It is good to be selective in choosing your LinkedIn connections. My golden rule has always been: have I worked with or met this person before, and would I work or meet with them again? With SEABORGIUM and TA453 running active spear-phishing campaigns, this is even more important.

The UK National Cyber Security Centre says that Russia-based SEABORGIUM and Iran-based TA453 actors are still using spear-phishing attacks to gather information from targeted organizations and individuals in the UK and elsewhere.

Even though the tactics, techniques, procedures, and targeting profiles are similar, these campaigns are different, and the two groups are not working together.

My top tips for you.
1. Only accept connections from people you actually know.
2. Re-evaluate your list of connections and consider whether each connection is truly part of your network.
3. Check your privacy settings.
4. Trust, but verify!

https://www.ncsc.gov.uk/news/spear-phishing-campaigns-targets-of-interest

#cybersecurity #infosec #spearphishing #linkedin #SEABORGIUM #TA453

#circleci bless them, I'm sure its rather busy and its with best intentions. But when asking for the audit logs and you get back a response that says:

"We have revoked all Personal API Tokens that were created prior to the security alert posted on January th, 2022. You will no longer need to manually rotate these tokens. ..."

That is not quite responding to what I asked. Me and our teams all did that ourselves and refreshed. I'd just like to see those audit logs from your systems to see what happened as per the service offering.