Blogs and Whitepapers Archives

BLOG: Increase in QuickBooks Data Spear-Phishing Attacks

Research has now led to a discovery of a significant surge in QuickBooks file data theft using social engineering tricks to distribute the malware and

BLOG: 30,000 Macbooks Infected By New “Silver Sparrow” Malware

There is popular belief that Apple made computers are mostly resistant to any type of malware, however as of recently it appears that advanced hackers and threat actors may have debunked this theory. Researchers have now unveiled another previously concealed piece of malicious

BLOG: What are the benefits of a STAR-FS?

The UK regulator has recently introduced the STAR-FS intelligence-led penetration testing scheme. While the STAR scheme has existed for some time, only recently have firms

BLOG: Danger Of Ads & PUAs

As long as there have been web advertising networks, there have been malicious web ads. These malicious and potentially dangerous web ads have been significantly

BLOG: Valentine’s Day Phishing Scams

Valentine’s day is universally known as the day when people show their affection for another person or people by sending cards and gifts with messages

BLOG: Remote Working Causing Data Breach Fatigue

At a time when data security needs to be taken more seriously, we are living in a time with an oversaturated list of possible risks given

STAR-FS Accreditation Announcement

Orpheus is pleased to announce our accreditation under the STAR-FS scheme, administered by CREST. STAR-FS is the framework that has been produced for intelligence-led penetration

BLOG: What Is STAR-FS?

STAR-FS is the new standard for threat-led penetration tests within the financial services organisation. Very few organisations are accredited to provide STAR-FS and Orpheus is

BLOG: Makop RaaS Campaign targets South Korean Entities

Executive Summary A recent Makop ransomware campaign has been targeting companies in South Korea in the manufacturing, education, media, technology, construction, pharmaceutical, legal, engineering and

BLOG: Continuous Risk Monitoring

Continuous risk monitoring is a valuable tool for organisations seeking to improve their cyber third-party risk management programs. Having an ongoing view of the biggest

BLOG: New Wormable Android Malware Spreading Through WhatsApp

A newly discovered, Android malware software has been found to disseminate itself through WhatsApp messages to other contacts in order to expand what appears to be an adware campaign. This is stated by ESET security researcher Lukas Stefanko, who

BLOG: Why are big-game hunting ransomware groups targeting remote access vulnerabilities?

Version 1.1 Author Alex Ashby Date 12th May 2020 The cybercriminal shift towards big-game hunting – going after bigger, more secure targets in tailored operations

Resources