BLACKCLOAK is notifying you about recent security events related to Apple Mercenary Spyware, a Chirp Smart Lock Vulnerability, Roku Account Compromises, and LastPass Phishing Attacks.
This alert highlights for recent events that you'll want to pay attention to: Apple Mercenary Spyware, Chirp Smart Lock Vulnerability, Roku Account Compromise, and LastPass Phishing Attacks.
Apple Mercenary Spyware
A series of mercenary spyware attacks have been conducted against Apple users, and the tech company has detected and responded by notifying those who have been targeted by these bad actors based on risk profile. Currently, the spyware attack is not believed to be financially motivated, but rather focused on journalists, activists, politicians and diplomats. Apple has sent out notifications via an email and iMessage notification to the email and phone numbers associated with the user's Apple ID, and by a Threat Notification at the top of the page after a user signs into their Apple ID on Apple's website.
What Should I Do?:
Anyone who receives these notifications should take the steps recommended by Apple, which may include putting your phone in Lockdown Mode.
Even if you don't receive this notification, now is as good of a time as ever to harden your Apple device to protect your accounts and your valuable sensitive date:
The Cybersecurity & Infrastructure Security Agency ("CISA") issued a warning over a vulnerability found within smart locks used in around 50,000 residences around the country. The vulnerability affects smart locks made by Chirp Systems, and it allows unauthorized individuals to remotely
unlock any door that uses one of these locks.
What Should I Do?
If you reside in one of the residences that uses a Chirp Systems smart lock, please exercise caution and take the following steps:
Anyone using the Chirp mobile application should ensure they are running the latest version of the app. Download any updates as soon as possible if your Chirp application is out-of-date.
Reach out to the Concierge team and we can discuss the next steps for your particular situation.
Roku Credential Stuffing Attacks
Roku recently announced an incident impacting over 500,000 user accounts. This was the second incident experienced by Roku this year, with the first incident impacting ~15,000 accounts. Both incidents involved credential stuffing (where attackers used login information leaked from other services to access Roku user accounts). Roku is directly notifying impacted users, reseting passwords for those accounts, reversing any fraudulent transactions and implementing multi-factor authentication for all Roku accounts.
What Should I Do?
Ensure you are using strong passwords and NOT reusing passwords (or variations) across your accounts.
Enable multi-factor authentication across any online account that offers it.
Remain vigilant and monitor account activity.
LastPass Phishing Attack
Users of the popular password manager, LastPass, are being targeted by a new scam focused on stealing credentials and a user's master password. The attacks use a combination of emails, SMS/text messages, and phone calls to direct users to a malicious website, with the message that they needed to reset their account for security reasons.
What Should I Do?
Beware of suspicious phone calls, messages, or emails claiming to come from LastPass and urging immediate action. Never click on any suspicious links or attachments.
Remember, no password management service will ask you for your master password.
If you have any additional questions, email us at ask@BlackCloak.io or schedule a Concierge Session via the BlackCloak app Support tab.
