source: scmagazine.com

Amid sharply falling public markets and spiraling panic around the rapid proliferation of the coronavirus (a.k.a. Covid-19), the cybersecurity industry seems to be well poised for sustainable growth despite some foreseeable turbulence.

Publicly traded security companies and some specific niches will unescapably suffer in a short term, however, private cybersecurity companies and later-stage startups with sufficient reserves of cash may rapidly gain new clients and markets. That is not to say that the industry will enjoy an absolute and everlasting success but, contrasted to other sectors of the economy, will be in a comparatively good shape.

Let’s have a look at the five underpinning reasons for a bright future in the cybersecurity industry among the coronavirus havoc:

Many traditional businesses will flee online

Countries affected by the coronavirus now actively restrain or even flatly prohibit a wide spectrum of daily activities including attending schools, visiting public places and restaurants, let alone international travel and conferences. Unsurprisingly, most of the affected businesses will have now to swiftly reinvent themselves and adapt to the new reality or see revenues hit extremely hard.

A considerable number of offline processes will somehow migrate to the Internet, replacing consultations with doctors and lawyers with agile video calls, favouring Zoom and WebEx for internal business meetings, delivering food and goods to homes instead of eating out or weekend shopping in overcrowded malls.

Continue reading “FIVE REASONS WHY COVID-19 WILL BOLSTER THE CYBER-SECURITY INDUSTRY” →

source:  threatpost.com

Attackers are using YouTube redirect links, whitelisted by various security defense mechanisms, to evade detection

Researchers are warning of an increase in phishing emails that use YouTube redirect links, which help attackers skirt traditional defense measures.

If certain malicious URLs are blocked by web browser phishing filters, attackers commonly use a redirector URL to bypass these filters and redirect the victim to their phishing landing page. URL redirects have been used in previous campaigns, including malicious redirect code affecting Joomla and WordPress websites and HTML redirectors being used by Evil Corp. Now, a new campaign is using legitimate YouTube redirect links.

“Most organizations allow the use of platforms such as YouTube, LinkedIn, and Facebook and whitelist the domains, allowing for potentially malicious redirects to open without any fuss,” said researchers with Cofense, in a Wednesday post.”

Researchers said that the emails using this method originated from a fraud domain, sharepointonline-po.com, which was recently registered, on Feb. 19. The attackers purported to be with SharePoint, a web-based collaborative platform that integrates with Microsoft Office. The email indicated that a new file has been uploaded to the target company’s SharePoint site, and included an option to “View File.”

When a user hovers their mouse over the “View File” URL, they see a seemingly-legitimate embedded YouTube link (hXXps://www[.]youtube[.]com/redirect?v=6l7J1i1OkKs&q=http%3A%2F%2FCompanyname[.]sharepointonline-ert[.]pw).

image source:  threatpost.com

“Although the email may appear illegitimate to a trained ey””A curious or unsuspecting end user may click the button expecting to see a legitimate file,” said researchers.

When they click on the URL, victims are redirected to YouTube, and then immediately redirected to another link (companyname[.]sharepointonline-ert[.]pw), which is the final phishing landing page.

Continue reading “PHISHING ATTACK SKIRTS DETECTION WITH YOUTUBE” →