for about a month without the defense systems identifying suspicious activity, the user used by the attack group belonged to a deceased employee but his account was locked/deleted due to being integrated into various services.
Read more about Examples and Numbers of Social Engineering attacks ›
Save Your Company from Social Engineering Attacks Like that
Register and Get your Personalized Free Exposure Report NOW
and See your where your Company is Exposed to Hackers
Recently Published on our Blog
Hackers Exploit AI to Manipulate Trust and Breach Organizations
🚨 AI-Powered Emails Are Breaching Employee Trust
😱 Hackers are using AI to craft hyper-realistic emails that trick employees into deploying ScreenConnect malware.
📧 These messages mimic trusted contacts and patterns, bypassing traditional cybersecurity defenses.
⚡ Human vulnerability is now the primary attack vector – technology alone cannot stop these threats.
🔑 Realistic simulations, behavioral analytics, and awareness programs are essential to protect sensitive data.
💡 AUMINT.io’s Trident platform trains employees to detect subtle AI manipulations and respond effectively.
📅 Book your intro session here
to strengthen your human firewall today.
#CISO #CTO #CyberSecurity #SocialEngineering #FraudPrevention #EmployeeTraining
🛡 Free Threat Hunting Playbooks CISOs Love to Reuse 🛡
Proactive threat hunting is key for detecting attacks before they escalate, but building playbooks from scratch is time-consuming. Luckily, several free resources provide tested playbooks CISOs can adapt immediately.
Here are the top free threat hunting playbooks:
1️⃣ MITRE ATT&CK Playbooks – Prebuilt hunting workflows mapped to TTPs.
🔗 https://attack.mitre.org/resources/
2️⃣ SANS Institute Hunt Playbooks – Free guides for Windows, Linux, and cloud environments.
🔗 https://www.sans.org/white-papers/
3️⃣ Elastic Security Labs Playbooks – Open-source examples for SIEM-based hunting.
🔗 https://www.elastic.co/security-labs
4️⃣ Microsoft Security Response Center (MSRC) Playbooks – Step-by-step threat investigation templates.
🔗 https://www.microsoft.com/en-us/msrc
5️⃣ SOC Prime Threat Hunting Library – Free community-contributed queries and use cases.
🔗 https://socprime.com/community
6️⃣ Red Canary Threat Detection Playbooks – Guides for endpoint and network threat hunting.
🔗 https://redcanary.com/resources/
7️⃣ Aumint.io Sample Playbooks – Our curated templates for simulating social engineering and insider attack scenarios.
🔗 https://aumint.io/resources
⚡ Using these free playbooks, CISOs can standardize threat hunts, reduce response time, and increase detection confidence.
At AUMINT.io, we complement technical hunting with real-world simulations targeting human vulnerabilities, ensuring your SOC detects both technical and behavioral threats.
🔗 Ready to see how your SOC handles advanced threats and employee-targeted attacks? Book a free demo
#ThreatHunting #CISO #CyberSecurity #SOC #AUMINT
Zipline Social Engineering: How Manufacturing Firms Became the New Cyber Battleground
🚨 Manufacturing Firms Under Stealth Cyber Siege
😱 The Zipline campaign is targeting U.S. manufacturers using sophisticated social engineering and custom malware.
📧 Attackers craft believable communications to exploit employees, gaining access to sensitive designs, operations, and financial information.
⚡ Traditional firewalls and antivirus are insufficient – human vulnerability is the real entry point.
🔑 Employee awareness, realistic simulations, and behavioral training are essential to prevent these hybrid attacks.
💡 AUMINT.io’s Trident platform helps teams recognize and respond to deceptive tactics before real damage occurs.
📅 Book your intro session here
to strengthen your human firewall today.
#CISO #CTO #CyberSecurity #FraudPrevention #ManufacturingSecurity #AwarenessTraining