---
title: "Cybersecurity Updates For The Week 9 of 2022 | Phish Protection"
description: "As a small business owner, one should be aware of the latest attack vectors targeting SMBs and SMEs to prevent phishing attacks."
image: "https://phishprotection.com/og/blog/cybersecurity-updates-for-the-week-9-of-2022.png"
canonical: "https://phishprotection.com/blog/cybersecurity-updates-for-the-week-9-of-2022/"
---

Quick Answer

As a small business owner, one should be aware of the latest attack vectors targeting SMBs and SMEs to \[prevent phishing attacks\](/blog/how-organizations-are-leveraging-ai-and-machine-learning-to-prevent-phishing-attacks/). To that end, here are the latest updates on the most notable \[phishing updates\](/tags/announcements/) of this past week.

Share 

[ ](https://www.linkedin.com/sharing/share-offsite/?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-9-of-2022%2F "Share on LinkedIn") [ ](https://twitter.com/intent/tweet?text=Cybersecurity%20Updates%20For%20The%20Week%209%20of%202022&url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-9-of-2022%2F "Share on X/Twitter") [ ](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-9-of-2022%2F "Share on Facebook") [ ](https://reddit.com/submit?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-9-of-2022%2F&title=Cybersecurity%20Updates%20For%20The%20Week%209%20of%202022 "Share on Reddit") [ ](mailto:?subject=Cybersecurity%20Updates%20For%20The%20Week%209%20of%202022&body=Check out this article: https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-9-of-2022%2F "Share via Email") 

![Phish Protection blog post image](https://media.mailhop.org/phishprotection/images/2022/03/phishing-attack-prevention-4687.jpg) 

As a small business owner, one should be aware of the latest attack vectors targeting SMBs and SMEs to [prevent phishing attacks](/blog/how-organizations-are-leveraging-ai-and-machine-learning-to-prevent-phishing-attacks/). To that end, here are the latest updates on the most notable [phishing updates](/tags/announcements/) of this past week.

### Russian DDoS Attacks Repeatedly Target Ukrainian Institutions

_Distributed Denial-of-Service (DDoS) attacks are targeting the websites of many Ukrainian government agencies and state-owned banks_. Ukraine’s largest banks, Privatbank and State Savings Bank were among the affected institutions. Consequently, some of the affected systems remain temporarily unavailable.

The Ukrainian SSSCIP and other **national cybersecurity agencies** are trying to ensure [protection against phishing](/) by collecting and analyzing information available on the attacks. These attacks are on the same lines as the DDoS attacks that [affected the Ukrainian banks](https://www.bleepingcomputer.com/news/security/ukrainian-government-and-banks-once-again-hit-by-ddos-attacks/) and government websites last week.

The Deputy National Security Advisor for Cyber Anne Neuberger pointed out that the investigation suggests the role of Russian intelligence in these recent attacks on Ukraine-based IP addresses. Neuberger noted that the recent attacks might have had little impact, but they are laying the groundwork for more **severe attacks** that might be targeted at Ukraine’s territory.

### New Wiper Attack Targets Ukraine, Latvia, And Lithuania

A new [wiper malware is targeting Ukrainian](https://www.scmagazine.com/analysis/apt/ukraine-organizations-hit-by-new-wiper-malware) enterprises, and its samples have also been found in Latvia and Lithuania. _This malware attack comes after the DDoS and SMS spam attacks that targeted the nation earlier_. Reportedly, the new **wiper targeted large organizations** and can be associated with the ongoing Ukraine crisis. The attack was first discovered by ESET Threat Research and reported via Twitter; Symantec eventually confirmed it. The technical director of Symantec Threat Intelligence said that _at least two organizations were affected by the wiper malware_. The malware primarily targets government contractors and financial institutions.

In its tweet, ESET mentioned that the wiper compromises legitimate drivers from the EaseUS Partition Master software and corrupts data. It further stated that hundreds of Ukrainian organizations had recently undergone cyberattacks. So far, it has not been confirmed that Russia is responsible for this new wiper attack as its strains have also been seen in other nations.

### DeadBolt Ransomware Hits Asustor NAS Drives

_The owners of Asustor NAS drives were taken aback by a ransomware attack_ that encrypted all data stored on their network storage devices, and now the adversaries are **demanding a ransom**. Meanwhile, Asustor users are posting left and right on Asustor’s support forum, explaining _how they discovered that their NAS drives were encrypted with ransomware_.

