Security Affairs

APRIL 11, 2020

Crooks are using a fake Cisco “critical security advisory” in a new phishing campaign aimed at stealing victims’ Webex credentials. The Cofense’s phishing defense center has uncovered an ongoing phishing campaign that uses a Cisco security advisory related to a critical vulnerability as a lure. ” concludes the experts.

Phishing 145

Phishing Advertising Healthcare Cyber Attacks 145

Security Affairs

APRIL 17, 2020

Google says that the Gmail malware scanners have blocked around 18 million phishing and malware emails using COVID-19 lures in just one week. Google announced that its anti-malware solutions implemented to defend its Gmail users have blocked around 18 million phishing and malware emails using COVID-19 lures within the last seven days.

Phishing 145

Phishing Malware Government Small Business 145

Security Affairs

AUGUST 17, 2020

The malware has been active since at least 2014, it was undetected for more than 3 years and was used in highly targeted attacks. Now experts from CISA are warning of phishing messages delivering weaponized Microsoft Word documents that contain malicious Visual Basic Application (VBA) macro code. Pierluigi Paganini.

Phishing 139

Phishing Malware Advertising Architecture 139

Security Affairs

JULY 21, 2020

Cybercriminals are increasingly leveraging public cloud services such as Google Cloud Services in phishing campaigns against Office 365 users. Cybercriminals are increasingly abusing cloud services, such as Google Cloud Services, to arrange phishing campaign aimed at stealing Office 365 logins. com” to host the phishing page.

Phishing 127

Phishing Advertising Hacking 127

Security Affairs

NOVEMBER 26, 2019

A group under the Magecart umbrella adopted a new tactic that leverages on MiTM and phishing attacks to target sites using external payment processors. The name Fullz House comes from two different attack techniques, the phishing, and the web skimming. The [phishing] pages are part of a framework,” they wrote.

Phishing 134

Phishing Cybercrime Advertising Software 134

Security Affairs

APRIL 30, 2020

Group-IB uncovered a new sophisticated phishing campaign, tracked as PerSwaysion, against high-level executives of more than 150 companies worldwide. . PerSwaysion is a highly-targeted phishing campaign. New round of phishing attempts leveraging current victim’s account usually takes less than 24 hours.

Phishing 137

Phishing Accountability Financial Services Cloud Migration 137

Security Affairs

APRIL 9, 2020

Group-IB’s CERT-GIB analyzed hundreds of coronavirus -related phishing emails and discovered top malware strains in COVID-19 campaigns. Group-IB’s Computer Emergency Response Team ( CERT-GIB ) analyzed hundreds of coronavirus-related phishing emails between February 13 and April 1, 2020. Spyware: the most likely COVID-19 payload.

Phishing 142

Phishing Malware Spyware DDOS 142

Krebs on Security

AUGUST 30, 2019

But when accounts at those CRM providers get hacked or phished, the results can be damaging for both the client’s brand and their customers. Here’s a look at a recent CRM-based phishing campaign that targeted customers of Fortune 500 construction equipment vendor United Rentals. Stamford, Ct. . Image: APWG.

Phishing 240

Phishing Marketing Accountability DNS 240

Security Affairs

SEPTEMBER 18, 2020

Web-phishing targeting various online services almost doubled during the COVID-19 pandemic , it accounted for 46 percent of the total number of fake web pages. Secure web- phishing. In the first six months of 2020, CERT-GIB blocked a total of 9 304 phishing web resources, which is an increase of 9 percent compared to the previous year.

Phishing 136

Phishing Ransomware Spyware Banking 136

Security Affairs

JULY 19, 2020

A vulnerability affecting the Zoom feature dubbed Vanity URL could have been exploited by hackers for phishing attacks. A vulnerability affecting the Zoom feature dubbed Vanity URLs could have been exploited by hackers for phishing attacks. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Phishing 130

Phishing Advertising Hacking Information Security 130

Malwarebytes

APRIL 28, 2021

The victim is typically sent to a phishing page where accounts, payment details, identities, or other things can be stolen. We first observed the technique used on gamers back in 2014, and it eventually branched out into bank phishing. This time around, it’s being used to bag bitcoin. Shall we take a look? Emptying your wallet.

Phishing 132

Phishing Cryptocurrency Accountability Scams 132

Security Affairs

DECEMBER 8, 2024

warn of PRC-linked cyber espionage targeting telecom networks U.S. Hackers stole millions of dollars from Uganda Central Bank International Press Newsletter Cybercrime INTERPOL financial crime operation makes record 5,500 arrests, seizures worth over USD 400 million Hackers Stole $1.49

Artificial Intelligence 103

Artificial Intelligence Spyware Hacking Ransomware 103

Security Affairs

OCTOBER 18, 2020

Iran-linked cyberespionage group Silent Librarian has launched a new phishing campaign aimed at universities around the world. Iran-linked APT group Silent Librarian has launched another phishing campaign targeting universities around the world. Clearly we only uncovered a small portion of this phishing operation.

