August 11, 2022
Via: Help Net SecurityU.S. networking giant Cisco Systems has been hacked, the company confirmed on Wednesday, after Yanluowang ransomware operators claimed the attack on their leak site. But according to Cisco’s Talos threat intelligence team, the breach resulted in the exfiltraton of inconsequential […]
August 5, 2022
Via: MalwarebytesAfter the FCC (Federal Communications Commission) made a huge splash weeks ago when it told Google and Apple to pull TikTok from their respective app stores, the federal agency is now warning Americans of an increased wave of SMS phishing […]
August 3, 2022
Via: Help Net SecurityAn ongoing, large-scale phishing campaign is targeting owners of business email accounts at companies in the FinTech, Lending, Insurance, Energy and Manufacturing sectors in the US, UK, New Zealand and Australia, Zscaler researchers are warning. The attackers are using a […]
August 1, 2022
Via: Security AffairsThe Federal Communications Commission (FCC) issued an alert to warn Americans of the rising threat of smishing (robotexts) attacks aimed at stealing their personal information or for financial scams. “The FCC’s Robocall Response Team is alerting consumers to the rising […]
July 26, 2022
Via: Threat PostThe bloom is back on phishing attacks with criminals doubling down on fake messages abusing popular brands compared to the year prior. Microsoft, Facebook and French bank Crédit Agricole are the top abused brands in attacks, according to study on […]
July 13, 2022
Via: Help Net SecurityA massive phishing campaign has been targeting Office 365 (i.e., Microsoft 365) users in over 10,000 organizations since September 2021 and successfully bypassing multi-factor authentication (MFA) set up to protect the accounts. The attackers use proxy servers and phishing websites […]
July 12, 2022
Via: Threat PostA new callback phishing campaign is impersonating prominent security companies to try to trick potential victims into making a phone call that will instruct them to download malware. Researchers at CrowdStrike Intelligence discovered the campaign because CrowdStrike is actually one […]
July 4, 2022
Via: The Hacker NewsThe Cyber Police of Ukraine last week disclosed that it apprehended nine members of a criminal gang that embezzled 100 million hryvnias via hundreds of phishing sites that claimed to offer financial assistance to Ukrainian citizens as part of a […]
Cyber-crime, Hacker, Phishing, Threats & Malware
June 23, 2022
Via: MalwarebytesEuropol has coordinated a joint operation to arrest members of a cybercrime gang and effectively dismantle their campaigns that netted million in Euros. This operation also led the Belgian Police (Police Fédérale/Federale Politie) and the Dutch Police (Politie) to nine […]
June 22, 2022
Via: The Hacker NewsEuropol on Tuesday announced the dismantling of an organized crime group that dabbled in phishing, fraud, scams, and money laundering activities. The cross-border operation, which involved law enforcement authorities from Belgium and the Netherlands, saw the arrests of nine individuals […]
Cyber-crime, Email security, Phishing, Security
June 22, 2022
Via: MalwarebytesA phishing campaign is using voicemail notification messages to go after victims’ Office 365 credentials. According to researchers at ZScaler, the campaign uses spoofed emails with an HTML attachment that contains encoded javascript. The email claims that you have a […]
June 20, 2022
Via: SecureWorldThe U.S. Department of Justice (DOJ) recently announced the success of a cyber operation which aimed to take out a prominent Russian botnet known as RSOCKS. Law enforcement authorities from Germany, the Netherlands, and the United Kingdom all played a […]
June 16, 2022
Via: Threat PostFor months now, millions of Facebook users have been duped by the same phishing scam that cons users into handing over their account credentials. According to a report outlining the phishing campaign, the scam is still active and continues to […]
Cyber warfare, Cyber-crime, Phishing
June 16, 2022
Via: Threat PostAn advanced persistent threat group, with ties to Iran, is believed behind a phishing campaign targeting high-profile government and military Israeli personnel, according to a report by Check Point Software. Targets of the campaign included a senior leadership in the […]
June 15, 2022
Via: Help Net SecurityThe APWG’s Phishing Activity Trends Report reveals that in the first quarter of 2022 there were 1,025,968 total phishing attacks—the worst quarter for phishing observed to date. This quarter was the first time the three-month total has exceeded one million. […]
Cyber-crime, Email security, Phishing, Security
June 10, 2022
Via: Threat PostEmotet’s resurgence in April seems to be the signal of a full comeback for what was once dubbed “the most dangerous malware in the world,” with researchers spotting various new malicious phishing campaigns using hijacked emails to spread new variants […]
June 8, 2022
Via: The Hacker NewsThe notorious Emotet malware has turned to deploy a new module designed to siphon credit card information stored in the Chrome web browser. The credit card stealer, which exclusively singles out Chrome, has the ability to exfiltrate the collected information […]
June 3, 2022
Via: The RegisterA crew using malware that performs cryptomining and clipboard-hacking operations have made off with at least $1.7 million in stolen cryptocurrency. The malware, dubbed Trojan.Clipminer, leverages the compute power of compromised systems to mine for cryptocurrency as well as identify […]
Cyber-crime, Phishing, Threats & Malware, Vulnerabilities
June 2, 2022
Via: Threat PostDiscord a public chat application designed for gamers has grown popular among crypto owners all over the world. Attackers are targeting the Discord servers of several popular nonfungible token (NFT) projects. Josh Fraser founder of Origin protocol shared a thread […]
June 2, 2022
Via: The Hacker NewsThe threat actor known as SideWinder has added a new custom tool to its arsenal of malware that’s being used in phishing attacks against Pakistani public and private sector entities. “Phishing links in emails or posts that mimic legitimate notifications […]