In 2020 Toll Group went twice through a ransomware attack, now Sophos which acted as a response and investigation team for the events, announces that the entry point was an account of an employee who died but remained active in the system.
Nefilim Ransomware Attack Used “Ghost” Credentials.
According to the report by Sophos, the Nefilim group responsible for the infidelity attack that was on the company’s network for about a month without the defense systems identifying suspicious activity, the user used by the attack group belonged to a deceased employee but his account was locked/deleted due to being integrated into various services.
Read more about Examples and Numbers of Social Engineering attacks ›
Save Your Company from Social Engineering Attacks Like that
Register and Get your Personalized Free Exposure Report NOW
and See your where your Company is Exposed to Hackers
Recently Published on our Blog
How to tell if you have ransomware
No business wants to become a victim of a ransomware attack. This is when data on your computer or network is held hostage until you pay a ransom. In most cases - particularly human-operated ransomware (as opposed to automated ransomware) - there will be warning signs...
Scammers don’t take summer holidays
Summer is when most people think about taking holidays and enjoying outdoor activities to make the most of good weather. But cyber criminals don’t take a break during this period. They have scams specifically for this season. Here are three to look out for: 1. Fake...
Why does fake news go viral so quickly?
Fake news is nothing new but, since the rise of social media, it’s become more prolific and spreads faster. In fact, fake news stories are 70% more likely to spread than real news. Why is that? Fake news travels faster than true news Numerous recent studies have shown...