Krebs on Security

NOVEMBER 21, 2024

The government says much of Tylerb’s cryptocurrency wealth was the result of successful SIM-swapping attacks, wherein crooks transfer the target’s phone number to a device they control and intercept any text messages or phone calls sent to the victim — including one-time passcodes for authentication, or password reset links sent via SMS. .”

Identity Theft 252

Identity Theft Phishing Cryptocurrency Accountability 252

Schneier on Security

DECEMBER 20, 2022

The installer was left on various torrent sites, presumably ensnaring people downloading pirated copies of the operating system: Mandiant uncovered a socially engineered supply chain operation focused on Ukrainian government entities that leveraged trojanized ISO files masquerading as legitimate Windows 10 Operating System installers.

Social Engineering 242

Social Engineering Engineering Software Government 242

Krebs on Security

JANUARY 19, 2021

military and government employees and giving it to an Islamic State hacker group in 2015 has been charged once again with fraud and identity theft. based e-commerce company, stealing personal and financial data on 1,300 government employees, and providing the data to an Islamic State hacking group.

Identity Theft 347

Identity Theft Government Social Engineering Accountability 347

SecureWorld News

FEBRUARY 13, 2025

Evolution of social engineering Social engineering exploits human psychology to manipulate individuals into revealing sensitive information or taking harmful actions. Attackers now impersonate executives, government officials, and even family members to gain trust and manipulate victims.

Social Engineering 89

Social Engineering Authentication Identity Theft Education 89

Malwarebytes

MARCH 19, 2025

” Whether it’s a so-called “subsidy program,” a “government grant,” or a “relief card,” these scams all share the same underlying goalto manipulate people into giving away their personal information, orworsetheir hard-earned cash. .” ” “482 Spots Remaining! gov domains).

Scams 97

Scams Government Identity Theft Social Engineering 97

Krebs on Security

AUGUST 19, 2021

. “For decades, West African scammers, primarily located in Nigeria, have perfected the use of social engineering in cybercrime activity.” – Government entities. ” The rest of the post reads: We are looking for access to corporate networks in the following countries: – the USA. – Canada.

Ransomware 363

Ransomware Social Engineering Cybercrime Scams 363

Security Affairs

FEBRUARY 19, 2024

The nation-state actors are known to carry out cyber-espionage against targeting government, military, and national infrastructure entities in Europe and Central Asia since at least December 2020. “TAG70 has demonstrated a high level of sophistication in its attack methods. .

Government 141

Government Social Engineering Engineering Hacking 141

The Hacker News

NOVEMBER 20, 2023

Android smartphone users in India are the target of a new malware campaign that employs social engineering lures to install fraudulent apps that are capable of harvesting sensitive data.

Social Engineering 132

Social Engineering Banking Government Mobile 132

IT Security Guru

NOVEMBER 1, 2024

Cyber attacks can compromise critical infrastructure, financial systems, and sensitive government data. Phishing and Social Engineering: These tactics manipulate individuals to disclose sensitive information. Types of Cybersecurity Threats Malware and Ransomware: These can disable systems or steal data for ransom.

Technology 109

Technology Cyber Attacks Government Social Engineering 109

Krebs on Security

FEBRUARY 17, 2021

The government alleges the men reside in North Korea but were frequently stationed by the DPRK in other countries, including China and Russia. Warrants obtained by the government allowed the FBI to seize roughly $1.9 Park was previously charged in 2018 in connection with the WannaCry and Sony Pictures attacks. .

Cryptocurrency 329

Cryptocurrency Financial Services Banking Government 329

SecureWorld News

FEBRUARY 20, 2025

The FBI, CISA, and MS-ISAC have issued a joint cybersecurity advisory warning organizations about Ghost (Cring) ransomware, a sophisticated cyber threat that has been compromising critical infrastructure, businesses, and government entities worldwide. Develop and test ransomware response plans.

Ransomware 113

Ransomware IoT Encryption Social Engineering 113

The Last Watchdog

DECEMBER 18, 2024

Enterprises must secure AI agents, adopt proactive data governance, and deploy AI-based security platforms. Organizations face rising risks of AI-driven social engineering and personal device breaches. Collaborative efforts between security vendors, AI providers, and businesses will be key to counter automated, scalable attacks.

