Cybercrime, Risk and Social Engineering

EDR-as-a-Service makes the headlines in the cybercrime landscape

Security Affairs

APRIL 7, 2025

This approach reflects the as-a-service logic already prevalent in other areas of the cybercrime sector, significantly reducing the level of technical knowledge needed by those wishing to access this confidential data.

Cybercrime

Cybercrime Social Engineering Accountability Government

Hackers Exploit Zoom's Remote Control Feature in Cryptocurrency Heists

SecureWorld News

APRIL 22, 2025

A sophisticated cybercrime campaign, dubbed Elusive Comet , has been uncovered, in which North Korean threat actors are exploiting Zoom's remote control feature to infiltrate the systems of cryptocurrency professionals.

Cryptocurrency

Cryptocurrency Social Engineering Cybercrime Engineering

The Impact of AI on Social Engineering Cyber Attacks

SecureWorld News

NOVEMBER 8, 2023

Social engineering attacks have long been a threat to businesses worldwide, statistically comprising roughly 98% of cyberattacks worldwide. Given the much more psychologically focused and methodical ways that social engineering attacks can be conducted, it makes spotting them hard to do.

Social Engineering

Social Engineering Engineering Cyber Attacks Artificial Intelligence

Webinars

How to Avoid Pitfalls In Automation: Keep Humans In the Loop

MORE WEBINARS

Social engineering, deception becomes increasingly sophisticated

Security Affairs

FEBRUARY 20, 2023

Social engineering techniques are becoming increasingly sophisticated and are exploiting multiple emerging means, such as deep fakes. The increasing use of videoconferencing platforms and the various forms of remote work also adopted in the post-emergency covid make interpersonal collaborations increasingly virtual.

Social Engineering

Social Engineering Engineering Artificial Intelligence Computers and Electronics

Understanding the Deepfake Threat

SecureWorld News

FEBRUARY 13, 2025

Evolution of social engineering Social engineering exploits human psychology to manipulate individuals into revealing sensitive information or taking harmful actions. Key risks posed by deepfakes Deepfake attacks can be broadly classified into three categories.

Social Engineering

Social Engineering Authentication Identity Theft Education

The Risk of Weak Online Banking Passwords

Krebs on Security

AUGUST 5, 2019

Holden and his team closely monitor the cybercrime forums, and he said the company has seen a number of cybercriminals discussing how the financial aggregators are useful for targeting potential victims. Only after verifying those exact amounts will the account-linking request be granted.

Banking

Banking Passwords Risk Accountability

News alert: Beazley reports on how AI, new tech distract businesses as cyber risk intensifies

The Last Watchdog

JULY 13, 2023

London, July 13, 2023 — Beazley, the leading specialist insurer, today published its latest Risk & Resilience report: Spotlight on: Cyber & Technology Risks 2023. The economic impact of cybercrime on business across the globe continues to reach new levels, with the cost predicted to reach US$10.5

Cyber Risk

Cyber Risk Risk Insurance Energy and Utilities

Crazy Evil gang runs over 10 highly specialized social media scams

Security Affairs

FEBRUARY 3, 2025

” Crazy Evil is referred as a traffer team, which is a group of social engineering specialists tasked with redirecting legitimate traffic to malicious landing pages. The cybercrime gang focused on targeting the Web3 and decentralized finance industry. These factors make it a persistent cyber threat.

Scams

Scams Media Cryptocurrency Cybercrime

‘Fix It’ social-engineering scheme impersonates several brands

Malwarebytes

DECEMBER 19, 2024

Social engineering is a core part of these schemes and the tricks we see are sometimes very clever. Overlap with other campaigns As mentioned previously, this type of social engineering attack is getting more and more popular. Interestingly, the same domain ( topsportracing[.]com com microsoft.team-chaats[.]com

Social Engineering

Social Engineering Engineering Malware Antivirus

Fla. Man Charged in SIM-Swapping Spree is Key Suspect in Hacker Groups Oktapus, Scattered Spider

Krebs on Security

JANUARY 30, 2024

2022 that an intrusion had exposed a “limited number” of Twilio customer accounts through a sophisticated social engineering attack designed to steal employee credentials. “Brickings” are among the “violence-as-a-service” offerings broadly available on many cybercrime channels.