![Phishing attack prevention](https://media.mailhop.org/phishprotection/images/2022/03/phishing-attack-prevention-4687.jpg) 

A ransom note greeted users on their drives where DeadBolt operators demanded 0.03 bitcoins (approximately US $1140) to release the decryption key. The [DeadBolt ransomware operators](https://www.bitdefender.com/blog/hotforsecurity/asustor-nas-owners-hit-by-deadbolt-ransomware-attack/) played an excellent mind game with Asustor users and mentioned in the note that they were affected because of their vendor’s inadequate [phishing prevention measures](/content/phishing-prevention/phishing-attack-prevention/).

As part of its measures to [prevent phishing](/) attacks, Asustor has disabled remote access to its NAS drives, ASUSTOR EZ Sync, ASUSTOR EZ-Connect, and ezconnect.to. The company also released a list of recommendations for users to protect themselves from DeadBolt. These include _creating data backups, disabling EZ Connect, Terminal SSH, SFTP services, and changing default ports_. NAS owners must protect their devices with firewalls to **ensure optimal protection** against prying cybercriminals.

### Cyberattack Hits Expeditors International

Expeditors International is a renowned American logistics and freight forwarding company with operations in **over 100 countries**. Recently, _Expeditors International underwent a cyberattack that disrupted most of its operations and forced the company to shut down its global operations_. The attack was first discovered on 20th February 2022, and [Expeditors began its investigation](https://securityaffairs.co/wordpress/128268/hacking/expeditors-international-cyber-attack.html) soon after.

In its breach announcement, Expeditors International mentioned that the company voluntarily shut down its global operating systems to limit the attack’s spread. It further mentioned its [anti-phishing protection](/products/advanced-threat-defense/) strategies, where the company has collaborated with international cybersecurity experts to get to the **roots of the attack**. However, the good news is that some of its operations continue, such as freight shipments, customs management, shipment distribution, etc.

From its looks, the Expeditors incident seems to be a [ransomware attack](/resources/ransomware-attack-why-organizations-pay-ransom/). The company has hired third-party cybersecurity experts to investigate the breach and help restore services and recover systems from the attackers. Expeditors International foresees an adverse impact of the attack on its business, revenues, goodwill, and operations.

### Data Breach US Cookware Giant, Meyer

_The US Cookware giant Meyer recently underwent a data breach that affected its employees_. The incident occurred in October 2021, but it was only on 1st December 2021 that its impact on employee data was detected. Therefore, the company recently sent a **breach notification** letter to employees, which was later posted on the California attorney general’s office website.

So far, _Meyer doesn’t know for sure which employees were affected in the incident,_ but the impact on victims could vary in intensity depending on what information belonging to them was stolen. The company has clarified the same on its breach notification, where it states that what type of personal **information got compromised** depends on what information the employees shared with Meyer. However, it mentioned the [list of employee information](https://www.infosecurity-magazine.com/news/meyer-breach-us-employees-personal/) that was possibly affected. This includes employees’ full names, addresses, genders, DoBs, race or ethnicity, health insurance details, social security numbers, medical details, COVID vaccination cards, random drug screening results, driver’s license, government-issued identification number, passports, immigration status, permanent resident cards, etc.

The breach notification further mentions that there is no way to find out whether an employee’s specific information was accessed or not. Therefore, to ensure [protection from phishing](/) attacks for all employees, Meyer is _providing them with two years of complimentary identity protection service_. The company continues its investigations into the breach and has **strengthened its security** measures. It has also sent breach notifications to employees of its other branches like Hestan Commercial Corporation, Hestan Vineyards, Hestan Smart Cooking, and Blue Mountain Enterprises.

![Phishing email prevention](https://media.mailhop.org/phishprotection/images/2022/03/phishing-email-prevention-6894.jpg) 

### Phishing Scam Targets Digital Banking Platform Users

_Monzo is a famous UK-based digital-only banking platform, and a series of phishing messages recently targeted its users_. An emerging network of malicious websites backs these phishing messages. Monzo was a pioneer in challenging the traditional financial system and has **over four million active users**. The ongoing [phishing campaign targets Monzo](https://www.bleepingcomputer.com/news/security/new-phishing-campaign-targets-monzo-online-banking-customers/) users and attempts to steal their account details.

Monzo took to Twitter to inform customers of these fraud messages and _suggested measures to protect themselves from phishing_. In a typical attack, an SMS is sent to users, which appears to be from Monzo. This text asks recipients to go to the provided link and verify their account or reactivate their session. Following the link leads users to a **phishing site** that displays a fraudulent login page and asks users to enter their Monzo account credentials (username, Monzo pin, and contact number). Providing these details will give attackers complete access to users’ accounts.

_It must be noted that Monzo never approaches users on SMS_; for all notifications, it uses its official website, account portal, or built-in app notifications. In addition, the platform never asks its users to follow links outside its app; therefore, all such messages that seem to come from Monzo should be dealt with caution.

