2014, Phishing and Scams - Cyber Security Informer

Thread Hijacking: Phishes That Prey on Your Curiosity

Krebs on Security

MARCH 28, 2024

Here’s the story of a recent thread hijacking attack in which a journalist was copied on a phishing email from the unwilling subject of a recent scoop. Instead, he forwarded the messages to LancasterOneline’s IT team, which quickly flagged them as phishing attempts. “We were just perplexed,” Murse said.

Phishing

Phishing Scams Accountability Passwords

Coronavirus-themed attack: Experts uncovered flight refund scam

Security Affairs

APRIL 15, 2020

Experts at email security firm Mimecast has uncovered a flight refund scam that attempts to exploit the ongoing coronavirus outbreak. Researchers at email security firm Mimecast have uncovered a new flight refund scam that attempts to exploit the ongoing C oronavirus outbreak. SecurityAffairs – flight scam, Coronavirus).

Scams

Scams Advertising Phishing Media

How to Protect Against COVID-19 Email Scams

Security Affairs

APRIL 21, 2020

The increasing number of news articles circulating on the internet in the wake of COVID-19 has resulted in the rise of Phishing attacks which feed on people’s fears. Phishing emails have been driven up to 600% since the end of February as cybercriminals capitalize on people’s fears. How Phishing Attack Works?

Scams

Scams Phishing Artificial Intelligence VPN

Webinars

How to Avoid Pitfalls In Automation: Keep Humans In the Loop

MORE WEBINARS

Experts warn of deliveries scams that use a COVID-19 theme

Security Affairs

APRIL 28, 2020

Kaspersky experts uncovered a new wave of phishing scams that use a COVID-19 theme and impersonate shipping carriers, including FedEx, UPS, and DHL. Kaspersky observed COVID-19-themed phishing scams that impersonate popular shipping carriers such as FedEx, UPS, and DHL. SecurityAffairs – phishing, hacking).

Scams

Scams Phishing Advertising Hacking

Homoglyph attacks used in phishing campaign and Magecart attacks

Security Affairs

AUGUST 9, 2020

Researchers detailed a new evasive phishing technique that leverages modified favicons to inject e-skimmers and steal payment card data covertly. Researchers from cybersecurity firm Malwarebytes have analyzed a new evasive phishing technique used by attackers in the wild in Magecart attacks. Pierluigi Paganini.

Phishing

Phishing Advertising Scams Accountability

Dark web Empire Market still down after 3 days. DDoS attack or exit scam?

Security Affairs

AUGUST 24, 2020

The dark web marketplace Empire Market has been down for at least 3 days, two of the possible reasons, an exit scam or a prolonged DDoS attack. The cause is still unclear, someone blames a prolonged denial-of-service (DDoS) attack, while some users suspect an exit scam. Always PGP verify URLs, many phishing links are circulating.

DDOS

DDOS Marketing Scams Advertising

Gmail blocked 18 Million phishing and malware emails using COVID-19 lures in a week

Security Affairs

APRIL 17, 2020

Google says that the Gmail malware scanners have blocked around 18 million phishing and malware emails using COVID-19 lures in just one week. Google announced that its anti-malware solutions implemented to defend its Gmail users have blocked around 18 million phishing and malware emails using COVID-19 lures within the last seven days.

Phishing

Phishing Malware Government Small Business

Privacy Roundup: Week 3 of Year 2025

Security Boulevard

JANUARY 20, 2025

DOJ confirms FBI operation that mass-deleted Chinese malware from thousands of US computers TechCrunch The PlugX malware, used by PRC-linked APT dubbed "Twill Typhoon" or "Mustang Panda," had infected millions of computers since at least 2014. Additionally, threat actors have been using HTML smuggling to deliver XWorm malware.

Surveillance

Surveillance Malware Data breaches Scams

Group-IB uncovers PerSwaysion – sophisticated phishing campaign targeting executives worldwide

Security Affairs

APRIL 30, 2020

Group-IB uncovered a new sophisticated phishing campaign, tracked as PerSwaysion, against high-level executives of more than 150 companies worldwide. . PerSwaysion is a highly-targeted phishing campaign. New round of phishing attempts leveraging current victim’s account usually takes less than 24 hours.

