Krebs on Security

OCTOBER 1, 2018

Most of us have been trained to be wary of clicking on links and attachments that arrive in emails unexpected, but it’s easy to forget scam artists are constantly dreaming up innovations that put a new shine on old-fashioned telephone-based phishing scams. Think you’re too smart to fall for one? A CLOSE CALL.

Scams 279

Scams Phishing Banking Mobile 279

SecureWorld News

MARCH 20, 2025

March Madness is here, and while fans are busy filling out brackets and making last-minute bets, cybercriminals are running their own full-court presstargeting unsuspecting fans with phishing scams, fake betting apps, and credential-harvesting schemes.

Scams 81

Scams Social Engineering Mobile Phishing 81

Krebs on Security

NOVEMBER 21, 2024

technology companies between 2021 and 2023, including LastPass , MailChimp , Okta , T-Mobile and Twilio. The targeted SMS scams asked employees to click a link and log in at a website that mimicked their employer’s Okta authentication page. Image: Amitai Cohen twitter.com/amitaico.

Identity Theft 254

Identity Theft Phishing Cryptocurrency Accountability 254

Security Affairs

NOVEMBER 30, 2024

SpyLoan apps exploit social engineering to gain sensitive user data and excessive permissions, leading to extortion, harassment, and financial loss. Some of the malicious apps were promoted through deceptive advertising on social media. Some apps were suspended by Google from Google Play while others were updated by the developers.

Social Engineering 129

Social Engineering Media Mobile Scams 129

Penetration Testing

MAY 13, 2024

AhnLab’s Mobile Analysis Team has issued an alarm about an insidious new breed of romance scams specifically targeting cryptocurrency enthusiasts.

Social Engineering 94

Social Engineering Cryptocurrency Engineering Penetration Testing 94

Duo's Security Blog

DECEMBER 14, 2023

But as it turns out, John was a victim of a phishing scam, a type of social engineering attack where the cybercriminal impersonated John’s IT department to gain his trust and trick him into revealing his login credentials. What is social engineering? So clearly, John isn’t alone.

Social Engineering 130

Social Engineering Engineering Phishing Passwords 130

eSecurity Planet

FEBRUARY 26, 2025

Cybercriminals are shifting their focus from emails to text messages, using mishing a more deceptive form of phishing to target mobile users and infiltrate corporate networks, according to new security research by Zimperium. Zimperium found that mishing activity peaked in August 2024, with over 1,000 daily attacks recorded. What is mishing?

Phishing 87

Phishing Mobile Social Engineering Data breaches 87

Krebs on Security

FEBRUARY 26, 2023

GoDaddy described the incident at the time in general terms as a social engineering attack, but one of its customers affected by that March 2020 breach actually spoke to one of the hackers involved. But we do know the March 2020 attack was precipitated by a spear-phishing attack against a GoDaddy employee.

Hacking 327

Hacking Social Engineering Phishing Scams 327

Security Boulevard

MAY 30, 2023

Deepfake social engineering scams have become an increasingly scary trend among cybercriminals to socially engineer victims into submission. The threat actors are using Artificial Intelligence (AI) and Machine Learning (ML) voice cloning tools to disperse misinformation for cybercriminal scams.

Social Engineering 79

Social Engineering Scams Engineering Artificial Intelligence 79

Malwarebytes

JANUARY 13, 2025

A smishing (SMS phishing) campaign is targeting iMessage users, attempting to socially engineer them into bypassing Apple’s built in phishing protection. How to avoid smishing scams Never reply to suspicious messages, even if its only a Y or 1. Report bogus messages and numbers.

Phishing 130

Phishing Social Engineering Scams Mobile 130

SecureList

MARCH 25, 2025

Note that for mobile banking malware, we retrospectively revised the 2023 numbers to provide more accurate statistics. Amazon Online Shopping was mimicked by 33.19% of all phishing and scam pages targeting online store users in 2024. Mobile malware Nearly 248,000 users encountered mobile banking malware in 2024 almost 3.6

Phishing 74

Phishing Banking Scams Mobile 74

Security Boulevard

DECEMBER 14, 2021

Phishing scams continue to top the list of cybercrimes. Unfortunately, it’s likely 2022 will continue this trend as these types of social engineering attacks become more sophisticated. The post Preparing for Evolving Phishing Scams appeared first on Security Boulevard. The statistics are alarming.

Scams 126

Scams Phishing Social Engineering Cybercrime 126

Krebs on Security

AUGUST 19, 2020

Allen said a typical voice phishing or “vishing” attack by this group involves at least two perpetrators: One who is social engineering the target over the phone, and another co-conspirator who takes any credentials entered at the phishing page and quickly uses them to log in to the target company’s VPN platform in real-time.

