SecureWorld News

MARCH 18, 2025

In recent months, a sophisticated scam has emerged, targeting drivers across the United States with fraudulent text messages about unpaid road tolls. Smishing scams like these follow a predictable yet highly effective, nefarious behavioral blueprintleveraging urgency, impersonation, and fear to manipulate victims into compliance.

Scams 84

Scams Mobile Phishing Education 84

Krebs on Security

AUGUST 4, 2023

One frustrating aspect of email phishing is the frequency with which scammers fall back on tried-and-true methods that really have no business working these days. The file included in this phishing scam uses what’s known as a “right-to-left override” or RLO character.

Phishing 241

Phishing Scams Computers and Electronics Software 241

Krebs on Security

SEPTEMBER 1, 2023

Domain names ending in “ US ” — the top-level domain for the United States — are among the most prevalent in phishing scams, new research shows. government, which is frequently the target of phishing domains ending in.US. US phishing domains.US This is noteworthy because.US is overseen by the U.S.

Phishing 300

Phishing Telecommunications Government DNS 300

The Last Watchdog

DECEMBER 16, 2024

Part two of a four-part series The explosion of AI-driven phishing, insider threats, and business logic abuse has forced a shift toward more proactive, AI-enhanced defenses. Deepfake scams will escalate, with threat actors using AI to create convincing impersonations of executives, risking personal and corporate brands.

Cyber threats 264

Cyber threats CISO IoT Phishing 264

SecureList

MARCH 25, 2025

Note that for mobile banking malware, we retrospectively revised the 2023 numbers to provide more accurate statistics. We also changed the methodology for PC banking malware by removing obsolete families that no longer use Trojan banker functionality, hence the sharp drop in numbers against 2023. million in 2023.

Phishing 74

Phishing Banking Scams Mobile 74

Malwarebytes

JANUARY 15, 2025

Table of contents Overview Criminals impersonate Google Ads Lures hosted on Google Sites Phishing for Google account credentials Victimology Who is behind these campaigns? This earned Google a whopping $175 billion in search-based ad revenues in 2023. First sponsorized google answer for “Google ads” is a phishing attempt !

Advertising 131

Advertising Accountability Phishing Scams 131

SecureList

MAY 6, 2024

A significant share of scam, phishing and malware attacks is about money. Methodology In this report, we present an analysis of financial cyberthreats in 2023, focusing on banking Trojans and phishing pages that target online banking, shopping accounts, cryptocurrency wallets and other financial assets. million in 2022.

Phishing 133

Phishing Banking Mobile Scams 133

Penetration Testing

DECEMBER 2, 2023

Recently, a cunning phishing scam has emerged, targeting unsuspecting WordPress users with a fabricated security flaw, CVE-2023-45124. This sophisticated ruse, uncovered by the Wordfence Threat... The post WordPress Phishing Scam Exploits Fake CVE-2023-45124 Vulnerability appeared first on Penetration Testing.

Scams 90

Scams Phishing Penetration Testing Cybersecurity 90

Security Affairs

NOVEMBER 21, 2024

Scattered Spider members are part of a broader cybercriminal community called “The Com,” where hackers brag about high-profile cyber thefts, typically initiated through social engineering tactics like phone, email, or SMS scams to gain access to corporate networks. ” reads the press release published by DoJ. In January 2024, U.S.

Cybercrime 109

Cybercrime Identity Theft Cryptocurrency Phishing 109

Krebs on Security

OCTOBER 31, 2023

The top-level domain for the United States — US — is home to thousands of newly-registered domains tied to a malicious link shortening service that facilitates malware and phishing scams, new research suggests. domains as among the most prevalent in phishing attacks over the past year. US phishing domains.

Phishing 334

Phishing Telecommunications Malware Scams 334

Security Boulevard

APRIL 18, 2023

Phishing attacks continue to be one of the most significant threats facing organizations today. As businesses increasingly rely on digital communication channels, cybercriminals exploit vulnerabilities in email, SMS, and voice communications to launch sophisticated phishing attacks.

Phishing 122

Phishing Social Engineering Education Retail 122

SecureList

JULY 5, 2023

Hence, cybercriminals have little motivation to invest heavily into phishing campaigns, and so, techniques used in email attacks on hot wallets are hardly ever original or complex. Sample phishing email that targets Coinbase users After the user clicks the link, they are redirected to a page where they are asked to enter their seed phrase.

