In 2020 Toll Group went twice through a ransomware attack, now Sophos which acted as a response and investigation team for the events, announces that the entry point was an account of an employee who died but remained active in the system.
Nefilim Ransomware Attack Used “Ghost” Credentials.
According to the report by Sophos, the Nefilim group responsible for the infidelity attack that was on the company’s network for about a month without the defense systems identifying suspicious activity, the user used by the attack group belonged to a deceased employee but his account was locked/deleted due to being integrated into various services.
Read more about Examples and Numbers of Social Engineering attacks ›
Save Your Company from Social Engineering Attacks Like that
Register and Get your Personalized Free Exposure Report NOW
and See your where your Company is Exposed to Hackers
Recently Published on our Blog
How to combat insider threats
Insider threats - when an employee illegally discloses confidential information - are often a result of sophisticated social engineering. And, as we enter into difficult economic times, the potential for this to happen increases. But why are some employees...
Why cybersecurity is so important during a recession
With fears of a recession looming, many companies are looking for ways to reduce spending. Cybersecurity is an area where it can be tempting to cut costs as it doesn’t directly contribute to the bottom line. However, there are several reasons why cybersecurity should...
5 ways AI can help with cybersecurity
Although artificial intelligence (AI) is not new, it’s become the focus of many mainstream conversations thanks to the launch of high-profile generative AI like ChatGPT and Dall-E. So how can cybersecurity professionals benefit from using AI in their work? Curating...