Phishing 363

Phishing VPN Social Engineering Media 363

SecureList

DECEMBER 17, 2024

Both scams targeted individual users only. The agent requests shipping details We were notified the following day that our order had shipped and could be tracked with a special mobile app linked in a message from the manager. The phishing link sent by the manager We have to give it to the operators: the scam was quite convincing.

Scams 93

Scams Malware Social Engineering Banking 93

SecureWorld News

DECEMBER 10, 2024

Zimperium's zLabs team has uncovered a dangerous new variant of the Antidot banking trojan, dubbed AppLite, that is targeting Android devices through sophisticated mobile phishing (mishing) campaigns. Regular Updates: Ensure mobile security tools and detection parsers are updated to counter evasion techniques.

Mobile 108

Mobile Social Engineering Banking Phishing 108

The Hacker News

MARCH 21, 2022

Social engineering attacks leveraging a combination of romantic lures and cryptocurrency fraud have been luring unsuspecting victims into installing fake apps by taking advantage of legitimate iOS features like TestFlight and Web Clips. This style of

Scams 99

Scams Social Engineering Mobile Cryptocurrency 99

Security Affairs

NOVEMBER 30, 2024

SpyLoan apps exploit social engineering to gain sensitive user data and excessive permissions, leading to extortion, harassment, and financial loss. Some of the malicious apps were promoted through deceptive advertising on social media. Some apps were suspended by Google from Google Play while others were updated by the developers.

Social Engineering 98

Social Engineering Media Scams Advertising 98

Krebs on Security

AUGUST 30, 2022

A recent spate of SMS phishing attacks from one cybercriminal group has spawned a flurry of breach disclosures from affected companies, which are all struggling to combat the same lingering security threat: The ability of scammers to interact directly with employees through their mobile devices. Image: Cloudflare.com. In an Aug.

Mobile 341

Mobile Phishing Authentication Accountability 341

Malwarebytes

FEBRUARY 10, 2021

English: the international language of scamming. Whether this is due to older users being theoretically more susceptible to scams, or simply that their online footprint is easier to find, is not decided either way. Sticking to your mobile phone gives you the lowest risk of attack, and the highest risk comes with using multiple devices.

Scams 138

Scams Phishing Data breaches Malware 138

Krebs on Security

JANUARY 30, 2024

In each attack, the victims saw their email and financial accounts compromised after suffering an unauthorized SIM-swap, wherein attackers transferred each victim’s mobile phone number to a new device that they controlled. Prosecutors say Noah Michael Urban of Palm Coast, Fla., Twilio disclosed in Aug.

Social Engineering 357

Social Engineering Mobile Passwords Cybercrime 357

Webroot

JANUARY 5, 2022

Each year, as online shopping ramps up in the weeks before the holidays, so do online scams targeting the elderly. In fact, COVID-19, Zoom meetings, vaccination recommendations and travel warnings all provide ample and unique precedent for social engineering attacks. The most common types of online elder fraud.

Scams 135

Scams Social Engineering Antivirus Internet 135

SecureList

FEBRUARY 26, 2024

The most common threat to mobile devices was adware: 40.8% million malicious installation packages, 154,000 of these containing a mobile banking Trojan. The year’s trends Malware, adware, and riskware attacks on mobile devices dipped in February, only to rise steadily until the end of the year. of all threats detected.

Mobile 137

Mobile Malware Adware Banking 137

Krebs on Security

APRIL 6, 2022

In some ways, the attacks from LAPSUS$ recall the July 2020 intrusion at Twitter , wherein the accounts for Apple, Bill Gates, Jeff Bezos, Kanye West, Uber and others were made to tweet messages inviting the world to participate in a cryptocurrency scam that promised to double any amount sent to specific wallets. ” SMASH & GRAB. .”

Social Engineering 291

Social Engineering Phishing Engineering Accountability 291

CyberSecurity Insiders

NOVEMBER 25, 2021

In the latest report released by Avast, it was revealed that ransomware spreading hackers were constantly targeting elderly people and youngsters were being lured into Instagram or TikTok scams. And this is where cyber criminals are smartly targeting these groups with scams by adopting the current trending topics or usage trends.

Scams 117

Scams Ransomware Identity Theft Adware 117

SecureList

MARCH 1, 2021

In 2020, Kaspersky mobile products and technologies detected: 5,683,694 malicious installation packages, 156,710 new mobile banking Trojans, 20,708 new mobile ransomware Trojans. Pandemic theme in mobile threats. The mobile malware Trojan-Ransom.AndroidOS.Agent.aq The year in figures. Trends of the year.

