This month’s cloud security report looks at the trend in non-compliance, a big brand being used for online phishing, the top apps leaking your location, an update on financial institution phishing, a roundup of May’s cybersecurity news, and the latest from our data science team.

Inappropriate category usage in quarantine

Over the course of lockdown, we have seen growth in data usage in categories including adult content and gambling. The number of devices accessing these categories has not grown in proportion, however, suggesting that the same users are increasing their usage over time.

Increased usage of online shopping

We have seen increasing usage of online shopping over the course of the lockdown, with growth steadying in April. With more and more people turning to the internet for purchasing, there is a clear need for protection against online threats to users’ financial information.

For instance, we’ve noticed a number of hits to PayPal-related phishing domains. Some include:

  • paypal-verificationsupport[.]com
  • paypal.com.ultimatefundraisingsolution[.]com
  • support-user-paypai[.]com
  • Paypai.user-security-ref019[.]com

The lines between work and personal have become further blurred and users are continually context switching, so proper protections need to be put in place to prevent users from encountering and falling for online scams.

4.3x as many iOS devices have an application leaking PII, compared to Android.

Top 5 apps leaking your password

1 | TaxiMilano
2 | ETNet
3 | Cam Viewer
4 | Blitz Brigade
5 | Play Tube Free

Financial institution phishing

There was widespread news coverage in May around phishing campaigns making use of financial institutions, including HMRC, FINRA, Wells Fargo and JPMorgan Chase. This has been mirrored in our threat data:

  • Gov.uk.claim-tax-refund.btyu.me
  • Wellsfargo.irs.gov.chfundings[.]com
  • Reauthenticate.account.chase.apprefund-firebase[.]com
  • Wellsfargo-verify009[.]com
  • Chase-secureservice[.]com

End users need to be wary of any unsolicited communication from financial institutions so they can circumvent attempts to poach their sensitive information.

May’s security news you may have missed

Data Science Monthly

This month, our data science team has been looking at the global response to COVID-19. Around the world, various countries and corporations have been developing applications to help prevent the spread of the virus, and internet traffic to related sites has been expectedly high. The heat map below shows which countries have the highest web activity linked to COVID-19-related sites and contact tracing tools.

We're here to help you

The world of work is being completely reshaped, and remote working has become critical for business continuity. If you need any assistance with your remote working challenges, please get in touch.

Get in Touch