Internet, Scams and Web Fraud - Cyber Security Informer

Chinese Innovations Spawn Wave of Toll Phishing Via SMS

Krebs on Security

JANUARY 16, 2025

Last week, the Massachusetts Department of Transportation (MassDOT) warned residents to be on the lookout for a new SMS phishing or “smishing” scam targeting users of EZDriveMA , MassDOT’s all electronic tolling program. In October 2023, KrebsOnSecurity wrote about a massive uptick in SMS phishing scams targeting U.S.

Phishing

Phishing Scams Mobile Passwords

PayPal Phishing Scam Uses Invoices Sent Via PayPal

Krebs on Security

AUGUST 18, 2022

While the phishing message attached to the invoice is somewhat awkwardly worded, there are many convincing aspects of this hybrid scam. Also, the email headers in the phishing message (PDF) show that it passed all email validation checks as being sent by PayPal, and that it was sent through an Internet address assigned to PayPal.

Scams

Scams Phishing Accountability Software

Scam ‘Funeral Streaming’ Groups Thrive on Facebook

Krebs on Security

SEPTEMBER 18, 2024

One of the many scam funeral group pages on Facebook. The page listed the correct time and date of the funeral service, which it claimed could be streamed over the Internet by following a link that led to a page requesting credit card information. xyz is currently hosted at a Bangladeshi web hosting provider named cloudswebserver[.]com

Scams

Scams DNS Internet Internet

Webinars

How to Avoid Pitfalls In Automation: Keep Humans In the Loop

MORE WEBINARS

Who’s Behind the ‘Web Listings’ Mail Scam?

Krebs on Security

MARCH 23, 2020

political campaigns, cities and towns had paid a shady company called Web Listings Inc. The story concluded that this dubious service had been scamming people and companies for more than a decade, and promised a Part II to explore who was behind Web Listings. In December 2018, KrebsOnSecurity looked at how dozens of U.S.

Scams

Scams Marketing Internet Internet

Booking.com Phishers May Leave You With Reservations

Krebs on Security

NOVEMBER 1, 2024

According to the market share website statista.com , booking.com is by far the Internet’s busiest travel service, with nearly 550 million visits in September. A scan of social media networks showed this is not an uncommon scam. SecureWorks said these attacks had been going on since at least March 2023.

Phishing

Phishing Accountability Artificial Intelligence Cybercrime

How to Tell a Job Offer from an ID Theft Trap

Krebs on Security

MAY 21, 2021

One of the oldest scams around — the fake job interview that seeks only to harvest your personal and financial data — is on the rise, the FBI warns. Here’s the story of a recent LinkedIn impersonation scam that led to more than 100 people getting duped, and one almost-victim who decided the job offer was too-good-to-be-true.

Scams

Scams Accountability Advertising Web Fraud

‘Tis the Season for the Wayward Package Phish

Krebs on Security

NOVEMBER 4, 2021

Here’s a look at a fairly elaborate SMS-based phishing scam that spoofs FedEx in a bid to extract personal and financial information from unwary recipients. Most phishing scams invoke a temporal element that warns of negative consequences should you fail to respond or act quickly. com — stopped resolving. com, g001bfedeex[.]com,

Phishing

Phishing Scams Mobile DNS

GoDaddy Employees Used in Attacks on Multiple Cryptocurrency Services

Krebs on Security

NOVEMBER 21, 2020

The attacks were facilitated by scams targeting employees at GoDaddy , the world’s largest domain name registrar, KrebsOnSecurity has learned. In August 2020, KrebsOnSecurity warned about a marked increase in large corporations being targeted in sophisticated voice phishing or “vishing” scams. and 11:00 p.m.

Cryptocurrency

Cryptocurrency VPN Scams Social Engineering

Massive Losses Define Epidemic of ‘Pig Butchering’

Krebs on Security

JULY 21, 2022

The term “pig butchering” refers to a time-tested, heavily scripted, and human-intensive process of using fake profiles on dating apps and social media to lure people into investing in elaborate scams. In a more visceral sense, pig butchering means fattening up a prey before the slaughter.

