Hacker's King

DECEMBER 17, 2024

The cybersecurity world has been abuzz with news of a new Linux variant of FASTCash, a sophisticated malware targeting the banking sector. FASTCash has gained notoriety for its ability to bypass banking security protocols, enabling cybercriminals to withdraw massive amounts of cash from ATMs.

Banking 52

Banking Social Engineering Malware Cyber threats 52

Security Affairs

MAY 17, 2021

Bizarro is a new sophisticated Brazilian banking trojan that is targeting customers of tens of banks in Europe and South America. Researchers from Kaspersky have spotted a new sophisticated Brazilian banking trojan dubbed Bizarro that is targeting customers of tens of 70 banks in Europe and South America.

Banking 129

Banking Social Engineering Malware Engineering 129

Malwarebytes

MAY 1, 2023

In the email, Gary Bragg, then-president of Pennsylvania law firm O'Neill, Bragg & Staffin, asked Staffin to wire $580,000 to a Bank of China account. Staffin, who was VP and in charge of banking, sent the money through as asked. BEC is one of the most damaging forms of social engineering attacks faced by small businesses.

Social Engineering 96

Social Engineering Small Business Engineering Banking 96

Malwarebytes

MAY 18, 2021

Researchers have discovered a new banking Trojan that has been found targeting customers of European and South American banks. The Bizarro malware spreads via Microsoft Installer (MSI) packages. Bizarro has quite a few tricks up its sleeve: It can capture login credentials entered on banking sites. Stay safe, everyone!

Banking 144

Banking Social Engineering Malware Engineering 144

The Hacker News

DECEMBER 1, 2023

Cybersecurity researchers have disclosed a new sophisticated Android malware called FjordPhantom that has been observed targeting users in Southeast Asian countries like Indonesia, Thailand, and Vietnam since early September 2023.

Banking 107

Banking Malware Social Engineering Mobile 107

Security Affairs

NOVEMBER 15, 2021

Security researchers from Cleafy discovered a new Android banking trojan, named SharkBot, that is targeting banks in Europe. At the end of October, researchers from cyber security firms Cleafy and ThreatFabric have discovered a new Android banking trojan named SharkBot. ” reads the analysis published by the researchers.

Banking 144

Banking Mobile Social Engineering Malware 144

SecureList

MAY 17, 2021

Bizarro is yet another banking Trojan family originating from Brazil that is now found in other regions of the world. Attempts have now been made to steal credentials from customers of 70 banks from different European and South American countries. It may also use social engineering to convince victims to download a smartphone app.

Banking 145

Banking Social Engineering Malware Engineering 145

The Last Watchdog

JUNE 18, 2018

Bank patrons in their 20s and 30s, who grew up blanketed with digital screens, have little interest in visiting a brick-and-mortar branch, nor interacting with a flesh-and-blood teller. This truism is pushing banks into unchartered territory. So banks are all in. LaSalla: Back in the day it was hardware tokens for banks.

Banking 173

Banking Mobile Social Engineering Authentication 173

Identity IQ

JUNE 20, 2023

What Are Social Engineering Scams? Thanks, Your CEO This common scenario is just one example of the many ways scammers may attempt to trick you through social engineering scams. Read on to learn how to recognize social engineering attacks, their consequences, and tactics to avoid falling for them.

Social Engineering 94

Social Engineering Scams Engineering Identity Theft 94

Penetration Testing

MARCH 6, 2024

Cleafy‘s recent analysis of the Copybara campaign highlights a troubling escalation in online banking fraud.

Social Engineering 92

Social Engineering Engineering Penetration Testing Banking 92

Security Affairs

SEPTEMBER 29, 2024

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape. Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape.

Malware 127

Malware Social Engineering IoT Scams 127

IT Security Guru

FEBRUARY 25, 2025

Other Ways Threat Actors Exploit Human Behaviour In addition to fatigue attacks, malefactors weaponise social engineering. MFA fatigue is often coupled with social engineeringan attacker might contact the victim, masquerading as IT support, and advise them to approve the prompt to “resolve an issue.”

Social Engineering 118

Social Engineering Authentication Risk Accountability 118

Trend Micro

AUGUST 8, 2021

We found a new social engineering-based malvertising campaign targeting Japan that delivered a malicious application. The malicious application abused sideloading vulnerabilities to load and start the Cinobi banking trojan.