Social Engineering

Social Engineering Mobile Passwords Cybercrime

How Cybercriminals are Weathering COVID-19

Krebs on Security

APRIL 30, 2020

In a report published today, the company said since late March 2020 it has observed several crooks complaining about COVID-19 interfering with the daily activities of their various money mules (people hired to help launder the proceeds of cybercrime). ” Alex Holden , founder and CTO of Hold Security , agreed. .

Cybercrime

Cybercrime Computers and Electronics Marketing Scams

MUT-1244 Campaign Steals Hundreds of Thousands of WordPress Credentials and More

SecureWorld News

DECEMBER 17, 2024

Researchers at Datadog Security Labs have uncovered a year-long, large-scale cybercrime campaign by a threat actor tracked as MUT-1244. This operation, which blends social engineering and technical exploitation, has resulted in the theft of more than 390,000 WordPress credentials.

Phishing

Phishing Threat Detection Social Engineering Cybercrime

March Madness Meets Cyber Mayhem: How Cybercriminals Are Playing Offense this Season

SecureWorld News

MARCH 20, 2025

Phishing plays straight out of the cybercrime playbook "March Madness brings heightened cybersecurity risks this year, especially with the expansion of sports gambling beyond traditional office pools creating new attack vectors for credential harvesting and financial fraud," warns J.

Scams

Scams Social Engineering Mobile Phishing

National Consumer Protection Week: Keeping your personal data safe in a digitally connected world

Webroot

MARCH 3, 2025

March is a time for leprechauns and four-leaf clovers, and as luck would have it, its also a time to learn how to protect your private data from cybercrime. The growing risks to your data During the third quarter of 2024, data breaches exposed more than 422 million records worldwide.

Consumer Protection

Consumer Protection Identity Theft Scams Social Engineering

Voice Phishers Targeting Corporate VPNs

Krebs on Security

AUGUST 19, 2020

Zack Allen is director of threat intelligence for ZeroFOX , a Baltimore-based company that helps customers detect and respond to risks found on social media and other digital channels. Allen said it matters little to the attackers if the first few social engineering attempts fail. A phishing page (helpdesk-att[.]com)

Phishing

Phishing VPN Social Engineering Media

New AI “agents” could hold people for ransom in 2025

Malwarebytes

FEBRUARY 4, 2025

The same is true for all text-based social engineering tricks, as AI chat tools can write alluring direct messages for romance scams and craft urgent-sounding texts that can fool people into clicking on links that carry malware. We dont just report on threatswe remove them Cybersecurity risks should never spread beyond a headline.

Artificial Intelligence

Artificial Intelligence Small Business Malware Technology

Romantic Lawsuit for Two? Don't Let Cybercriminals Scam You this Valentine's Day

SecureWorld News

FEBRUARY 14, 2025

Last year saw a 110% rise in cybercrime in the lead up to Valentine's Day. And 2025 will be no different, as increasingly sophisticated online hackers seek to take advantage of Valentine's themed email traffic, social media advertisements, or marketing campaigns, and exploit heightened emotions and a desire to connect.

Scams

Scams Cybercrime Social Engineering Phishing

GUEST ESSAY: The rise of ‘PhaaS’ — and a roadmap to mitigate ‘Phishing-as-a-Service’

The Last Watchdog

SEPTEMBER 21, 2022

Phishing is one of the most common social engineering tactics cybercriminals use to target their victims. Cybersecurity experts are discussing a new trend in the cybercrime community called phishing-as-a-service. The PhaaS industry is rapidly expanding and presenting more risks to businesses of all types and sizes.

Phishing

Phishing Artificial Intelligence Cybercrime Social Engineering

Research Examines WormGPT, an AI Cybercrime Tool Used in BEC Attacks

SecureWorld News

JULY 13, 2023

In its latest research , SlashNext—a provider of multi-channel phishing and human hacking solutions—delves into the emerging use of generative AI, including OpenAI's ChatGPT, and the cybercrime tool WormGPT, in Business Email Compromise (BEC) attacks. Research has focused on this area a great deal in the last several months.

Cybercrime

Cybercrime Social Engineering Phishing Engineering

Secure Communications: Relevant or a Nice to Have?

Jane Frankland

FEBRUARY 7, 2025

But as a CISO or cyber risk owner, it’s not just about locking down sensitive informationits about doing it without slowing down your people. It encompasses everything from ensuring the confidentiality and integrity of information to reducing risks, maintaining compliance, and building trust with customers.