Phishing

Phishing Accountability Financial Services Cloud Migration

US-CERT warns of New Zealand mosque shooting scams and malware campaigns

Security Affairs

MARCH 16, 2019

In the wake of the New Zealand mosque shooting, the CISA recommends users to remain vigilant on possible scams and malware attacks. In the wake of the New Zealand mosque shooting, the Cybersecurity and Infrastructure Security Agency (CISA) recommends users to remain vigilant on possible scams and malware attacks. Pierluigi Paganini.

Scams

Scams Malware Advertising Media

How Do You Fight a $12B Fraud Problem? One Scammer at a Time

Krebs on Security

OCTOBER 25, 2018

The fraudsters behind the often laughable Nigerian prince email scams have long since branched out into far more serious and lucrative forms of fraud, including account takeovers, phishing, dating scams, and malware deployment. The FBI says BEC scams netted thieves more than $12 billion between 2013 and 2018.

Scams

Scams Accountability Media Banking

Phishers prefer Tesla, top 3 malware strains in Coronavirus phishing campaigns

Security Affairs

APRIL 9, 2020

Group-IB’s CERT-GIB analyzed hundreds of coronavirus -related phishing emails and discovered top malware strains in COVID-19 campaigns. Group-IB’s Computer Emergency Response Team ( CERT-GIB ) analyzed hundreds of coronavirus-related phishing emails between February 13 and April 1, 2020. Spyware: the most likely COVID-19 payload.

Phishing

Phishing Malware Spyware DDOS

The Olympics: a timeline of scams, hacks, and malware

Malwarebytes

JULY 28, 2021

In terms of actual attacks which took place, we see the rise of mobile as a way in for Olympics scams. Email spam promising free airline tickets to see the games is a timeless social media scam also repackaged for this sporting event. Here, you’d get nothing but survey scams. 2014 Sochi. What a combo!

Scams

Scams Hacking Malware Mobile

‘Aaron Smith’ Sextortion scam campaigns hit tens of thousands of individuals

Security Affairs

NOVEMBER 1, 2018

Security experts from Cisco Talos have uncovered two recent sextortion scam campaigns that appear to leverage on the Necurs botnet infrastructure. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. .” Pierluigi Paganini.

Scams

Scams Data breaches Education Advertising

Bitcoin scammers phish for wallet recovery codes on Twitter

Malwarebytes

APRIL 28, 2021

We’re no strangers to the Twitter customer support DM slide scam. The victim is typically sent to a phishing page where accounts, payment details, identities, or other things can be stolen. The victim is typically sent to a phishing page where accounts, payment details, identities, or other things can be stolen.

Phishing

Phishing Cryptocurrency Accountability Scams

Protonmail hacked …. a very strange scam attempt

Security Affairs

NOVEMBER 17, 2018

” ProtonMail confirmed to be aware of a limited number of hacked accounts that have been compromised likely through credential stuffing of phishing attacks, but excluded that its systems have been breached. This is a very strange and anomalous scam attempt, the hackers used a mix of appealing info and political data.

Scams

Scams Hacking Data collection Advertising

Noooo, now Ancient Tortoise BEC scammers are launching Coronavirus-Themed attacks

Security Affairs

MARCH 15, 2020

A cybercrime gang focused on Business Email Compromise (BEC) has started using coronavirus-themed scam emails in its attacks. The researchers received a coronavirus-themed scam email that attempted to trick victims into using a different bank account for the payment due to the COVID-19 outbreak. ” reported BleepingComputer.

Scams

Scams Banking Cybercrime Advertising

Facebook sues Namecheap to protect people from domain name fraud

Security Affairs

MARCH 8, 2020

Fraudulent domains are often used for malicious activities, such as phishing and scams. “These domain names can trick people into believing they are legitimate and are often used for phishing, fraud and scams.” Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Scams

Scams Advertising Phishing Internet

Google took down 2.3 billion bad ads in 2018,including 58.8M phishing ads

Security Affairs

MARCH 18, 2019

million phishing ads for violation of its policies. Google introduced 31 new ads policies in 2018, aiming at protecting users from scams and other fraudulent activities (i.e. million phishing ads. . million phishing ads. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Phishing

Phishing Advertising Scams Cryptocurrency

COVID-19 themed attacks increase in Brazil, India, and UK

Security Affairs

JUNE 13, 2020

Threat actors continue to use COVID-19 lures, Google is reporting an increase in Coronavirus-themed phishing attempts in Brazil, India, and the UK. of all spam, phishing, and malware messages sent to Gmail users. “We’ve put proactive monitoring in place for COVID-19-related malware and phishing across our systems and workflows.