Banking 123

Banking Social Engineering Cryptocurrency Engineering 123

Malwarebytes

AUGUST 22, 2022

When she was about to enter her bank account PIN, she remembered she wasn't supposed to share it with anyone. Even with the application deleted, we had to assume that the device remained infected with malware. Source: Chasseur Group). Venus did what she was instructed, including filling out the form in the app.

Social Engineering 97

Social Engineering Engineering Banking Scams 97

Security Affairs

AUGUST 13, 2019

Security experts analyzed a new interesting Android banking Trojan, dubbed Cerberus, that is offered for rent by its author. A new malware-as-a- service dubbed Cerberus has emerged in the threat landscape, it is an Android RAT developed from scratch that doesn’t borrow the code from other malware.

Banking 111

Banking Malware Advertising Social Engineering 111

The Hacker News

DECEMBER 1, 2021

Socially engineered SMS messages are being used to install malware on Android devices as part of a widespread phishing campaign that impersonates the Iranian government and social security services to make away with credit card details and steal funds from victims' bank accounts.

Phishing 143

Phishing Social Engineering Banking Engineering 143

CyberSecurity Insiders

FEBRUARY 22, 2022

Trickbot Malware that started just as a banking malware has now emerged into a sophisticated data stealing tool capable of injecting malware like ransomware or serve as an Emotet downloader. The post Trickbot Malware hits 140,000 victims appeared first on Cybersecurity Insiders.

Malware 122

Malware Social Engineering Banking Phishing 122

eSecurity Planet

FEBRUARY 26, 2025

Cybercriminals disguise messages as urgent notifications from banks, government agencies, or corporate IT teams, tricking users into providing credentials or downloading malware. Mishing is a phishing attack that uses SMS messages instead of emails to deceive victims into revealing sensitive information or clicking malicious links.

Phishing 88

Phishing Mobile Social Engineering Data breaches 88

Heimadal Security

MARCH 29, 2022

A new email phishing operation has been noticed employing the conversation hijacking strategy to distribute the IcedID banking trojan-type malware onto compromised computers via unpatched and publicly-exposed Microsoft Exchange servers.

Malware 120

Malware Social Engineering Banking Engineering 120

SecureWorld News

MARCH 11, 2022

Famed hacker Kevin Mitnick learned early on to use emotion to manipulate and socially engineer his targets. At the time, his targets were typically sysadmins, and the social engineering started with a phone call. Hacker targets victims with fear. Mitnick says his favorite emotional tool was fear.

Social Engineering 94

Social Engineering Engineering Phishing Accountability 94

The Hacker News

NOVEMBER 20, 2023

Android smartphone users in India are the target of a new malware campaign that employs social engineering lures to install fraudulent apps that are capable of harvesting sensitive data.

Social Engineering 130

Social Engineering Banking Government Mobile 130

Krebs on Security

APRIL 20, 2023

Researchers at ESET say this job offer from a phony HSBC recruiter on LinkedIn was North Korean malware masquerading as a PDF file. Mandiant found the compromised 3CX software would download malware that sought out new instructions by consulting encrypted icon files hosted on GitHub. Image: Mandiant.

Malware 328

Malware Software Technology Accountability 328

Security Affairs

FEBRUARY 3, 2025

The Russian-speaking Crazy Evil group runs over 10 social media scams, tricking victims into installing StealC, AMOS, and Angel Drainer malware. Since 2021, the Crazy Evil gang has become a major cybercriminal group, using phishing, identity fraud, and malware to steal cryptocurrency.

Scams 84

Scams Media Cryptocurrency Cybercrime 84

SecureList

DECEMBER 17, 2024

In late October 2024, a new scheme for distributing a certain Android banking Trojan called “Mamont” was uncovered. The attackers would then send what appeared to be the photo itself but was actually a malware installer. In reality, this was malware with no parcel-tracking functionality whatsoever.

Scams 89

Scams Malware Social Engineering Banking 89

Krebs on Security

MAY 14, 2024

“CVE-2024-30051 is used to gain initial access into a target environment and requires the use of social engineering tactics via email, social media or instant messaging to convince a target to open a specially crafted document file,” Narang said. Emerging in 2007 as a banking trojan, QakBot (a.k.a.

