This month's briefing covers key security developments affecting small and mid-sized businesses in New England.
Top Threats This Month
QR Code Phishing (Quishing)
Attackers are increasingly using QR codes in phishing emails to bypass email security filters. The codes link to credential-harvesting sites mimicking Microsoft 365 login pages.
Action: Train users to be suspicious of unexpected QR codes in emails, even from seemingly legitimate sources.
Business Email Compromise Surge
BEC attacks targeting accounting departments have increased 40% this quarter. Attackers are impersonating vendors to redirect payments.
Action: Implement out-of-band verification for any payment changes. Never verify via email reply.
Ransomware Targeting Backups
Modern ransomware actively searches for and destroys backups before encrypting production data. Cloud sync services are particularly vulnerable.
Action: Ensure you have truly offline or immutable backups that ransomware cannot reach.
Notable Vulnerabilities
- Ivanti VPN: Critical vulnerabilities under active exploitation. Patch immediately.
- Citrix Bleed: Continued exploitation of NetScaler vulnerabilities. Patching alone is insufficient; session tokens must be invalidated.
Recommended Actions
- Verify backup immutability and test restore procedures
- Review and update payment verification procedures
- Conduct QR code awareness training
- Audit VPN and remote access systems for vulnerabilities
Need Help With Your IT?
Our team of experts is ready to help you implement the strategies discussed in this article. Whether you need cybersecurity assessments, cloud migration support, or managed IT services, we're here to help.