In 2020 Toll Group went twice through a ransomware attack, now Sophos which acted as a response and investigation team for the events, announces that the entry point was an account of an employee who died but remained active in the system.
Nefilim Ransomware Attack Used “Ghost” Credentials.
According to the report by Sophos, the Nefilim group responsible for the infidelity attack that was on the company’s network for about a month without the defense systems identifying suspicious activity, the user used by the attack group belonged to a deceased employee but his account was locked/deleted due to being integrated into various services.
Read more about Examples and Numbers of Social Engineering attacks ›
Save Your Company from Social Engineering Attacks Like that
Register and Get your Personalized Free Exposure Report NOW
and See your where your Company is Exposed to Hackers
Recently Published on our Blog
Meet Our New Employee ‘Kyle’ – And Why He’s Your Worst Security Nightmare
Kyle looks like the perfect hire. His credentials check out, his resume is polished, and his video interview went flawlessly. There’s just one problem – Kyle doesn’t exist. AI-enabled phishing and fake worker attacks are on the rise, and businesses that rely on...
Don’t Fall Victim to Smishing Scams: Recognize the Red Flags
In our increasingly digital world, cybercriminals are constantly devising new methods to deceive individuals and steal personal information. One such tactic gaining prominence is "smishing," a portmanteau of SMS and phishing. This form of cyberattack involves scammers...
Understanding Spear Phishing: Personalized Attacks in the Age of AI
Cybercriminals are no longer sending generic, poorly written phishing emails riddled with obvious red flags. Today, they’re using advanced AI-driven techniques to craft hyper-personalized messages that can fool even the most vigilant professionals. This new wave of...