Scams

Scams Cryptocurrency Marketing Internet

China-based SMS Phishing Triad Pivots to Banks

Krebs on Security

APRIL 10, 2025

For a $500 month subscription, the customer can wave their phone at any payment terminal that accepts Apple or Google pay, and the app will relay an NFC transaction over the Internet from a stolen wallet on a phone in China. Phishers using multiple virtualized Android devices to orchestrate and distribute RCS-based scam campaigns.

Phishing

Phishing Banking Mobile Retail

How Phishers Are Slinking Their Links Into LinkedIn

Krebs on Security

FEBRUARY 3, 2022

Urlscan also found this phishing scam from Jan. Linkedin’s parent company — Microsoft Corp — is by all accounts the most-phished brand on the Internet today. The best advice to sidestep phishing scams is to avoid clicking on links that arrive unbidden in emails, text messages and other mediums.

Phishing

Phishing Marketing Scams Accountability

How Do You Fight a $12B Fraud Problem? One Scammer at a Time

Krebs on Security

OCTOBER 25, 2018

The fraudsters behind the often laughable Nigerian prince email scams have long since branched out into far more serious and lucrative forms of fraud, including account takeovers, phishing, dating scams, and malware deployment. The FBI says BEC scams netted thieves more than $12 billion between 2013 and 2018.

Scams

Scams Accountability Media Banking

The Life Cycle of a Breached Database

Krebs on Security

JULY 29, 2021

One might even say passwords are the fossil fuels powering most IT modernization: They’re ubiquitous because they are cheap and easy to use, but that means they also come with significant trade-offs — such as polluting the Internet with weaponized data when they’re leaked or stolen en masse. TARGETED PHISHING.

Passwords

Passwords Password Management Phishing Scams

Arrest, Raids Tied to ‘U-Admin’ Phishing Kit

Krebs on Security

FEBRUARY 8, 2021

” The operation was carried out in coordination with the FBI and authorities in Australia, which was particularly hard hit by phishing scams perpetrated by U-Admin customers. The security flaw was briefly alluded to in a 2018 writeup on U-Admin by the SANS Internet Storm Center. The U-Admin phishing panel interface. Image: fr3d.hk/blog.

Phishing

Phishing Scams Banking Mobile

Thread Hijacking: Phishes That Prey on Your Curiosity

Krebs on Security

MARCH 28, 2024

Thread hijacking attacks are hardly new, but that is mainly true because many Internet users still don’t know how to identify them. One key reason thread hijacking is so successful is that these attacks generally do not include the tell that exposes most phishing scams: A fabricated sense of urgency.

Phishing

Phishing Scams Accountability Passwords

When Low-Tech Hacks Cause High-Impact Breaches

Krebs on Security

FEBRUARY 26, 2023

The general manager of Escrow.com said he suspected the call was a scam, but decided to play along for about an hour — all the while recording the call and coaxing information out of the scammer. One multifactor option — physical security keys — appears to be immune to these advanced scams.

Hacking

Hacking Social Engineering Phishing Scams

A Deep Dive Into the Residential Proxy Service ‘911’

Krebs on Security

JULY 18, 2022

For the past seven years, an online service known as 911 has sold access to hundreds of thousands of Microsoft Windows computers daily, allowing customers to route their Internet traffic through PCs in virtually any country or city around the globe — but predominantly in the United States. THE INTERNET NEVER FORGETS.

VPN

VPN Computers and Electronics Antivirus Software

How to Shop Online Like a Security Pro

Krebs on Security

NOVEMBER 23, 2018

‘Tis the season when even those who know a thing or two about Internet scams tend to let down their guard in the face of an eye-popping discount or the stress of last-minute holiday shopping. Even people who shop mainly at big-name online stores can get scammed if they’re not wary of too-good-to-be-true offers.

Scams

Scams Wireless Phishing Banking

Don’t Let Your Domain Name Become a “Sitting Duck”

Krebs on Security

JULY 31, 2024

Your Web browser knows how to find a site like example.com thanks to the global Domain Name System (DNS), which serves as a kind of phone book for the Internet by translating human-friendly website names (example.com) into numeric Internet addresses.