Cyber Risk

Cyber Risk CISO Risk Encryption

Android malware turns phones into malicious tap-to-pay machines

Malwarebytes

APRIL 24, 2025

Then you’re like millions of other users now at risk from a new form of cybercrime – malware that can read your credit or debit card and hand its data over to an attacker. They can then focus on finding and targeting victims with social engineering attacks, which Cleafy says they’ve been doing in Italy.

Malware

Malware Banking Software Social Engineering

Cyber CEO: The History Of Cybercrime, From 1834 To Present

Herjavec Group

AUGUST 26, 2021

We can learn a lot from the cybercrime of the past…the history of cybercrime is a glimpse into what we can expect in the future. In the past 18 months, we’ve experienced the beginning of an era that has seen cybersecurity and cybercrime at the center of it all. Dateline Cybercrime . Robert Herjavec.

Cybercrime

Cybercrime Computers and Electronics Banking Hacking

Hackers shifting cybercrime focus towards smart phones and tablets

CyberSecurity Insiders

MARCH 16, 2023

But after the spread of the Covid-19 pandemic, the focus of hackers has shifted more towards the smart phones with more phishing and social engineering attacks recorded in a 2nd quarter of 2022. Agility, awareness and alertness are the only mantra to mitigate risks.

Cybercrime

Cybercrime Social Engineering Mobile Spyware

Cybercriminals Impersonate Dubai Police to Defraud Consumers in the UAE – Smishing Triad in Action

Security Affairs

DECEMBER 10, 2024

This social engineering scheme has been amplified by targeted phishing, smishing, and vishing activities, with a noticeable increase around the winter holidays. Cybercriminals quickly took advantage of this festive period when citizens were relaxed, and less vigilant at home, resulting in financial losses.

Social Engineering

Social Engineering Phishing Banking DNS

Ransomware realities in 2023: one employee mistake can cost a company millions

Security Affairs

OCTOBER 17, 2023

According to Statista.com, the impact of cybercrime is expected to reach almost $13 trillion this year. Not to mention the heightened cyber awareness and risk mitigation across businesses and industries. The MGM attacks were almost identical to the social engineering attacks on Caesars, which targeted a third-party IT help desk.

Social Engineering

Social Engineering Ransomware Engineering Phishing

Security Affairs newsletter Round 510 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

FEBRUARY 9, 2025

What are the risks? US Justice Department says cybercrime forum allegedly affected 17 million Americans Cybercrime is increasingly complex.

Spyware

Spyware Cybercrime Scams Social Engineering

Malvertising Is a Cybercrime Heavyweight, Not an Underdog

SecureWorld News

MARCH 29, 2024

A stepping stone to impactful cybercrime This tactic has tangible real-world implications. Here's some evidence for those who consider the risk far-fetched. In addition to the risks outlined by CISA, these add-ons don't sift out dubious advertisements on search engines that are increasingly common.

Cybercrime

Cybercrime Advertising Engineering Antivirus

How Security Teams Collect the Data They Need for Threat Intelligence

SecureWorld News

APRIL 14, 2025

The evolution of cybercrime is shifting into hyperdrive. It helps prioritize risks, organize protection efforts, and allocate resources more flexibly to address the most pressing threats first. Yet, it's potent enough to give white hats the upper hand in this race.

Media

Media Social Engineering Malware Financial Services

The danger of data breaches — what you really need to know

Webroot

APRIL 22, 2025

Chances are youve received at least one of these letters, which means you have been put at risk for identity theft and major financial losses. Hijacking online accounts : If your login credentials (usernames and passwords) are leaked, all your online accounts are put at risk. In 2024, more than 1.3

Data breaches

Data breaches Identity Theft Passwords eCommerce

LW ROUNDTABLE: Cybersecurity takeaways of 2023 — and what’s ahead in 2024 ( part 1)

The Last Watchdog

DECEMBER 12, 2023

Related: Adopting an assume-breach mindset With that in mind, Last Watchdog invited the cybersecurity experts we’ve worked with this past year for their perspectives on two questions that all company leaders should have top of mind: •What should be my biggest takeaway from 2023, with respect to mitigating cyber risks at my organization?

Cybersecurity

Cybersecurity Social Engineering Cyber threats Software

Wind turbines and lightning very very frightening – and cyber security

Javvad Malik

FEBRUARY 27, 2023

When it comes to cybercrime, most attacks are successful as a result of a few root causes. Unpatched software, poor credentials or lack of MFA, misconfigured software, or social engineering. cybersecurity #risk #turbines ♬ original sound – Javvad Malik

Insurance

Insurance Social Engineering Manufacturing Cybercrime

What Are the Cyber Security Trends Around the World?