Risk 173

Risk Threat Detection Technology Phishing 173

SecureList

FEBRUARY 20, 2025

Kaspersky MDR customers by region Distribution of incidents by industry In 2024, the MDR team observed the highest number of incidents in the industrial (25.7%), financial (14.1%), and government (11.7%) sectors. in government, 17.8% However, if we consider only high-severity incidents, the distribution is somewhat different: 22.8%

Social Engineering 101

Social Engineering Phishing Government Threat Detection 101

Krebs on Security

JANUARY 30, 2024

The government says Urban went by the aliases “ Sosa ” and “ King Bob ,” among others. 2022 that an intrusion had exposed a “limited number” of Twilio customer accounts through a sophisticated social engineering attack designed to steal employee credentials. Twilio disclosed in Aug.

Social Engineering 356

Social Engineering Mobile Passwords Cybercrime 356

Krebs on Security

MARCH 31, 2020

The employee involved in this incident fell victim to a spear-fishing or social engineering attack. Any actions done by the threat actor have been reverted and the impacted customers have been notified. We have taken steps across our technology, processes and employee education, to help prevent these types of attacks in the future.”

Phishing 328

Phishing DNS Social Engineering Accountability 328

Security Affairs

DECEMBER 10, 2024

This social engineering scheme has been amplified by targeted phishing, smishing, and vishing activities, with a noticeable increase around the winter holidays. Once the credit card details were entered, cybercriminals used them for much higher charges at the controlled merchants registered on money mules.A

Social Engineering 111

Social Engineering Phishing Banking DNS 111

eSecurity Planet

NOVEMBER 6, 2024

This data reportedly includes everything from names and addresses to Social Security numbers and bank account details. This attack underscores a critical lesson for businesses: even the most vital institutions, such as a city government, are vulnerable to cyberthreats.

Ransomware 113

Ransomware Authentication Identity Theft Penetration Testing 113

The Last Watchdog

APRIL 11, 2022

While it’s nice to see law enforcement and governments go after the gangs, that won’t stop the monster that has grown out of control, that we, as an industry, continue to feed. They’re easier to attack and provide moderate consistent payouts with little retribution from law enforcement or governments. Bricks in the wall.

Ransomware 235

Ransomware Social Engineering Passwords Engineering 235

eSecurity Planet

FEBRUARY 26, 2025

Cybercriminals disguise messages as urgent notifications from banks, government agencies, or corporate IT teams, tricking users into providing credentials or downloading malware. Mishing is a phishing attack that uses SMS messages instead of emails to deceive victims into revealing sensitive information or clicking malicious links.

Phishing 87

Phishing Mobile Social Engineering Data breaches 87

Webroot

MARCH 3, 2025

During this time, many government agencies and consumer protection organizations come together to help educate consumers on how to keep their personal and financial information secure. Social engineering attacks Social engineering attacks occur when someone uses a fake persona to gain your trust.

Consumer Protection 88

Consumer Protection Identity Theft Scams Social Engineering 88

Quick Heal Antivirus

MARCH 21, 2024

The post Beware: Malicious Android Malware Disguised as Government Alerts. In our high-tech world, sneaky cyber threats can pop up anywhere. Lately, we’ve spotted sneaky malware on Android. appeared first on Quick Heal Blog.

Government 115

Government Malware Cyber threats Social Engineering 115

SecureWorld News

JUNE 17, 2024

While no details were provided about the potential perpetrators, the scam highlights how threat actors exploit the authority of government agencies to trick victims into complying with illicit demands. Ezra Graziano, Director of Federal Accounts at Zimperium, emphasized the urgency for defense against such evolving social engineering tactics.

Social Engineering 113

Social Engineering Scams Artificial Intelligence Engineering 113

Security Affairs

AUGUST 18, 2024

Deciphering the Brain Cipher Ransomware Ideal typosquat ‘solana-py’ steals your crypto wallet keys Ransomware attackers introduce new EDR killer to their arsenal Beyond the wail: deconstructing the BANSHEE infostealer A Deep Dive into a New ValleyRAT Campaign Targeting Chinese Speakers Tusk: unraveling a complex infostealer campaign Zero (..)

Malware 130

Malware Social Engineering Ransomware Government 130

Security Boulevard

MARCH 20, 2025

Amost a dozen state-sponsored threat groups from Russia, China, and North Korea have been exploiting a security flaw in WIndows in attacks on governments and critical infrastructure that date back to 2017. According to Trend Micro's VDI unit, Microsoft has no plans to patch the vulnerability.