Phishing 142

Phishing Advertising Hacking Technology 142

Krebs on Security

FEBRUARY 17, 2021

Secret Service and Department of Homeland Security told reporters on Wednesday the trio’s activities involved extortion, phishing, direct attacks on financial institutions and ATM networks, as well as malicious applications that masqueraded as software tools to help people manage their cryptocurrency holdings. .

Cryptocurrency 326

Cryptocurrency Financial Services Banking Government 326

SecureWorld News

APRIL 22, 2025

Victims are sent unsolicited invitations to join Zoom calls, often via links in phishing emails or messages. This group has been responsible for some of the most high-profile cyberattacks in recent history, including the Sony Pictures hack in 2014 and the 2017 WannaCry ransomware outbreak.

Cryptocurrency 90

Cryptocurrency Social Engineering Cybercrime Engineering 90

Security Boulevard

JANUARY 20, 2025

DOJ confirms FBI operation that mass-deleted Chinese malware from thousands of US computers TechCrunch The PlugX malware, used by PRC-linked APT dubbed "Twill Typhoon" or "Mustang Panda," had infected millions of computers since at least 2014. Additionally, threat actors have been using HTML smuggling to deliver XWorm malware.

Surveillance 97

Surveillance Malware Data breaches Scams 97

Security Affairs

DECEMBER 1, 2019

Over 90 percent of the users identified by Google were targeted via “credential phishing emails” that attempt to trick victims into providing their password or other account credentials to hijack their Google account. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Phishing 145

Phishing Accountability Advertising Cyber Attacks 145

Security Affairs

DECEMBER 21, 2023

Threat actors are exploiting an old Microsoft Office vulnerability, tracked as CVE-2017-11882 (CVSS score: 7.8), as part of phishing campaigns to spread the Agent Tesla malware. Threat actors are exploiting an old Microsoft Office vulnerability, tracked as CVE-2017-11882, to spread the Agent Tesla malware.

Malware 134

Malware Phishing Spyware Cyber threats 134

Security Affairs

MARCH 23, 2020

MalwareHunterTeam experts have identified a new Coronavirus phishing campaign that aims at delivering the Netwalker Ransomware. vbs ,” used in a new Coronavirus phishing campaign that was designed to deliver the Netwalker Ransomware. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Ransomware 144

Ransomware Advertising Phishing Encryption 144

Security Affairs

OCTOBER 5, 2020

The hackers carried out spear-phishing attacks against the Swiss universities in an attempt of tricking its employees into providing their access data. The SonntagsZeitung also added that hackers attempted to breach the University of Zurich, but the employees at the university recognised the phishing attempts and neutralized them.

Advertising 145

Advertising Phishing Cybercrime Hacking 145

Security Affairs

AUGUST 14, 2020

The campaigns were classified as either phishing or malware. Phishing and Malware Q2 2020. The results depicted in Figure 1 show that phishing campaigns (84,5%) were more prevalent than malware (15,5%) during Q2 2020. From Figure 2, January presented a total of 15 phishing campaigns, 29 in February and 46 during March.

Threat Reports 145

Threat Reports Phishing Banking Malware 145

Security Affairs

MAY 2, 2020

Phishing attacks impersonating notifications from Microsoft Teams targeted as many as 50,000 Teams users to steal Office365 logins. Abnormal Security experts observed two separate phishing attacks impersonating notifications from Microsoft Teams that targeted as many as 50,000 Teams users to steal Office365 logins. Pierluigi Paganini.

Phishing 145

Phishing Advertising Financial Services Marketing 145

Security Affairs

APRIL 20, 2020

Threat Report Portugal Q1 2020: Phishing and malware by numbers. The campaigns were classified as either phishing or malware. Phishing and Malware Q1 2020. The results depicted in Figure 1 show that phishing campaigns (57,7%) were more prevalent than malware (42,3%) during Q1 2020.

Threat Reports 137

Threat Reports Phishing Malware Banking 137

Security Affairs

MARCH 27, 2020

Google announced to have warned users of almost 40,000 alerts of state-sponsored phishing or malware attacks during 2019. Google shared data on alerts related to state-sponsored attacks, the tech giant revealed that it issued almost 40,000 alerts of state-sponsored phishing or malware attacks to its users during 2019.