Mobile 145

Mobile Malware Adware Banking 145

Security Affairs

DECEMBER 10, 2024

This social engineering scheme has been amplified by targeted phishing, smishing, and vishing activities, with a noticeable increase around the winter holidays. Once the credit card details were entered, cybercriminals used them for much higher charges at the controlled merchants registered on money mules.A

Social Engineering 111

Social Engineering Phishing Banking DNS 111

Malwarebytes

MARCH 29, 2021

There are some scams on Steam which have stood the test of time. Like Steam phishing campaigns, this particular Steam scam—referred to loosely as the “I accidentally reported you” or “I accidentally reported your account” scam—has been coming and going since initial reports of it emerged in late 2018.

Scams 145

Scams Accountability Social Engineering Passwords 145

Hot for Security

JUNE 15, 2021

Our mobile devices are not just a means to communicate with others. Mobile security is often overlooked by many technology users, who dismiss the reality of security risks brought by careless interactions with the digital world. Threat actors know that users often behave recklessly with their smart devices. Back up data.

Mobile 137

Mobile Banking Phishing Social Engineering 137

SecureWorld News

MARCH 11, 2022

Famed hacker Kevin Mitnick learned early on to use emotion to manipulate and socially engineer his targets. At the time, his targets were typically sysadmins, and the social engineering started with a phone call. Here's an example of a smishing message that came to an Instagram user on a mobile device.

Social Engineering 96

Social Engineering Engineering Phishing Accountability 96

The Last Watchdog

APRIL 10, 2019

These smaller institutions, much like the giants, are hustling to expand mobile banking services. Yet, they are much less well equipped to detect and repel cyber attackers, who are relentlessly seeking out and exploiting the fresh attack vectors spinning out of expansion of mobile banking. Talk more soon.

Banking 147

Banking Mobile Accountability Artificial Intelligence 147

Malwarebytes

JANUARY 20, 2022

Phishing campaigns get the job done with social engineering and bogus websites. As you’ll likely check balances at short notice on your mobile, it’s worth finding official card pages now. All of these tips combined will help you avoid gift card scams. . Shall we take a look? Balancing your gift cards.

Scams 137

Scams Social Engineering Engineering Phishing 137

Security Boulevard

MARCH 16, 2023

Ben is disappointed: FBI reports huge rise in cryptocurrency investment scams. The post Scams Lost US $10 BILLION in 2022 — Crypto Fraud Grows Fast appeared first on Security Boulevard. Why am I not surprised?

Scams 140

Scams Cryptocurrency Social Engineering Internet 140

Security Boulevard

APRIL 16, 2024

The post SIM Swappers Try Bribing T-Mobile and Verizon Staff $300 appeared first on Security Boulevard. Not OK: SMS 2FA — Widespread spam targets carrier employees, as scrotes try harder to evade two-factor authentication.

Mobile 132

Mobile Authentication Social Engineering Wireless 132

Krebs on Security

OCTOBER 25, 2018

The fraudsters behind the often laughable Nigerian prince email scams have long since branched out into far more serious and lucrative forms of fraud, including account takeovers, phishing, dating scams, and malware deployment. The FBI says BEC scams netted thieves more than $12 billion between 2013 and 2018.

Scams 228

Scams Accountability Media Banking 228

SecureWorld News

JUNE 17, 2024

While no details were provided about the potential perpetrators, the scam highlights how threat actors exploit the authority of government agencies to trick victims into complying with illicit demands. Ezra Graziano, Director of Federal Accounts at Zimperium, emphasized the urgency for defense against such evolving social engineering tactics.

Social Engineering 112

Social Engineering Scams Artificial Intelligence Engineering 112

Security Boulevard

DECEMBER 13, 2022

A recent uptick in the reports of SMS-based business email compromise (BEC) messages may indicate a wider trend that has seen a surge of phishing scams via text messages. Phishing scams are prevalent in the SMS threat landscape, and now BEC attacks are also going mobile,” according to a Trustwave blog post that pointed to.

Mobile 98

Mobile Scams Phishing Social Engineering 98

Krebs on Security

JULY 22, 2020

These individuals said they were only customers of the person who had access to Twitter’s internal employee tools, and were not responsible for the actual intrusion or bitcoin scams that took place that day. ALWAYS IN DISCORD. The account “@shinji,” a.k.a.

Hacking 331

Hacking Accountability Scams Media 331