### Vulnerability with WordPress Plugin UpdraftPlus

UpdraftPlus is a cloning plugin for WordPress that allows users to send installed links to their backup through email. People usually prefer UpdraftPlus because of its advanced features and user-friendliness. _A new vulnerability has been detected in this UpdraftPlus plugin_ that allows anyone on the internet (even sub-level subscribers) to create valid links. The [vulnerability poses a risk](https://www.techtimes.com/articles/272017/20220218/new-wordpress-plugin-flaw-affects-millions-identity-info-passwords-immediate.htm) for millions of WordPress users because it allows almost anyone to acquire their backup files.

While this UpdraftPlus flaw is quite severe in itself, users can still prevent it from exploiting their identity information, passwords, and other sensitive data. _WordPress has now patched the UpdraftPlus vulnerability_ and urges users to **update their plugins** at the earliest to ensure [anti-phishing protection](/) for all.

### Protect Your Organization

- [Learn how phishing attacks work and how to spot them](/learn-what-is-phishing/)
- [See how Phish Protection blocks threats in real time](/anti-phishing-tools/)

## Topics

[ Announcements ](/tags/announcements/) 

![Brad Slavin](https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg) 

[ Brad Slavin ](/authors/brad-slavin/) 

General Manager

Founder and General Manager of DuoCircle. Product strategy and commercial lead across DuoCircle's 2,000+ customer base.

[LinkedIn Profile →](https://www.linkedin.com/in/bradslavin) 

## Protect your inbox from phishing attacks

Real-time email security with 60-day free trial. No credit card required.

[Start Free Trial](https://portal.duocircle.com/cart.php?a=add&pid=101&brand=phishprotection) [View Pricing](/pricing/) 

## Related Articles

[  Intermediate 5m  Cybersecurity Updates For The Week 33 of 2022  Aug 22, 2022 ](/blog/cyber-security-news-update-week-33-2022/)[  Intermediate 6m  Cybersecurity Updates For The Week 41 of 2022  Oct 21, 2022 ](/blog/cybersecurity-news-21-oct-2022/)[  Intermediate 5m  Cybersecurity Updates For The Week 1 of 2021  Jan 1, 2021 ](/blog/cybersecurity-updates-for-the-week-1-of-2021/)[  Intermediate 6m  Cybersecurity Updates For The Week 1 of 2022  Jan 7, 2022 ](/blog/cybersecurity-updates-for-the-week-1-of-2022/)

```json
{"@context":"https://schema.org","@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]}
```

```json
{"@context":"https://schema.org","@type":"WebSite","name":"Phish Protection","url":"https://phishprotection.com","description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]}}}
```

```json
{"@context":"https://schema.org","@type":"BlogPosting","headline":"Cybersecurity Updates For The Week 9 of 2022","description":"As a small business owner, one should be aware of the latest attack vectors targeting SMBs and SMEs to prevent phishing attacks.","url":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-9-of-2022/","datePublished":"2022-03-04T12:14:02.000Z","dateModified":"2026-04-17T15:43:10.000Z","dateCreated":"2022-03-04T12:14:02.000Z","author":{"@type":"Person","@id":"https://phishprotection.com/authors/brad-slavin/#person","name":"Brad Slavin","url":"https://phishprotection.com/authors/brad-slavin/","jobTitle":"General Manager","description":"Brad Slavin is the founder and General Manager of DuoCircle, the company behind DMARC Report, AutoSPF, Phish Protection, and Mailhop. He founded DuoCircle in 2014 and has led the company's growth to 2,000+ customers across its email security product family. Brad's focus is product strategy, customer relationships, and the commercial and compliance side of email authentication (DPAs, SLAs, enterprise procurement).","image":"https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg","knowsAbout":["Email Security Strategy","SaaS Product Management","Enterprise Compliance","Customer Success","Email Deliverability Business"],"worksFor":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com"},"sameAs":["https://www.linkedin.com/in/bradslavin"]},"publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-9-of-2022/"},"articleSection":"intermediate","keywords":"Announcements","wordCount":1325,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/phishprotection/images/2022/03/phishing-attack-prevention-4687.jpg","caption":"Phish Protection blog post image","width":1200,"height":630},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}}
```

```json
{"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://phishprotection.com/"},{"@type":"ListItem","position":2,"name":"Blog","item":"https://phishprotection.com/blog/"},{"@type":"ListItem","position":3,"name":"Intermediate","item":"https://phishprotection.com/intermediate/"},{"@type":"ListItem","position":4,"name":"Cybersecurity Updates For The Week 9 of 2022","item":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-9-of-2022/"}]}
```