Subj : Sophos Virus News
To   : All
From : Daryl Stout
Date : Thu Dec 17 2020 17:21:02

Here is the latest information from the Naked Security Blog from Sophos.
You can go to nakedsecurity.sophos.com to read these. You can also sign
up to have these delivered to your email during the week.

Be sure that you PRACTICE SAFE HEX -- and that you keep your anti-virus,
anti-malware, anti-spyware, and anti-ransomware software up to date. 

Do NOT open any email attachments, even if they appear to be from someone
you know!! Even if you were notified in advance that the file was coming
before it arrived, use EXTREME CAUTION when opening attachments, or even
clicking on links. 

If it appears your email has been spoofed, change your access password 
immediately!! It's best to use 2 unrelated words (the longer, the better), 
separated by a non-alphabetic character...such as BOAT+TOUCH (please do 
NOT use this example). While you can't use high ascii characters online,
you can use numbers, letters (upper and lower case), and symbols.

The use of a Password Manager, such as Dashlane, is STRONGLY RECOMMENDED. 
That way, you can create a different password for each site you visit, 
and you don't have to remember them...plus, you can make it a complex 
password, that's difficult for someone to guess. If they do, they can 
steal your identity, and make you liable for things like credit card 
debt, etc.

Lastly, if your browser seemingly locks up, telling you to call Microsoft
at a certain number, do NOT call the number!! Instead, close your web
browser, clear the cache and cookies, do a full virus scan, then restart
the browser. You may also want to reboot the computer afterwards.

***

When zombie malware leads to big-money ransomware attacks

SophosLabs investigates SystemBC, a malware utility for launching 
fileless malware attacks, including big-money ransomware.

***
	
S3 Ep11: DIY phishes, sandwich scams and vaccine hacking [Podcast]

Here's the latest podcast - listen now!
	
*** 

Naked Security Live - How to avoid "big brand" email scams

Here's the latest Naked Security video - watch now (and please share 
with your friends)!

***
	
Phishing tricks that really work - and how to avoid them

Get inside the mindset of your adversaries to increase your chances
of spotting a phish.

***

Special minisode: "20 years of cyberthreats that shaped infosec" [Podcast]

Bonus Naked Security Podcast minisode - listen now!

***
	
Subway sandwich scam mystifies loyalty card users

Subway customers have been on the receiving end of a curiously complex 
phishing scam. We investigate.

***

Was there a "COVID-19 vaccine hack" against the European Medicines Agency?

Just because a medical agency is "obviously" on the cybercriminal radar
doesn't mean that the rest of us are "obviously" off it.

***
--- SBBSecho 3.11-Win32
 * Origin: The Thunderbolt BBS - tbolt.synchro.net (454:1/33)

.