Thales Cloud Protection & Licensing

DECEMBER 16, 2021

Criminals tweaked existing forms of cybercrime to fit the pandemic narrative, abused the uncertainty of the situation and the public’s need for reliable information. In many cases, COVID-19 caused an amplification of existing cybercrimes, exacerbated by a significant increase in the number of people working from home.”.

Social Engineering

Social Engineering Ransomware Engineering Phishing

A threat actor is selling access to Facebook and Instagram’s Police Portal

Security Affairs

OCTOBER 21, 2023

Gal speculates that either Meta was the victim of a social engineered attack that tricked an employee into giving attackers access to the portal or the threat actor had credentials for a legitimate law enforcement account. ” Gal told Security Affairs. The access to the official META Law Enforcement Portal.

Social Engineering

Social Engineering Identity Theft Accountability Engineering

Cisco Duo warns telephony supplier data breach exposed MFA SMS logs

Security Affairs

APRIL 15, 2024

The “Provider also started implementing measures to prevent similar incidents from occurring in the future and additional technical measures to further mitigate the risk associated with social engineering attacks. ” continues the notification.

Data breaches

Data breaches Social Engineering Engineering Authentication

Security Affairs newsletter Round 506 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

JANUARY 12, 2025

CISA adds Oracle WebLogic Server and Mitel MiCollab flaws to its Known Exploited Vulnerabilities catalog Threat actors breached the Argentinas airport security police (PSA) payroll Moxa router flaws pose serious risks to industrial environmets US adds Tencent to the list of companies supporting Chinese military Eagerbee backdoor targets govt entities (..)

Data breaches

Data breaches Phishing Social Engineering Engineering

Road Tolls Scams Rise on FBI's Radar; Public Warned Against Smishing

SecureWorld News

MARCH 18, 2025

The rise of these sophisticated road toll scams is catching many people off guard, highlighting the evolving nature of cybercrime. Regular simulations and updates on emerging threats are essential to help employees recognize and mitigate these risks effectively."

Scams

Scams Mobile Phishing Education

Do You Trust Your Smart TV?

Security Affairs

AUGUST 2, 2021

According to the 2020 Insider Threat Report , contractors, service providers, and temporary workers pose the greatest risk to 50% of organizations. The cleaner’s insider access takes care of the physical access challenge, while detachment to the organization makes the individual more susceptible to social engineering.

Social Engineering

Social Engineering Healthcare Engineering Hacking

The Evolution of Encrypted IM Messenging Platforms – The Rise and Future of the OMEMO Protocol – An Analysis

Security Boulevard

JANUARY 28, 2022

Basic OTR Protocol Overview in the context of the global growing cybercrime trend. It should be worth pointing out over 98% of Russian and Eastern European cybercrime-friendly propositions actively rely on the use of public and private proprietary Jabber-based servers and active OTR (Off-the-Record) type of communications.

Encryption

Encryption Cybercrime Social Engineering Mobile

Scattered Spider x RansomHub: A New Partnership

Digital Shadows

OCTOBER 23, 2024

The attacker gained initial access to two employee accounts by carrying out social engineering attacks on the organization’s help desk twice. Leveraging its English proficiency, the collective uses social engineering for initial access. Within six hours, the attacker began encrypting the organization’s systems.

Social Engineering

Social Engineering Engineering Accountability Backups

An odd kind of cybercrime: Gift vouchers, medical records, and.food

Malwarebytes

OCTOBER 24, 2022

Food delivery services also played an important role during lockdown, so any disruption here would also be potentially very disruptive for those most at risk. This could put those people at an increased risk of social engineering or identity theft. A strange combination, then, but not a very pleasant one.

Cybercrime

Cybercrime Identity Theft Social Engineering Passwords

The Unseen Threats: Anticipating Cybersecurity Risks in 2024

Security Boulevard

JANUARY 18, 2024

Cybersecurity risks increase every year and bludgeon victims who fail to prepare properly. For those interested in a better understanding of the oncoming risks, this is the information you are looking for. It can feel like crossing a major highway while blindfolded. Many never see the catastrophe about to happen, until it occurs.

Risk

Risk Cybersecurity CISO Technology

BEST PRACTICES: Mock attacks help local agencies, schools prepare for targeted cyber scams

The Last Watchdog

APRIL 6, 2020

This can make them particularly susceptible to social engineering trickery, the trigger for online extortion and fraud campaigns, Bastable told me. BEC campaigns accounted for an estimated $26 billion in cybercrime-related losses reported to the FBI over a three year period. These are soft targets,” he says. It’s simple fraud.”