DNS

DNS Internet Internet Phishing

U.S. Secret Service: “Massive Fraud” Against State Unemployment Insurance Programs

Krebs on Security

MAY 16, 2020

In those schemes, the scammers typically recruit people — often victims of online romance scams or those who also are out of work and looking for any source of income — to receive direct deposits from the fraudulent transactions, and then forward the bulk of the illicit funds to the perpetrators.

Insurance

Insurance Banking Identity Theft Accountability

No SOCKS, No Shoes, No Malware Proxy Services!

Krebs on Security

AUGUST 2, 2022

With the recent demise of several popular “proxy” services that let cybercriminals route their malicious traffic through hacked PCs, there is now something of a supply chain crisis gripping the underbelly of the Internet. A review of the Internet addresses historically used by Super-socks[.]biz Image: Spur.us.

Malware

Malware Cybercrime Internet Internet

SMS Phishers Harvested Phone Numbers, Shipment Data from UPS Tracking Tool

Krebs on Security

JUNE 22, 2023

In March, 2023, a reader named Dylan from British Columbia wrote in to say he’d received one of these shipping fee scam messages not long after placing an order to buy gobs of building blocks directly from Lego.com. The message included his full name, phone number, and postal code, and urged him to click a link to mydeliveryfee-ups[.]info

Phishing

Phishing Retail Mobile Scams

Bomb Threat, Sextortion Spammers Abused Weakness at GoDaddy.com

Krebs on Security

JANUARY 22, 2019

Experts at Cisco Talos and other security firms quickly drew parallels between the two mass spam campaigns, pointing to a significant overlap in Russia-based Internet addresses used to send the junk emails. domaincontrol.com and ns18.domaincontrol.com). domaincontrol.com).

DNS

DNS Internet Internet Computers and Electronics

Riding the State Unemployment Fraud ‘Wave’

Krebs on Security

MAY 23, 2020

When a reliable method of scamming money out of people, companies or governments becomes widely known, underground forums and chat networks tend to light up with activity as more fraudsters pile on to claim their share. And that’s exactly what appears to be going on right now as multiple U.S.

Insurance

Insurance Accountability Banking Government

Who and What is Behind the Malware Proxy Service SocksEscort?

Krebs on Security

JULY 25, 2023

Researchers this month uncovered a two-year-old Linux-based remote access trojan dubbed AVrecon that enslaves Internet routers into botnet that bilks online advertisers and performs password-spraying attacks. SocksEscort[.]com com , is what’s known as a “SOCKS Proxy” service.

Malware

Malware VPN Internet Internet

Calendar Meeting Links Used to Spread Mac Malware

Krebs on Security

FEBRUARY 28, 2024

In a post to its Twitter/X account last month, Signum Capital warned that a fake profile pretending to be their employee Mr. Lee was trying to scam people on Telegram. The file that Doug ran is a simple Apple Script (file extension “ scpt”) that downloads and executes a malicious trojan made to run on macOS systems.

Malware

Malware Cryptocurrency Software Phishing

Using Google Search to Find Software Can Be Risky

Krebs on Security

JANUARY 25, 2024

19, 2024) of more than 200 domains at the Internet address 93.190.143[.]252 Hegel noted that the spike in malicious software-themed ads came not long after Microsoft started blocking by default Office macros in documents downloaded from the Internet. How do we know freecad-us[.]org org is malicious? com , filezillasoft[.]com

Software

Software Advertising Malware Accountability

Gift Card Gang Extracts Cash From 100k Inboxes Daily

Krebs on Security

SEPTEMBER 2, 2021

Some of the most successful and lucrative online scams employ a “low-and-slow” approach — avoiding detection or interference from researchers and law enforcement agencies by stealing small bits of cash from many people over an extended period.

Accountability

Accountability Authentication Passwords Hacking

How 1-Time Passcodes Became a Corporate Liability

Krebs on Security

AUGUST 30, 2022

On July 20, the attackers turned their sights on internet infrastructure giant Cloudflare.com , and the intercepted credentials show at least five employees fell for the scam (although only two employees also provided the crucial one-time MFA code). Image: Cloudflare.com. 2021 post about the change. ”

Mobile

Mobile Phishing Authentication Accountability

Karma Catches Up to Global Phishing Service 16Shop

Krebs on Security

AUGUST 17, 2023

The international police organization INTERPOL said last week it had shuttered the notorious 16Shop, a popular phishing-as-a-service platform launched in 2017 that made it simple for even complete novices to conduct complex and convincing phishing scams.

