Nobelium cybercriminal group strikes again
Nobelium, the group behind the high-profile attack on SolarWinds, is here again. Following the attack it launched in 2020, it now targets government and humanitarian organizations in at least 24 countries.
Microsoft has recently reported that there has been a wave of attacks. This time they are carrying out a phishing attack based on typosquating, in an infrastructure very similar to the one used in previous attacks.
¿What is the meaning of typosquatting?
Typosquatting is a phenomenon whereby a user ends up on a web page that is not the one they were looking for due to mistyping the URL in their browser. Nobelium tries to take advantage of this flaw to take the user to a malicious web page, with the intention of obtaining their access credentials.
Modern phishing attacks not only are done with our username and password, but also try to obtain our second factor of authentication, such as the typical SMS sent by banks. Not using second factors, or using second factors based on codes (OTPs, SMS verification codes...), is still the biggest vulnerability.
“Companies should, if not implement, at least, start planning their strategy towards out-of-band second factor authentication. Or what is better, turn totally passwordless. Ironchip uses behavioral and out-of-band factors with the intention of preventing fraud and blocking attacks.”
So, what is the solution? Out-of-band authentication, OOBA, is a process where two different signals from two different networks or channels are required. This type of authentication is more sophisticated and prevents many types of fraud and hacking by blocking attacks. With Ironchip MFA you can prevent and protect your company.