Phishing

Phishing Scams Insurance Malware

Thousands of Coronavirus-related malicious domains are being created every day

Security Affairs

MARCH 18, 2020

The Coronavirus-themed attacks continue to increase, experts warn of thousands of COVID-19 scam and malware sites are being created every day. The sites are employed in a broad range of attacks, including phishing attacks, frauds, and malware-based attacks. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Scams

Scams Advertising Malware Phishing

Crooks use Star Wars saga as bait in Phishing and malware attacks

Security Affairs

JANUARY 2, 2020

” Crooks set up websites that look like related to the official movie, the websites are designed to deliver the malware or for phishing purposes. We advise users to not fall for such scams and instead enjoy the end of the saga on the big screen.”. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Phishing

Phishing Malware Advertising Media

Coronavirus-themed attacks March 22 – March 28, 2020

Security Affairs

MARCH 29, 2020

MalwareHunterTeam experts have identified a new Coronavirus phishing campaign that aims at delivering the Netwalker Ransomware. March 24 – New York Attorney General asks domain registrars to crack down on COC scam sites. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Scams

Scams Advertising Mobile Malware

Group-IB helps to detain operators of scam-service issuing fake passes to move around Moscow amid COVID-19 virus lockdown

Security Affairs

APRIL 27, 2020

According to Group-IB’s data, the first scams to sell fake digital passes appeared in late March, when the Moscow authorities tightened self-isolation requirements and restricted travel around the capital city. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Scams

Scams Media Advertising Accountability

Coronavirus-themed attacks April 26 – May 02, 2020

Security Affairs

MAY 3, 2020

April 27 – Group-IB helps to detain operators of scam-service issuing fake passes to move around Moscow amid COVID-19 virus lockdown. April 28 – Experts warn of deliveries scams that use a COVID-19 theme. April 28 – Experts warn of deliveries scams that use a COVID-19 theme. Pierluigi Paganini.

Scams

Scams Advertising Malware Phishing

Coronavirus-themed attacks March 15 – March 21, 2020

Security Affairs

MARCH 22, 2020

Day after day the number of COVID19-themed attacks increases, fraudsters have launched a phishing campaign to deliver on users’ PC. The COVID19-themed attacks continue to increase, experts warn of thousands of COVID-19 scam and malware sites are being created every day. Below a list of attacks detected this week. Pierluigi Paganini.

Advertising

Advertising Cybercrime Scams Phishing

State-sponsored hackers are using COVID-19 lures, Google warns

Security Affairs

APRIL 23, 2020

Across Google products, we’re seeing bad actors use COVID-related themes to create urgency so that people respond to phishing attacks and scams.” One notable phishing campaign observed by Google’s experts targeted personal accounts of U.S. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Phishing

Phishing Government Advertising Accountability

Reading the 2019 Internet Crime Complaint Center (IC3) report

Security Affairs

FEBRUARY 12, 2020

The most frequently reported complaints were related to phishing attempts, non-payment/non-delivery scams, and extortion. The most frequently reported complaints were p hishing and similar p loys, non-payment/non-delivery scams, and extortion.” BEC scams resulted in more than $1.7 billion in losses.

Internet

Internet Internet Cybercrime Scams

Zscaler saw 30,000% increase in Coronavirus-themed attacks

Security Affairs

APRIL 25, 2020

. “Since January, we have seen an increase of 30,000% in phishing, malicious websites, and malware targeting remote users—all related to COVID-19. “Phishing attacks based around COVID-19 targeted corporations as well as consumers. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Phishing

Phishing Advertising Malware Scams

Security Affairs newsletter Round 260

Security Affairs

APRIL 19, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Scams

Scams Phishing Advertising Malware

New Coronavirus-themed malspam campaign delivers FormBook Malware

Security Affairs

MARCH 8, 2020

The emails provide updates on the Coronavirus outbreak, it includes stats on the epidemic and contains an email of corona-virus@caramail.com that is likely used for phishing purposes. See Using Caution with Email Attachments and Avoiding Social Engineering and Phishing Scams for more information. Pierluigi Paganini.

