Airlines, transportation companies, retailers and insurance companies have recently become victims of help desk fraud. Google recently warned about this. Hacker group Scattered Spider is said to be responsible for these attacks, according to the tech company.
The cybercriminals pretend to be an employee of the company when they call the help desk. Once they get the names and information of system administrators, they call the help desk again. In doing so, they impersonate the administrator and request a password change. They then try to gain access to VMware vCenter.
In the message, Google offers advice on how organizations can protect themselves from this. The tech company recommends tightening help desk processes. Staff members should be present "in-person" to reset passwords or sign up devices for multifactor authentication (MFA).
Clorox recently sued IT service provider Cognizant over a ransomware attack. This cost the bleach manufacturer $380 million. "Cognizant was not fooled by any sophisticated trick or sophisticated hacking techniques. The cybercriminal simply called the Cognizant service desk, asked for the login credentials to access Clorox's network, and Cognizant simply provided them," the lawsuit reads.
Click here for Google's message.
Click here for Reuters' press release on Clorox.
