In 2020 Toll Group went twice through a ransomware attack, now Sophos which acted as a response and investigation team for the events, announces that the entry point was an account of an employee who died but remained active in the system.
Nefilim Ransomware Attack Used “Ghost” Credentials.
According to the report by Sophos, the Nefilim group responsible for the infidelity attack that was on the company’s network for about a month without the defense systems identifying suspicious activity, the user used by the attack group belonged to a deceased employee but his account was locked/deleted due to being integrated into various services.
Read more about Examples and Numbers of Social Engineering attacks ›
Save Your Company from Social Engineering Attacks Like that
Register and Get your Personalized Free Exposure Report NOW
and See your where your Company is Exposed to Hackers
Recently Published on our Blog
Inside the Shadows – How Dark Web Monitoring Protects Your Business Before It’s Too Late
💻 Hidden Threats Your Security Tools Can’t See
🕵️♂️ Criminals are selling stolen credentials and corporate secrets in places your firewall will never reach.
⚠️ Every week, millions of new records hit the Dark Web – and most businesses have no idea until the damage is irreversible.
🔍 Dark Web monitoring gives you eyes where attackers hide, scanning secret forums, private chatrooms, and encrypted markets for stolen data tied to your brand.
🤝 The best solutions blend automation and expert human intelligence to detect early warning signs, decode emerging threats, and trigger a rapid response before criminals strike.
📉 Without it, a single exposed database can lead to regulatory fines, revenue loss, and reputational collapse.
🚀 At AUMINT.io, we deliver actionable threat intelligence so you can act before the headlines do.
📅 Book your free Dark Web threat assessment today and uncover what’s out there before your attackers do.
#CyberSecurity #ThreatIntelligence #CISO #FraudPrevention #DataProtection #RiskManagement #DarkWebMonitoring #InfoSec
AI-Powered Cyber Threats Are Here – And They’re Moving Faster Than You Can React
🤖 AI Cyber Threats You’re Not Ready For
⚡ Hackers are now using AI to craft deepfake voices, rewrite malware in real time, and create hyper-personalized phishing that beats every spam filter.
🎯 These aren’t random attacks – AI analyzes your data, habits, and even tone of voice to target you with precision strikes.
💣 By the time you detect the breach, AI has already moved on, hidden its tracks, and exploited new entry points.
🔍 Traditional awareness training won’t cut it – you need simulation-based testing that keeps pace with AI’s speed.
🛡️ AUMINT.io replicates AI-powered social engineering tactics so your teams can experience and counter real-world attacks before they happen.
📈 This isn’t about “if” AI will target you – it’s about whether your people can spot the difference between reality and an AI-crafted deception.
🚀 Want to see how attackers will use AI against your business?
Book your walkthrough today – every day you wait is a day AI gets smarter.
#CyberSecurity #CISO #CTO #CEO #AIThreats #SocialEngineering #IncidentResponse #InfoSec #AIinCybersecurity #DeepfakeDefense #PhishingSimulation #SecurityAwarenessTraining
📊 CISOs: Free Cybersecurity Metrics Dashboards to Track Right Now 📊
As a CISO, you’re judged by how well you measure and communicate risk. But building dashboards from scratch or paying for pricey platforms isn’t always feasible.
Good news: there are powerful free cybersecurity dashboards you can start using or adapting today to track what matters most – from phishing response times to endpoint health and user risk.
Here’s a curated list of must-know dashboards and templates:
1️⃣ Microsoft Security Dashboard (via M365 Defender) – Visibility into threats, secure score, and incidents.
https://security.microsoft.com/securityoperations
2️⃣ Google Chronicle Security Dashboard (Free Tier) – SIEM-like visibility with integrated threat context.
https://cloud.google.com/chronicle
3️⃣ Splunk Security Essentials – Prebuilt dashboards for SOC maturity, MITRE mapping, and detection coverage.
https://splunkbase.splunk.com/app/3435/
4️⃣ Grafana + OSQuery Dashboards – Visualize endpoint queries across your fleet.
https://grafana.com/grafana/dashboards/12633-osquery-monitoring/
5️⃣ MITRE D3FEND Matrix Dashboards – Visual guide to map defense techniques against known threats.
https://d3fend.mitre.org/
6️⃣ Elastic Security Dashboards (via ELK Stack) – Open-source option for visualizing threat and event data.
https://www.elastic.co/security
7️⃣ Wazuh Dashboards (via Kibana) – Security analytics dashboard tailored to endpoint data and compliance events.
https://documentation.wazuh.com/current/user-manual/kibana-app/index.html
These dashboards help CISOs turn raw data into strategic conversations with boards, execs, and security teams.
Want to go beyond metrics and test real-world human risk? AUMINT.io simulates social engineering attacks and gives you trackable, CISO-level metrics on employee behavior.
📅 Ready to see AUMINT’s impact dashboards? Book a free intro call
📌 Save this post and start making metrics work for you, not against you.
#CISO #CyberSecurityMetrics #Dashboards #SecurityAnalytics #AUMINT