Government 100

Government Social Engineering Engineering Malware 100

Malwarebytes

NOVEMBER 20, 2023

CISA and the FBI consider Scattered Spider to be experts that use multiple social engineering techniques, especially phishing, push bombing, and SIM swap attacks, to obtain credentials, install remote access tools, and bypass multi-factor authentication (MFA).

Ransomware 114

Ransomware Government Social Engineering Backups 114

Joseph Steinberg

JULY 13, 2022

Additionally, keep in mind that while Lockdown Mode may make it more difficult for attackers to exploit social engineering in order to compromise devices, until Apple more strictly controls what apps it allows in its app store , potential government spying remains a major problem.

Cybersecurity 258

Cybersecurity Artificial Intelligence Government Social Engineering 258

Security Affairs

AUGUST 28, 2024

Iran-linked group APT33 used new Tickler malware in attacks against organizations in the government, defense, satellite, oil and gas sectors. The group also relied on social engineering efforts in attacks against organizations in the higher education, satellite, and defense sectors through LinkedIn.

Malware 128

Malware Social Engineering Education Government 128

The Last Watchdog

MARCH 20, 2023

Related: How Google, Facebook enable snooping In fact, a majority of scams occur through social engineering. The rise of social media has added to the many user-friendly digital tools scammers, sextortionists, and hackers can leverage in order to manipulate their victims.

Media 214

Media Identity Theft Internet Internet 214

SecureWorld News

FEBRUARY 5, 2025

AI, a double-edged sword AI-driven cybersecurity tools enhance threat detection but also empower attackers with sophisticated social engineering, deepfake campaigns, and automated exploits. Address the talent shortage with focused initiatives Expand government incentives for cybersecurity education and mid-career training.

InfoSec 79

InfoSec Energy and Utilities Cybersecurity Education 79

Security Affairs

MARCH 2, 2024

government and defense entities. private sector and government computer systems,” said Assistant Attorney General Matthew G. “In addition to spearphishing, the conspirators utilized social engineering, which involved impersonating others, generally women, in order to obtain the confidence of victims.

Hacking 137

Hacking Identity Theft Social Engineering Accountability 137

SecureList

NOVEMBER 28, 2024

The secure USB drive was developed by a government entity in Southeast Asia to securely store and transfer files between machines in sensitive environments. Chinese-speaking activity In July 2021, we detected a campaign called ExCone targeting government entities in Russia.

Malware 118

Malware Government Software Spyware 118

Hacker's King

DECEMBER 16, 2024

In the digital age, cyber-attacks are a growing concern for individuals, businesses, and governments worldwide. Recent incidents include attacks on government agencies, critical infrastructure, and major corporations, highlighting the vulnerability of national cybersecurity defenses.

Cyber Attacks 59

Cyber Attacks Phishing Artificial Intelligence Penetration Testing 59

Schneier on Security

APRIL 11, 2024

The companies benefiting from these freely available libraries need to actually step up, and the government can force them to. Certainly the security of these libraries needs to be part of any broad government cybersecurity initiative. government needs to recognize this as a national security problem and start treating it as such.

Software 361

Software Engineering Internet Internet 361

SecureList

NOVEMBER 29, 2024

Mobile statistics Targeted attacks New APT threat actor targets Russian government entities In May 2024, we discovered a new APT targeting Russian government organizations. Two months later, in July 2024, CloudSorcerer launched further attacks against Russian government organizations and IT companies.

Energy and Utilities 104

Energy and Utilities Ransomware Malware Government 104

Security Boulevard

MARCH 20, 2025

As organizations work to establish AI governance frameworks, many are taking a cautious approach, restricting access to certain AI applications as they refine policies around data protection.U.S. Figure 1: Top AI applications by transaction volume Enterprises blocked a large proportion of AI transactions: 59.9%

Social Engineering 76

Social Engineering Phishing Risk Insurance 76

Security Affairs

FEBRUARY 8, 2024

Generative AI Impact : Generative AI will have a big role in cyber security, especially in areas like email protection and fighting social engineering attacks. US Sanctions Iranian Officials : The US government sanctioned six Iranian officials in response to cyber attacks on an Israeli PLC vendor.

Social Engineering 141

Social Engineering Cyber Attacks Cyber Insurance IoT 141

The Last Watchdog

FEBRUARY 14, 2022

Automating these processes with the help of Identity Governance and Administration ( IGA ) tools should be a top priority for your IT department. Multi-Factor Authentication ( MFA ) can tremendously increase their access security and prevent phishing and social engineering attacks.

CISO 245

CISO Social Engineering Authentication Risk 245