Network Security
Vulnerability Management
Privileged Access Management
Endpoint Security
Threat Hunting
Unified Endpoint Management
Email & Collaboration Security
Contents:
In this week’s Snapshot, cybersecurity advisor Adam Pilton breaks down the latest news on dodgy VPNs, sneaky phishing, a worrying shift from Scattered Spider, and more.
Read on to find out how to avoid falling victim to similar threats. Adam is a former cyber detective with years of experience in this field. Use his insights in this week’s latest news to better protect your MSP business’ clients.
Apple, Google, and some dubious Chinese VPNs
Despite warnings, Apple and Google continue to list Chinese-made VPN apps in their stores. These apps market themselves as privacy tools, but many are tied to companies in China with questionable data practices.
They’re selling privacy, but you might actually be giving it away.
Safety advice against dubious VPNs
- Stick to an approved list of VPNs – ones that have been vetted by your security team
- Be extra wary of free VPNs — especially those promising “total anonymity.”
- Review and audit all apps before installation. Privacy protection starts before you click “Download.”
SEO-based phishing: A sneaky ranking game
Cybercriminals are now gaming the SEO system. They’re injecting hidden code into legitimate websites, not to infect them, but to boost the ranking of their own phishing pages.
So, what happens when someone searches for a common service? Malicious pages can show up right at the top and look convincing while doing it.
Safety advice against SEO phishing
- Don’t rely on search engines to access login pages.
- Bookmark critical sites and use those bookmarks every time.
- Watch out for top-listed or sponsored results – unless you know they’re verified.
23andMe slammed with £2.3M fine over data breach
The UK’s data watchdog, the ICO, hit 23andMe with a £2.3 million fine for last year’s data breach. Attackers used credential stuffing to get into accounts, exposing deeply personal data, including genetic profiles.
The real kicker? The lack of multi-factor authentication (MFA) and weak monitoring made it far too easy.
Safety Advice against credential stuffing
- Enable MFA on all accounts. Make no exceptions.
- Use monitoring tools to detect credential stuffing and flag repeated login attempts.
- Treat sensitive data, like personal or medical ones, as high-priority assets.
The Washington Post email system got breached
The Washington Post confirmed that attackers compromised their internal email system, including journalist accounts.
The entry point? Still unclear. But it’s another reminder: no one is too big to target.
Safety Advice to keep your email safe
- Use phishing-resistant MFA, especially for anyone with access to sensitive data.
- Set up alerts and tools to monitor unusual logins, especially on high-value accounts.
Assume you’re a target and prepare accordingly by taking the right email security measures.
Scattered Spider is now targeting insurance firms
Google has issued a warning: the infamous Scattered Spider crew, which was behind recent UK retail hacks, are now going after US insurance companies.
They’re social engineering help desks, manipulating support teams into resetting MFA and granting access. These guys are slick, and they’re not slowing down.
Safety advice against social engineering
- Educate Help Desk and frontline teams on caller verification protocols.
- Use scripts that require ID checks before performing account resets.
- Assume every call is a potential threat and validate accordingly.
If you liked this article, follow us on LinkedIn, Twitter, Facebook, and Youtube.