Malware

Malware Scams Social Engineering Phishing

MY TAKE: What NortonLifeLock’s $8 billion buyout of Avast portends for consumer security

The Last Watchdog

AUGUST 18, 2021

Norton got ‘ demergered ’ from Symantec in 2014 and then acquired LifeLock for $2.3 In addition, even simple training or quizzes on how to spot a phishing attack will help individuals to avoid being caught up in a scam or a potential attack. A lot of water has flowed under the bridge since then. billion in 2016, for instance.

Antivirus

Antivirus Marketing Identity Theft Social Engineering

Internal Revenue Service warns taxpayers of a malware campaign

Security Affairs

AUGUST 25, 2019

The Internal Revenue Service (IRS) is warning of an active IRS impersonation scam campaign sending spam emails to distribute malware. The Internal Revenue Service (IRS) issued an alert to warn taxpayers of a new scam campaign distributing malware. See Report Phishing and Online Scams for more details.”

Malware

Malware Computers and Electronics Scams Passwords

New York Attorney General asks domain registrars to crack down on coronavirus scam sites

Security Affairs

MARCH 24, 2020

New York Attorney General asks domain registrars, including GoDaddy, and Namecheap, to crack down on coronavirus scam sites. The Coronavirus-themed attacks continue to increase, experts warn of thousands of COVID-19 scam and malware sites are being created every day. — NY AG James (@NewYorkStateAG) March 20, 2020.

Scams

Scams Advertising Malware Cybercrime

Coronavirus-themed attacks May 10 – May 16, 2020

Security Affairs

MAY 17, 2020

The Zeus Sphinx banking Trojan continues to evolve while receiving new updates it is employed in ongoing coronavirus-themed scams. Microsoft discovered a new phishing campaign using COVID-19 lures to target businesses with the infamous LokiBot information-stealer. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Advertising

Advertising Phishing Healthcare Scams

Happy 13th Birthday, KrebsOnSecurity!

Krebs on Security

DECEMBER 29, 2022

The unknown intruders gained access to internal Mailchimp tools and customer data by social engineering employees at the company, and then started sending targeted phishing attacks to owners of Trezor hardware cryptocurrency wallets. com, which was fed by pig butchering scams. In 2016, while the U.S.

Cryptocurrency

Cryptocurrency Cybercrime Computers and Electronics Scams

Data for 600K customers of U.S. fitness chains Town Sports leaked online

Security Affairs

SEPTEMBER 23, 2020

. “In the wrong hands, cybercriminals could use the information stored in the database to scam and phish Town Sports customers and employees.” ” ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Data breaches

Data breaches Phishing Passwords Advertising

Hacker will compensate victims with $1.1 million Bitcoin illegally earned

Security Affairs

AUGUST 24, 2019

West carried out phishing scams against hundreds of companies since 2015, he stole financial data of tens of thousands of customers and then sold that information on cybercrime underground forums. He predominately used ‘phishing’ email scams to obtain the financial data of tens of thousands of customers.

Cryptocurrency

Cryptocurrency Scams Cybercrime Phishing

Spear-phishing attacks target United Nations and NGOs

Security Affairs

OCTOBER 25, 2019

Experts have uncovered an ongoing phishing campaign targeting the United Nations and NGOs, including UNICEF and UN World Food. Security firm Lookout uncovered an ongoing spear-phishing campaign aimed at NGOs, including human rights organizations such as the Red Cross, UNICEF, the UN World Food and the UN Development programs.

Phishing

Phishing Mobile Advertising Scams

Phishers turning hard-working: CERT-GIB records upsurge of phishing resource blockages as duration of attacks grows

Security Affairs

MAY 8, 2020

Group-IB, a Singapore-based cybersecurity company, observed the growth of the lifespan of phishing attacks in the second half of 2019. Figure 1 The distribution of web-phishing among target categories . CERT-GIB’s findings indicate that phishing attack perpetrators have revised their so-called target pool. Target reshuffle.

Phishing

Phishing Spyware Banking Malware

Fort Worth IT Professionals Fired for Reporting Cybersecurity Issues: What We Know

Security Affairs

JUNE 7, 2019

In October 2017, the city of Fort Worth, Texas became the target of a phishing scam. The scam email prompted the department to change an electronic deposit from Plains Capital Bank to a different account with Chase Bank. Fadipe’s phishing scam revealed far more about the city of Fort Worth than anticipated.