Phishing 145

Phishing Accountability Advertising Malware 145

Security Affairs

MAY 13, 2020

Microsoft discovered a new phishing campaign using COVID-19 lures to target businesses with the infamous LokiBot information-stealer. Microsoft has discovered a new COVID-19 themed phishing campaign targeting businesses with the LokiBot Trojan. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Phishing 133

Phishing Advertising Banking Security Intelligence 133

Security Affairs

MARCH 20, 2020

Most of APT28s’ campaigns leveraged spear-phishing and malware-based attacks, the recent mass scanning activity represents a change in the modus operandi of the group. Trend Micro investigated waves of the APT28’s targeted credential phishing attacks and collected thousands of email samples sent out by the group since 2014.

Phishing 145

Phishing Accountability Advertising DNS 145

Security Affairs

APRIL 28, 2020

Kaspersky experts uncovered a new wave of phishing scams that use a COVID-19 theme and impersonate shipping carriers, including FedEx, UPS, and DHL. Kaspersky observed COVID-19-themed phishing scams that impersonate popular shipping carriers such as FedEx, UPS, and DHL. SecurityAffairs – phishing, hacking). Pierluigi Paganini.

Scams 140

Scams Phishing Advertising Hacking 140

Security Affairs

SEPTEMBER 5, 2020

Experts spotted a phishing campaign that employees overlay screens and email ‘quarantine’ policies to steal Microsoft Outlook credentials from the victims. Researchers from Cofense discovered a phishing campaign that uses overlay screens and email ‘quarantine’ policies to steal Microsoft Outlook credentials from the targets.

Social Engineering 145

Social Engineering Phishing Engineering Advertising 145

Security Affairs

APRIL 23, 2020

Across Google products, we’re seeing bad actors use COVID-related themes to create urgency so that people respond to phishing attacks and scams.” One notable phishing campaign observed by Google’s experts targeted personal accounts of U.S. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Phishing 145

Phishing Government Advertising Accountability 145

Krebs on Security

APRIL 7, 2022

The Justice Department said that in Dragonfly’s first stage between 2012 and 2014, the defendants hacked into computer networks of industrial control systems (ICS) companies and software providers, and then hid malware inside legitimate software updates for such systems. energy facilities. ” HYDRA. . ” HYDRA.

Marketing 298

Marketing Energy and Utilities Malware Ransomware 298

Security Affairs

AUGUST 28, 2020

The Iran-linked Charming Kitten APT group leveraged on WhatsApp and LinkedIn to carry out phishing attacks, researchers warn. Clearsky security researchers revealed that Iran-linked Charming Kitten APT group is using WhatsApp and LinkedIn to conduct spear-phishing attacks. Israel, Iraq, and Saudi Arabia. Pierluigi Paganini.

Phishing 145

Phishing Accountability Advertising Media 145

Security Affairs

AUGUST 23, 2020

enabling bad actors to perform spear-phishing attacks comparatively with a high success rate. An attacker could exploit the weakness to carry out spear-phishing campaigns using messages that include links to malicious files hosted on Google Drive. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Malware 145

Malware Phishing Advertising Antivirus 145

Security Affairs

OCTOBER 1, 2020

A North-Korea-linked cyber espionage group has launched spear-phishing attacks aimed at compromising tens of officials from the United Nations Security Council. The campaign took place between March and April, threat actors attempted to compromise the Gmail accounts of UN officials by carrying out spear-phishing messages.

Phishing 138

Phishing Advertising Malware Accountability 138

Security Affairs

APRIL 21, 2020

The increasing number of news articles circulating on the internet in the wake of COVID-19 has resulted in the rise of Phishing attacks which feed on people’s fears. Phishing emails have been driven up to 600% since the end of February as cybercriminals capitalize on people’s fears. How Phishing Attack Works?

Scams 137

Scams Phishing Artificial Intelligence VPN 137

Security Affairs

APRIL 25, 2020

. “Since January, we have seen an increase of 30,000% in phishing, malicious websites, and malware targeting remote users—all related to COVID-19. “Phishing attacks based around COVID-19 targeted corporations as well as consumers. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Phishing 137

Phishing Advertising Malware Scams 137

Security Affairs

MAY 29, 2020

Hackers targeted suppliers of equipment and software for industrial enterprises with spear-phishing messages using malicious Microsoft Office documents. “Phishing emails, used as the initial attack vector, were tailored and customized under the specific language for each specific victim. Pierluigi Paganini.

Phishing 145

Phishing Malware Advertising Encryption 145

Security Affairs

OCTOBER 15, 2020

Security researcher MalwareHunterTeam has attempted, without success, to warn Ubisoft for almost a year that their employees were the victims of phishing attacks. Hey @Ubisoft , what would happen if someone from your company registers to @abuse_ch 's I Got Phished ( [link] ) service? Can you guess it? Pierluigi Paganini.

Ransomware 144

Ransomware Advertising Phishing Media 144