PurpleCyber

04/09/2025

🚨 Attention Parents & Educators

A recent global phishing campaign is exploiting Google Classroom using seemingly legit Classroom invites to sneak past security filters and lure recipients into scams.   

Why this matters:
– Phishers are piggybacking on trusted platforms like Google Classroom to make their attacks appear authentic.  
– They often push users to communicate off-channel (like WhatsApp), avoiding security detection and raising alarm bells.  

How you can help protect your online classroom:
1. Pause before you accept – Always verify any unexpected Classroom invitations, even if they appear to come from Google.
2. Spot the red flags – Messages offering unrelated “commercial services” or urging private chats (e.g., via WhatsApp) should be treated with skepticism.  
3. Enable Multi‑Factor Authentication (MFA) everywhere you can. It’s a critical layer of defense—even if credentials are stolen, MFA stands guard.  
4. Training & Awareness – Teach students and staff how to spot phishing and simulate safe practices. Vigilance is the best human firewall.   
5. Use advanced security tools – Employ security systems that scrutinize not just sender addresses, but message context and intent.

Check Point uncovers 115K phishing emails abusing Google Classroom to target 13,500 organizations. Learn how layered defenses blocked the attack.

03/09/2025

To strengthen cybersecurity and ensure user data protection, the DICT now mandates telecommunications entities to comply with the ISO/IEC 27000-series (Information Security Management Systems) standards.

Under Department Circular No. HRA 003, issued by Secretary Henry Aguda on July 28, 2025, entities have 3 years to fully comply with the certification requirement.

Read full Department Circular here:

18/08/2025

Hackers love weak passwords like “123456.” We see it all the time: users recycling the same password, admins storing creds in spreadsheets, and teams skipping password managers.
Strong passwords aren’t sexy, but getting hacked at 2 a.m. isn’t either. Let's talk about how to secure your team.

06/08/2025

Hackers love to target endpoints—your computers, laptops, and mobile devices. They are, after all, the gateway to an organization's digital infrastructure. According to IDC, 70% of breaches originate at the endpoint. Our partner, Huntress, created this newsletter that discusses nine key strategies to strengthen your endpoint security and minimize risks. Check it out here using this magic link - https://oal.lu/13XYB

05/08/2025

🚨 Big News from our partners at Huntress! 🚨

This week, we’re thrilled to see Jen Easterly (former Cybersecurity & Infrastructure Security Agency Director) join the Huntress Strategic Advisory Board. We couldn’t be more proud to stand beside a team making real impact in cybersecurity. 💪

Jen’s mission aligns perfectly with Huntress’ core purpose: protecting the 99% — the small and mid-sized businesses often left vulnerable below the cybersecurity poverty line.

As a partner, we’re honored to support this shared mission and to have champions like Jen bringing deep expertise, bold leadership, and a relentless drive to level the playing field in cyber defense.

This week, we’re proud to welcome Jen Easterly to our Strategic Advisory Board. Her mission? The same as ours, helping protect the target-rich 99% of companies that fall below the cybersecurity poverty line.

She’ll be joining us live at , Booth 2451. Come say “hey.”

04/08/2025

Are your computers, laptops, devices and data protected from modern cyber threats? Our Managed Cybersecurity service offers advanced detection and immediate containment that stop hackers in their tracks.

We provide real-time monitoring, immediate threat isolation, and continuous expert analysis to ensure your business stays secure 24/7. Don't let hackers compromise your digital assets. Equip your business with strong protection today.

Message us for a free trial.

02/08/2025

Sharing and reusing passwords is one of the easiest ways hackers can gain access to your online accounts. Here's how not to store your passwords.

To protect your passwords, use a password manager.

01/08/2025

Hackers aren’t breaking in, they’re logging in. And rogue cloud apps are one of the stealthiest ways they do it. Rogue Apps is the latest addition to our partner, Huntress' Managed ITDR suite. Check out this gallery to help break down what rogue apps are.

28/07/2025

"Cybersecurity is everyone’s responsibility… until something goes wrong — then it’s the CISO’s
fault."

I came across this post on LinkedIn and it really resonated with me.

Cyberattacks can target anyone within an organization, yet when things go wrong, the blame often falls squarely on the CISO or security team — especially if others, including top leadership, aren’t fully engaged in cybersecurity efforts.

We need to foster a no-blame culture that emphasizes shared responsibility and continuous learning across all levels of the organization.🤝

26/07/2025

Fact or Fiction: Antivirus software protects against all threats.