Scams 130

Scams Phishing Cryptocurrency Social Engineering 130

Security Affairs

MARCH 7, 2024

The FBI Internet Crime Complaint Center (IC3) 2023 report states that reported cybercrime losses reached $12.5 billion in 2023. The 2023 Internet Crime Report published the FBI’s Internet Crime Complaint Center (IC3) reveals that reported cybercrime losses reached $12.5 billion in 2023. billion in 2023 (+38%).

Cybercrime 139

Cybercrime Internet Internet Scams 139

The Hacker News

FEBRUARY 27, 2024

Mexican users have been targeted with tax-themed phishing lures at least since November 2023 to distribute a previously undocumented Windows malware called TimbreStealer.

Phishing 140

Phishing Malware Scams Banking 140

Krebs on Security

JUNE 22, 2023

The United Parcel Service (UPS) says fraudsters have been harvesting phone numbers and other information from its online shipment tracking tool in Canada to send highly targeted SMS phishing (a.k.a. ” Pivoting on the domain in the smishing message sent to Dylan shows the phishing domain shared an Internet host in Russia [91.215.85-166]

Phishing 331

Phishing Retail Mobile Scams 331

SecureList

MAY 27, 2024

Criminals are forever inventing new schemes for stealing personal data and funds, which are then quickly distributed to other scammers through automation and the sale of phishing tools. Ways to deceive message board users There are two main types of message board scams. This type of fraud is known as scam 1.0

Scams 127

Scams Phishing Accountability Banking 127

Security Affairs

DECEMBER 1, 2024

From generating deepfakes to enhancing phishing campaigns, GAI is evolving into a tool for large-scale cyber offenses GAI has captured the attention of researchers and investors for its transformative potential across industries. GAI is also a boon for attackers seeking financial gain. As the technology evolves, so will its misuse.

Artificial Intelligence 132

Artificial Intelligence Phishing Media Cyber threats 132

SecureList

APRIL 5, 2023

They have become adept at using Telegram both for automating their activities and for providing various services — from selling phishing kits to helping with setting up custom phishing campaigns — to all willing to pay. ” Links to the channels are spread via YouTube, GitHub and phishing kits they make.

Phishing 144

Phishing Marketing Scams Accountability 144

SecureList

NOVEMBER 28, 2022

Although the main types of threats (phishing, scams, malware, etc.) Below, we present a number of key ideas about what the consumer-oriented threat landscape will look like in 2023, and describe how users could be lured into cybertraps with fake content and third-party apps. 2023 promises a wealth of new releases.

Education 136

Education Phishing Scams Social Engineering 136

Security Affairs

NOVEMBER 25, 2024

These attacks aim at spreading malware by including malicious links that infect devices, phish information by tricking users into sharing personal or financial data, and causing disruptions by overwhelming networks or targeting individuals with spam. One suspect from the scheme has been arrested.

Mobile 123

Mobile Scams Technology Telecommunications 123

SecureList

SEPTEMBER 27, 2023

Unlike phishing links that are easy to check and block, QR code is a headache for security solutions. Malevolent uses of QR codes in email Fraudsters use QR codes to encode links to phishing and scam pages. Those were scam messages imitating emails from delivery services, such as FedEx and DHL.

Phishing 136

Phishing Passwords Accountability Scams 136

Security Affairs

FEBRUARY 2, 2025

The HeartSender group has sold phishing tools to criminals since 2020, causing over $3 million in U.S. The Saim Raza group run multiple marketplaces that advertised and facilitated the sale of hacking and fraud tools, including malware, phishing kits and email extractors.

Cybercrime 108

Cybercrime Advertising Phishing Hacking 108

Thales Cloud Protection & Licensing

OCTOBER 2, 2023

Cybersecurity Awareness Month 2023 – What it is and why we should be aware madhav Tue, 10/03/2023 - 05:33 The inception of Cybersecurity Awareness Month in 2004 came at a critical juncture in our technological history. Familiarize yourself with common phishing hallmarks and promptly report any suspicious activity.

Cybersecurity 148

Cybersecurity Cyber threats Authentication Phishing 148

Duo's Security Blog

APRIL 20, 2023

Through the first two months of 2023 alone, the Australian Competition and Consumer Commission’s Scamwatch reported more than 19,000 phishing reports with estimated financial losses of more than $5.2 What is phishing? This is part of what makes phishing attacks so dangerous.

Phishing 106

Phishing Social Engineering Authentication Engineering 106

CyberSecurity Insiders

MAY 12, 2023

Coming May 14th, 2023, most of the world will be celebrating Mother’s Day for this year. So, how to avoid falling prey to Mother’s Day Scams Its simple, do not fall for the advertisements that are too good to be true- Like links pointing at web portals that promise an iPhone for just $80 and such.

