#helpdeskhacks

IT help desks are under attack

Internal employee service desks are under attack from threat actors who are exploiting the weakest link in any security chain: humans. Hacker groups like Scattered Spider are socially engineering vulnerable IT agents who have the power to reset passwords and MFA devices.

October 5, 2023

Clorox says sales and profit took a big hit from cyberattack

"The bleach and cleaning products maker said it expects net sales to decrease 23% to 28%."

September 14, 2023

Caesars Entertainment Confirms Hack in Second Recent Casino Attack

"The late-August attack left Caesars Entertainment forking over tens of millions of dollars to the hackers ... this social engineering attack involved a hacker posing as an employee to get the IT contractor to change a password"

September 13, 2023

MGM Grand Cyberattack Allegedly Caused by 10-Minute Phone Call

"All ALPHV ransomware group did to compromise MGM Resorts was hop on LinkedIn, find an employee, then call the Help Desk.”

September 2, 2023

Okta Warns of Social Engineering Attacks Targeting Super Administrator Privileges

"In recent weeks, multiple U.S.-based Okta customers have reported a consistent pattern of social engineering attacks against IT service desk personnel, in which the caller's strategy was to convince service desk personnel to reset all MFA factors enrolled by highly privileged users."

Third-Party Provider Breach Compromises Some Cisco Duo Customers

A third-party provider to Cisco Duo, a popular MFA app, has been compromised. Here's what you need to know if you were affected, or if you're worried about the security of your Duo user accounts.