Cybersecurity

Cybersecurity Scams Banking Accountability

NextMotion plastic surgery tech firm data leak

Security Affairs

FEBRUARY 15, 2020

” Experts explained that the type of data leaked online can be abused to target patients in a wide range of malicious activities, including scams, fraud, and phishing and other attacks. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Media

Media Advertising Software Scams

Security Affairs newsletter Round 259

Security Affairs

APRIL 12, 2020

supports the Secure Boot Fake Cisco ‘Critical Update used in phishing campaign to steal WebEx credentials Hackers accessed staff mailboxes at Italian bank Monte dei Paschi SFO discloses data breach following the hack of 2 of its websites. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Hacking

Hacking Advertising Surveillance Phishing

Nigerian Tesla: 419 scammer gone malware distributor unmasked

Malwarebytes

MAY 5, 2022

Agent Tesla is a well-known data stealer written in.NET that has been active since 2014 and is perhaps one of the most popular payloads observed in malspam campaigns. pw accounts, various scams). Based on these profiles, we can see this threat actor has an extensive criminal record starting at least from 2014. titan.email (.pw

Malware

Malware Scams Phishing Accountability

Thread Hijacking: Phishes That Prey on Your Curiosity

Coronavirus-themed attack: Experts uncovered flight refund scam

Webinars

Trending Sources

How to Protect Against COVID-19 Email Scams

Webinars

Experts warn of deliveries scams that use a COVID-19 theme

Homoglyph attacks used in phishing campaign and Magecart attacks

Dark web Empire Market still down after 3 days. DDoS attack or exit scam?

Gmail blocked 18 Million phishing and malware emails using COVID-19 lures in a week

Privacy Roundup: Week 3 of Year 2025

Group-IB uncovers PerSwaysion – sophisticated phishing campaign targeting executives worldwide

US-CERT warns of New Zealand mosque shooting scams and malware campaigns

How Do You Fight a $12B Fraud Problem? One Scammer at a Time

Phishers prefer Tesla, top 3 malware strains in Coronavirus phishing campaigns

The Olympics: a timeline of scams, hacks, and malware

‘Aaron Smith’ Sextortion scam campaigns hit tens of thousands of individuals

Bitcoin scammers phish for wallet recovery codes on Twitter

Protonmail hacked …. a very strange scam attempt

Noooo, now Ancient Tortoise BEC scammers are launching Coronavirus-Themed attacks

Facebook sues Namecheap to protect people from domain name fraud

Google took down 2.3 billion bad ads in 2018,including 58.8M phishing ads

COVID-19 themed attacks increase in Brazil, India, and UK

Thousands of Coronavirus-related malicious domains are being created every day

Crooks use Star Wars saga as bait in Phishing and malware attacks

Coronavirus-themed attacks March 22 – March 28, 2020

Group-IB helps to detain operators of scam-service issuing fake passes to move around Moscow amid COVID-19 virus lockdown

Coronavirus-themed attacks April 26 – May 02, 2020

Coronavirus-themed attacks March 15 – March 21, 2020

State-sponsored hackers are using COVID-19 lures, Google warns

Reading the 2019 Internet Crime Complaint Center (IC3) report

Zscaler saw 30,000% increase in Coronavirus-themed attacks

Security Affairs newsletter Round 260

New Coronavirus-themed malspam campaign delivers FormBook Malware

MY TAKE: What NortonLifeLock’s $8 billion buyout of Avast portends for consumer security

Internal Revenue Service warns taxpayers of a malware campaign

New York Attorney General asks domain registrars to crack down on coronavirus scam sites

Coronavirus-themed attacks May 10 – May 16, 2020

Happy 13th Birthday, KrebsOnSecurity!

Data for 600K customers of U.S. fitness chains Town Sports leaked online

Hacker will compensate victims with $1.1 million Bitcoin illegally earned

Spear-phishing attacks target United Nations and NGOs

Phishers turning hard-working: CERT-GIB records upsurge of phishing resource blockages as duration of attacks grows

Fort Worth IT Professionals Fired for Reporting Cybersecurity Issues: What We Know

NextMotion plastic surgery tech firm data leak

Security Affairs newsletter Round 259

Nigerian Tesla: 419 scammer gone malware distributor unmasked

Stay Connected