Social Engineering 272

Social Engineering Backups Malware Banking 272

SecureList

FEBRUARY 26, 2024

million malware, adware, and riskware attacks. million malicious installation packages, 154,000 of these containing a mobile banking Trojan. The year’s trends Malware, adware, and riskware attacks on mobile devices dipped in February, only to rise steadily until the end of the year. of all threats detected. 14.82 -1.81

Mobile 137

Mobile Malware Adware Banking 137

Schneier on Security

JUNE 20, 2018

It is most widely known from online banking, where it is an essential tool to defend against sophisticated attacks. To achieve this the adversary might use social engineering techniques such as phishing and vishing and/or tools such as Man-in-the-Browser malware.

Authentication 180

Authentication Banking Social Engineering Mobile 180

Security Affairs

NOVEMBER 8, 2023

The North Korea-linked APT BlueNoroff used a new strain of macOS malware strain dubbed ObjCShellz, Jamf Threat Labs reported. Researchers from Jamf Threat Labs discovered a new macOS malware strain dubbed ObjCShellz and attributed it to North Korea-linked APT BlueNoroff. ” concludes the report.

Malware 134

Malware Cryptocurrency Social Engineering Engineering 134

Penetration Testing

JANUARY 29, 2025

Cybercriminals are once again exploiting social engineering tactics to trick unsuspecting users into installing malicious Android applications. A The post WhatsApp Phishing Campaign Targets SBI Bank Users with Malicious App appeared first on Cybersecurity News.

Banking 88

Banking Phishing Social Engineering Engineering 88

Security Affairs

MARCH 25, 2019

Due to the growing demand for Android banking malware, threat actors continue using Anubis even is the creator has vanished. Besides being the Egyptian God associated with mummification and afterlife, Anubis is also an Android banking malware that has caused quite some trouble for over 300 financial institutions worldwide since 2017.

Malware 110

Malware Banking Advertising Social Engineering 110

SecureList

JANUARY 30, 2025

Introduction Since mid-2024, we’ve observed a malicious Android campaign leveraging wedding invitations as a lure to social-engineer victims into installing a malicious Android app (APK), which we have named “Tria Stealer” after unique strings found in campaign samples. Contact me at ‘[link].

Accountability 98

Accountability Malware Banking Phishing 98

Webroot

MARCH 3, 2025

Common attacks to consumer protection Identity theft and fraud Some common types of identity theft and fraud include account takeover fraud , when criminals use stolen personal information such as account numbers, usernames, or passwords to hijack bank accounts, credit cards, and even email and social media accounts.

Consumer Protection 84

Consumer Protection Identity Theft Scams Social Engineering 84

Bleeping Computer

FEBRUARY 15, 2024

A new iOS and Android trojan named 'GoldPickaxe' employs a social engineering scheme to trick victims into scanning their faces and ID documents, which are believed to be used to generate deepfakes for unauthorized banking access. [.]

Social Engineering 112

Social Engineering Banking Malware Engineering 112

Security Boulevard

JUNE 27, 2024

The post Three Nation-State Campaigns Targeting Healthcare, Banking Discovered appeared first on Security Boulevard. Researchers have identified three distinct nation-state campaigns leveraging advanced highly evasive and adaptive threat (HEAT) tactics.

Healthcare 128

Healthcare Banking Social Engineering Engineering 128

Security Affairs

OCTOBER 16, 2021

The operators behind the infamous TrickBot (ITG23 and Wizard Spider) malware have resurfaced with new distribution channels to deliver malicious payloads, such as Conti ransomware. “As of mid-2021, X-Force observed ITG23 partner with two additional malware distribution affiliates — Hive0106 (aka TA551) and Hive0107. .

Malware 133

Malware Cybercrime DDOS Social Engineering 133

Threatpost

DECEMBER 1, 2021

Attackers use socially engineered SMS messages and malware to compromise tens of thousands of devices and drain user bank accounts.

Social Engineering 111

Social Engineering Banking Engineering Malware 111

Security Affairs

JULY 4, 2023

A Mexican threat actor that goes online with the moniker Neo_Net is behind an Android malware campaign targeting banks worldwide. Neo_Net’s eCrime campaign was reportedly targeting clients of banks globally, with a focus on Spanish and Chilean banks, from June 2021 to April 2023. ” Thill explained.

Banking 98

Banking Phishing Social Engineering Authentication 98