Phishing

Phishing Passwords Hacking Internet

Who’s Behind the Botnet-Based Service BHProxies?

Krebs on Security

FEBRUARY 24, 2023

Last year, researchers at Minerva Labs spotted the botnet being used to blast out sextortion scams. BitSight researchers found significant overlap in the Internet addresses used by those domains and a domain called BHproxies[.]com.

Accountability

Accountability Advertising Marketing Malware

Feds Bust Up Dark Web Hub Wall Street Market

Krebs on Security

MAY 3, 2019

The complaint alleges that for nearly three years, WSM was operated on the dark web by three men who engineered an “exit scam” last month, absconding with all of the virtual currency held in marketplace escrow and user accounts. “Make it public and things gonna be worse,” the message warned.

Marketing

Marketing Accountability Scams Engineering

Fla. Man Charged in SIM-Swapping Spree is Key Suspect in Hacker Groups Oktapus, Scattered Spider

Krebs on Security

JANUARY 30, 2024

As I wrote in that story, Foreshadow appears to have served as a “holder” — a term used to describe a low-level member of any SIM-swapping group who agrees to carry out the riskiest and least rewarding role of the crime: Physically keeping and managing the various mobile devices and SIM cards that are used in SIM-swapping scams.

Social Engineering

Social Engineering Mobile Passwords Cybercrime

Arrest, Raids Tied to ‘U-Admin’ Phishing Kit

Security Boulevard

FEBRUARY 8, 2021

The operation was carried out in coordination with the FBI and authorities in Australia, which was particularly hard hit by phishing scams perpetrated by U-Admin customers. The post Arrest, Raids Tied to ‘U-Admin’ Phishing Kit appeared first on Security Boulevard.

Phishing

Phishing Scams Software Web Fraud

Interview With a Crypto Scam Investment Spammer

Krebs on Security

MAY 22, 2023

Social networks are constantly battling inauthentic bot accounts that send direct messages to users promoting scam cryptocurrency investment platforms. ” One of the crypto investment scam messages promoted in the spam campaigns on Mastodon this month.

Scams

Scams DDOS Cryptocurrency Accountability

Double-Your-Crypto Scams Share Crypto Scam Host

Krebs on Security

APRIL 11, 2022

Online scams that try to separate the unwary from their cryptocurrency are a dime a dozen, but a great many seemingly disparate crypto scam websites tend to rely on the same dodgy infrastructure providers to remain online in the face of massive fraud and abuse complaints from their erstwhile customers. ” Ark-x2[.]org

Scams

Scams Cryptocurrency Media Hacking

How Phished Data Turns into Apple & Google Wallets

Krebs on Security

FEBRUARY 18, 2025

But they also offer a more cutting-edge mobile fraud technology: Merrill found that at least one of the Chinese phishing groups sells an Android app called “ ZNFC ” that can relay a valid NFC transaction to anywhere in the world. “The software can work from anywhere in the world,” Merrill said.

Phishing

Phishing Mobile Scams Banking

Scammers Sent Uber to Take Elderly Lady to the Bank

Krebs on Security

AUGUST 4, 2022

Email scammers sent an Uber to the home of an 80-year-old woman who responded to a well-timed email scam, in a bid to make sure she went to the bank and wired money to the fraudsters. But my mom went over to the neighbor’s house and they saw it for what it was — a scam.”

Banking

Banking Scams Accountability Passwords

Hackers Claim They Breached T-Mobile More Than 100 Times in 2022

Krebs on Security

FEBRUARY 28, 2023

First, they included an offer to use a mutually trusted “middleman” or escrow provider for the transaction (to protect either party from getting scammed). Thus, the second factor cannot be phished, either over the phone or Internet. One of the groups that reliably posted “Tmo up!”