Scams 122

Scams Retail Advertising Phishing 122

Security Affairs

DECEMBER 10, 2024

This social engineering scheme has been amplified by targeted phishing, smishing, and vishing activities, with a noticeable increase around the winter holidays. billion (equal to USD 326 million) between 2021 and 2023. Notably, some of them were registered between September and November 2024.

Social Engineering 110

Social Engineering Phishing Banking DNS 110

SecureList

MARCH 3, 2025

Some time later, the user received a phishing link to download malware disguised as a shipment tracking app. The phishing link as seen in the chat with the fraudsters See translation Your order has shipped. In August 2024, researchers at ESET described a new NFC banking scam discovered in the Czech Republic.

Mobile 116

Mobile Malware Adware Banking 116

Security Affairs

OCTOBER 12, 2023

This post analyzed the numerous phishing campaigns targeting users and organizations in Italy. Phishing is a ploy to trick users into revealing personal or financial information through an e-mail, Web site, and even through instant messaging. Phishing can also be used as a precursor attack to drop malware. Just to name a few.

Phishing 136

Phishing Scams Education Passwords 136

Malwarebytes

JANUARY 17, 2024

The San Francisco Chronicle tells a story about a family that almost got scammed when they heard their son’s voice telling them he’d been in a car accident and hurt a pregnant woman. The FBI says it has received more than 195 complaints about this type of scam that it refers to as “grandparent scams.”

Scams 144

Scams Artificial Intelligence Identity Theft Social Engineering 144

SecureList

JUNE 26, 2023

In this report, we have analyzed the key threats to small and medium-sized companies in 2022 and 2023, and provided advice on how to stay safe. Malware attacks Between January 1 and May 18, 2023, 2,392 SMB employees encountered malware or unwanted software disguised as business applications, with 2,478 unique files distributed this way.

Cybercrime 122

Cybercrime Phishing Banking Malware 122

SecureList

NOVEMBER 6, 2023

The Newzoo report for 2023 reveals that two in five — more than three billion — across the globe are gamers, which is 6.3 In this report, we provide our insights into the gaming-related threat landscape in 2023. We also analyzed phishing pages using various game titles and gaming platforms as a lure. percent more than last year.

Mobile 137

Mobile Phishing Accountability Scams 137

Malwarebytes

SEPTEMBER 13, 2023

The consequences of last year's LastPass breach continue to be felt, with the latest insult to users coming in the form of a highly convincing phishing email. Armed with this data, attackers can send targeted phishing emails that attempt to steal the passwords needed to unlock the stolen password vaults.

Phishing 143

Phishing Accountability Passwords Password Management 143

Malwarebytes

FEBRUARY 4, 2025

Generative AI tools can more convincingly write phishing emails so that the tell-tale signs of a scamlike misspellings and clumsy grammarare all but gone. In 2023, Malwarebytes Labs subverted these boundaries to successfully get ChatGPT to write ransomware twice. But sometimes the AI pushes back. That could change in 2025.

Artificial Intelligence 143

Artificial Intelligence Small Business Malware Technology 143

Krebs on Security

DECEMBER 6, 2023

At the end of November 2023, ICANN launched the Registration Data Request Service (RDRS), which is designed as a one-stop shop to submit registration data requests to participating registrars. This video from ICANN walks through how the system works.

Internet 298

Internet Internet Phishing Scams 298

Krebs on Security

FEBRUARY 28, 2024

In a post to its Twitter/X account last month, Signum Capital warned that a fake profile pretending to be their employee Mr. Lee was trying to scam people on Telegram. The file that Doug ran is a simple Apple Script (file extension “ scpt”) that downloads and executes a malicious trojan made to run on macOS systems.

Malware 333

Malware Cryptocurrency Software Phishing 333

Bleeping Computer

JANUARY 1, 2024

In 2023, we saw numerous law enforcement operations targeting cybercrime operations, including cryptocurrency scams, phishing attacks, credential theft, malware development, and ransomware attacks. [.]

Cybercrime 92

Cybercrime Cryptocurrency Scams Phishing 92

Tech Republic Security

JUNE 29, 2023

A new report from Kaspersky reveals the top cyber threats for SMBs in 2023. The post Kaspersky’s New Report Reveals the Top Cyber Threats for SMBs in 2023 appeared first on TechRepublic. Read more about it and how to protect organizations from it.

Cyber threats 159

Cyber threats Scams Phishing Cybercrime 159