Scams

Scams Social Engineering Ransomware Engineering

Webcast Tackles How to Protect Oneself Against the Dark Side of AI

SecureWorld News

MAY 31, 2023

Eastern, and will provide viewers with information they need to understand the future of cybercrime and give them tools to stop it. Rachel was also a winner of DEF CON's wild spectator sport, the Social Engineering Capture the Flag contest, three years in a row. Check out the entire series.

Social Engineering

Social Engineering Artificial Intelligence Engineering Cybercrime

7 Insights About Managing Cyber Risk You Can’t Afford To Miss

Jane Frankland

AUGUST 18, 2020

trillion in global value will be at risk from cyberattacks. That could be through common hacking techniques like phishing, bait and switch, cookie theft, deep fake , password cracking , social engineering , and so on. Most organisations don’t define what risk means to them, which ironically is a threat. billion by 2022.

Cyber Risk

Cyber Risk Risk Cybersecurity Technology

EDR-as-a-Service makes the headlines in the cybercrime landscape

Hackers Exploit Zoom's Remote Control Feature in Cryptocurrency Heists

Webinars

Trending Sources

The Impact of AI on Social Engineering Cyber Attacks

Webinars

Social engineering, deception becomes increasingly sophisticated

Understanding the Deepfake Threat

The Risk of Weak Online Banking Passwords

News alert: Beazley reports on how AI, new tech distract businesses as cyber risk intensifies

Crazy Evil gang runs over 10 highly specialized social media scams

‘Fix It’ social-engineering scheme impersonates several brands

Fla. Man Charged in SIM-Swapping Spree is Key Suspect in Hacker Groups Oktapus, Scattered Spider

How Cybercriminals are Weathering COVID-19

MUT-1244 Campaign Steals Hundreds of Thousands of WordPress Credentials and More

March Madness Meets Cyber Mayhem: How Cybercriminals Are Playing Offense this Season

National Consumer Protection Week: Keeping your personal data safe in a digitally connected world

Voice Phishers Targeting Corporate VPNs

New AI “agents” could hold people for ransom in 2025

Romantic Lawsuit for Two? Don't Let Cybercriminals Scam You this Valentine's Day

GUEST ESSAY: The rise of ‘PhaaS’ — and a roadmap to mitigate ‘Phishing-as-a-Service’

Research Examines WormGPT, an AI Cybercrime Tool Used in BEC Attacks

Secure Communications: Relevant or a Nice to Have?

Android malware turns phones into malicious tap-to-pay machines

Cyber CEO: The History Of Cybercrime, From 1834 To Present

Hackers shifting cybercrime focus towards smart phones and tablets

Cybercriminals Impersonate Dubai Police to Defraud Consumers in the UAE – Smishing Triad in Action

Ransomware realities in 2023: one employee mistake can cost a company millions

Security Affairs newsletter Round 510 by Pierluigi Paganini – INTERNATIONAL EDITION

Malvertising Is a Cybercrime Heavyweight, Not an Underdog

How Security Teams Collect the Data They Need for Threat Intelligence

The danger of data breaches — what you really need to know

LW ROUNDTABLE: Cybersecurity takeaways of 2023 — and what’s ahead in 2024 ( part 1)

Wind turbines and lightning very very frightening – and cyber security

What Are the Cyber Security Trends Around the World?

A threat actor is selling access to Facebook and Instagram’s Police Portal

Cisco Duo warns telephony supplier data breach exposed MFA SMS logs

Security Affairs newsletter Round 506 by Pierluigi Paganini – INTERNATIONAL EDITION

Road Tolls Scams Rise on FBI's Radar; Public Warned Against Smishing

Do You Trust Your Smart TV?

The Evolution of Encrypted IM Messenging Platforms – The Rise and Future of the OMEMO Protocol – An Analysis

Scattered Spider x RansomHub: A New Partnership

An odd kind of cybercrime: Gift vouchers, medical records, and.food

The Unseen Threats: Anticipating Cybersecurity Risks in 2024

BEST PRACTICES: Mock attacks help local agencies, schools prepare for targeted cyber scams

Webcast Tackles How to Protect Oneself Against the Dark Side of AI

7 Insights About Managing Cyber Risk You Can’t Afford To Miss

Stay Connected