Mobile

Mobile Phishing Authentication Advertising

Sipping from the Coronavirus Domain Firehose

Krebs on Security

APRIL 16, 2020

As a result, domain name registrars are under increasing pressure to do more to combat scams and misinformation during the COVID-19 pandemic. By most measures, the volume of new domain registrations that include the words “Coronavirus” or “Covid” has closely tracked the spread of the deadly virus.

Cyber threats

Cyber threats Phishing Data collection Government

How to Lose a Fortune with Just One Bad Click

Krebs on Security

DECEMBER 18, 2024

Then one day, while scouring the Internet for signs that others may have been phished by Daniel, he encountered Griffin posting on Reddit about the phone number involved in his recent bitcoin theft. “No one gets arrested,” Daniel enthused to Junseth in the May 7 podcast, which quickly went viral on social media.

Cryptocurrency

Cryptocurrency Accountability Authentication Phishing

Infrastructure Laundering: Blending in with the Cloud

Krebs on Security

JANUARY 30, 2025

In October 2024, the security firm Silent Push published a lengthy analysis of how Amazon AWS and Microsoft Azure were providing services to Funnull, a two-year-old Chinese content delivery network that hosts a wide variety of fake trading apps, pig butchering scams , gambling websites, and retail phishing pages. cloud providers.

Accountability

Accountability Scams Passwords Retail

Chinese Innovations Spawn Wave of Toll Phishing Via SMS

PayPal Phishing Scam Uses Invoices Sent Via PayPal

Webinars

Trending Sources

Scam ‘Funeral Streaming’ Groups Thrive on Facebook

Webinars

Who’s Behind the ‘Web Listings’ Mail Scam?

Booking.com Phishers May Leave You With Reservations

How to Tell a Job Offer from an ID Theft Trap

‘Tis the Season for the Wayward Package Phish

GoDaddy Employees Used in Attacks on Multiple Cryptocurrency Services

Massive Losses Define Epidemic of ‘Pig Butchering’

China-based SMS Phishing Triad Pivots to Banks

How Phishers Are Slinking Their Links Into LinkedIn

How Do You Fight a $12B Fraud Problem? One Scammer at a Time

The Life Cycle of a Breached Database

Arrest, Raids Tied to ‘U-Admin’ Phishing Kit

Thread Hijacking: Phishes That Prey on Your Curiosity

When Low-Tech Hacks Cause High-Impact Breaches

A Deep Dive Into the Residential Proxy Service ‘911’

How to Shop Online Like a Security Pro

Don’t Let Your Domain Name Become a “Sitting Duck”

U.S. Secret Service: “Massive Fraud” Against State Unemployment Insurance Programs

No SOCKS, No Shoes, No Malware Proxy Services!

SMS Phishers Harvested Phone Numbers, Shipment Data from UPS Tracking Tool

Bomb Threat, Sextortion Spammers Abused Weakness at GoDaddy.com

Riding the State Unemployment Fraud ‘Wave’

Who and What is Behind the Malware Proxy Service SocksEscort?

Calendar Meeting Links Used to Spread Mac Malware

Using Google Search to Find Software Can Be Risky

Gift Card Gang Extracts Cash From 100k Inboxes Daily

How 1-Time Passcodes Became a Corporate Liability

Karma Catches Up to Global Phishing Service 16Shop

Who’s Behind the Botnet-Based Service BHProxies?

Feds Bust Up Dark Web Hub Wall Street Market

Fla. Man Charged in SIM-Swapping Spree is Key Suspect in Hacker Groups Oktapus, Scattered Spider

Arrest, Raids Tied to ‘U-Admin’ Phishing Kit

Interview With a Crypto Scam Investment Spammer

Double-Your-Crypto Scams Share Crypto Scam Host

How Phished Data Turns into Apple & Google Wallets

Scammers Sent Uber to Take Elderly Lady to the Bank

Hackers Claim They Breached T-Mobile More Than 100 Times in 2022

Sipping from the Coronavirus Domain Firehose

How to Lose a Fortune with Just One Bad Click

Infrastructure Laundering: Blending in with the Cloud

Stay Connected