Be Cyber Safe | Issue 211
March 7, 2025
In this issue of Be Cyber Safe
We are only seven days into March and we have had everything from 70 degrees and sunny to snow. I can’t wait to see what the rest of the month has to offer Here is what’s in this week’s Be Cyber Safe!
- Are Your Social Media Profiles Secure?
- The Cyber Alert Level – GUARDED
- Microsoft disrupted a global cybercrime ring abusing Azure OpenAI Service
- More on Lee Enterprises ransomware attack
- In Cyber Security Humor – Looks like fun!
- Commonwealth Sentinel expands our social media presence
In the next few weeks, we will unveil an exciting opportunity to empower your organization to improve cyber security through training. Look for more information shortly!
Have a great weekend and #BeCyberSafe!
Are Your Social Media Profiles Secure?
What’s the first thing you do when you join a new social media platform or create a new social media profiles a platform you are already on?
Hopefully, the answer is to turn on specific security settings for your account.
If you’re relying on the default security settings to keep safe, you could be at imminent risk of account takeover, cyber stalkers gleaning information for a spear-phishing attack or interacting with catfish accounts that want to get close to you so they can glean financial details.
Catfishing: Is the act of creating a fake online identity to trick someone into a relationship or other online interactions. The term “catfish” refers to the person who creates the phony identity.
How big a problem are catfish accounts? LinkedIn took action on over 63 million fake social media profiles in the last six months of 2023. Facebook removed 631 million fake accounts between January and March 2024.
On March 5, the Cyber Threat Alert Level was evaluated and is remaining at Blue (Guarded) due to multiple vulnerabilities in multiple Industrial Control System (ICS) products.
Cyber Security News Worth Reading!
FROM SECURITY AFFAIRS
Microsoft disrupted a global cybercrime ring abusing Azure OpenAI Service
Microsoft shared the names of four developers of malicious tools designed to bypass the guardrails of generative AI services, including Microsoft’s Azure OpenAI Service.
Microsoft is taking legal action against these defendants, dismantling their operation, and curbing misuse of its AI technology.
The four individuals are Arian Yadegarnia aka “Fiz” of Iran, Alan Krysiak aka “Drago” of United Kingdom, Ricky Yuen aka “cg-dot” of Hong Kong, China, and Phát Phùng Tấn aka “Asakuri” of Vietnam. These individuals are members of a global cybercrime ring tracked as Storm-2139 by Microsoft.
FROM BLEEPING COMPUTER
Qilin ransomware claims attack at Lee Enterprises, leaks stolen data
The Qilin ransomware gang has claimed responsibility for the attack at Lee Enterprises that disrupted operations on February 3, leaking samples of data they claim was stolen from the company.
The threat actors have now threatened to leak all the allegedly stolen data on March 5, 2025, unless a ransom demand is paid.
Lee Enterprises is a US-based media company that owns and operates over 77 daily newspapers, 350 publications, digital media platforms, and marketing services. The company’s primary focus is local news and advertising, with its digital audience reaches tens of millions monthly.
Cyber Security Humor
