Schneier on Security

FEBRUARY 21, 2024

First-person account of someone who fell for a scam, that started as a fake Amazon service rep and ended with a fake CIA agent, and lost $50,000 cash. And this is not a naive or stupid person. The details are fascinating. And if you think it couldn’t happen to you, think again. Given the right set of circumstances, it can.

Scams 328

Scams Accountability Social Engineering Engineering 328

Krebs on Security

JANUARY 7, 2025

Before we get to the Apple scam in detail, we need to revisit Tony’s case. Each participant in the call has a specific role, including: -The Caller: The person speaking and trying to social engineer the target. The Owner: The phishing panel owner, who will frequently listen in on and participate in scam calls.

Phishing 342

Phishing Cryptocurrency Accountability Social Engineering 342

CSO Magazine

SEPTEMBER 16, 2021

Social engineering definition. Social engineering is the art of exploiting human psychology, rather than technical hacking techniques, to gain access to buildings, systems or data. To read this article in full, please click here

Social Engineering 145

Social Engineering Engineering Scams Passwords 145

Webroot

JULY 6, 2022

Social engineering attacks like phishing, baiting and scareware have skyrocketed to take the top spot as the #1 cause of cybersecurity breaches. So what makes social engineering so effective? When cybercriminals use social engineering tactics, they prey on our natural instinct to help one another.

Social Engineering 137

Social Engineering Engineering Scams Phishing 137

CyberSecurity Insiders

JUNE 17, 2022

In what appears as an operation first of its kind, Interpol has arrested over 2000 criminals who launched social engineering attacks worldwide. Usually, in such scams, cybercriminals manipulate victims in the disguise of company employees or individuals. More details about the scam will be updated shortly! .

Social Engineering 132

Social Engineering Engineering Scams Identity Theft 132

Security Boulevard

DECEMBER 10, 2024

The post Scam Kit Maker Rebuilding Business After Telegram Channel Shut Down appeared first on Security Boulevard.

Scams 120

Scams Phishing Social Engineering Engineering 120

Security Through Education

FEBRUARY 9, 2022

At Social-Engineer, LLC (SECOM), we define social engineering as “any act that influences a person to take an action that may or may not be in their best interest.” If you Google “social engineering,” you will get a very different and more negative definition. billion to phone scams.

Social Engineering 128

Social Engineering Engineering Scams Education 128

Security Boulevard

JANUARY 27, 2025

The post Hackers Use Malicious PDFs, pose as USPS in Mobile Phishing Scam appeared first on Security Boulevard. Postal Service, in phishing campaign targeting mobile device users in hope that victims will divulge credentials and personal information, Zimperium researchers say.

Mobile 116

Mobile Scams Phishing Social Engineering 116

Google Security

MARCH 4, 2025

Product Manager Google Messages and RCS Spam and Abuse Google has been at the forefront of protecting users from the ever-growing threat of scams and fraud with cutting-edge technologies and security expertise for years. Were now introducing Scam Detection to detect a wider range of fraudulent activities.

Scams 89

Scams Social Engineering Mobile Engineering 89

Schneier on Security

MAY 1, 2024

Scammers tricked a company into believing they were dealing with a BBC presenter. They faked her voice, and accepted money intended for her.

Scams 321

Scams Social Engineering Artificial Intelligence Engineering 321

SecureWorld News

MARCH 18, 2025

In recent months, a sophisticated scam has emerged, targeting drivers across the United States with fraudulent text messages about unpaid road tolls. Smishing scams like these follow a predictable yet highly effective, nefarious behavioral blueprintleveraging urgency, impersonation, and fear to manipulate victims into compliance.

Scams 86

Scams Mobile Phishing Education 86

Krebs on Security

DECEMBER 29, 2024

In January, KrebsOnSecurity told the story of a Canadian man who was falsely charged with larceny and lost his job after becoming the victim of a complex e-commerce scam known as triangulation fraud. In this scam, you receive what you ordered, and the only party left to dispute the transaction is the owner of the stolen payment card.

Scams 226

Scams Cybercrime Cryptocurrency Social Engineering 226

Security Affairs

FEBRUARY 3, 2025

The Russian-speaking Crazy Evil group runs over 10 social media scams, tricking victims into installing StealC, AMOS, and Angel Drainer malware. Security experts identified six Crazy Evil’s subteams, called AVLAND, TYPED, DELAND, ZOOMLAND, DEFI, and KEVLAND, which are running targeted scams for specific victim profiles.

Scams 83

Scams Media Cryptocurrency Cybercrime 83

Joseph Steinberg

OCTOBER 24, 2022

An online cybersecurity event with 2,500 people already logged in had to be cancelled after suspected cybercriminals launched a social engineering attack in the event’s chat window.

Cybersecurity 363

Cybersecurity Social Engineering Artificial Intelligence Scams 363

Krebs on Security

OCTOBER 1, 2018

Most of us have been trained to be wary of clicking on links and attachments that arrive in emails unexpected, but it’s easy to forget scam artists are constantly dreaming up innovations that put a new shine on old-fashioned telephone-based phishing scams. Think you’re too smart to fall for one? A CLOSE CALL.

Scams 279

Scams Phishing Banking Mobile 279

Malwarebytes

MARCH 19, 2025

.” Whether it’s a so-called “subsidy program,” a “government grant,” or a “relief card,” these scams all share the same underlying goalto manipulate people into giving away their personal information, orworsetheir hard-earned cash. ” Urgency and exclusivity are classic scam tactics.

Scams 95

Scams Government Identity Theft Social Engineering 95

Dark Reading

JUNE 13, 2023

Threat actors have grown increasingly sophisticated in applying social engineering tactics against their victims, which is key to this oft-underrated cybercriminal scam's success.

Social Engineering 116

Social Engineering Engineering Scams 116

Security Boulevard

FEBRUARY 15, 2025

Once a conversation starts and a personal connection is established, scammers behind a screen can lure their targets into video call scams utilizing high-quality deepfake technology The post Law Enforcement Cant Save You From Romance Scams appeared first on Security Boulevard.

Scams 90

Scams Technology Social Engineering Engineering 90

Security Boulevard

JANUARY 14, 2025

See how multi-channel scams target new hires through fake texts and emails, and learn practical steps to protect your organization from persistent social engineering attacks. The post ScrapedIn: How Bots Turn Social Media into Advanced Social Engineering appeared first on Security Boulevard.

Social Engineering 99

Social Engineering Media Engineering Scams 99

Duo's Security Blog

DECEMBER 14, 2023

But as it turns out, John was a victim of a phishing scam, a type of social engineering attack where the cybercriminal impersonated John’s IT department to gain his trust and trick him into revealing his login credentials. What is social engineering? So clearly, John isn’t alone.

Social Engineering 130

Social Engineering Engineering Phishing Passwords 130

SecureWorld News

FEBRUARY 14, 2025

Be wary of romance scams "People can be vulnerable on February 14th," said Dave Machin , Partner at The Berkeley Partnership. "If Protect your personal information Valentine's Day scammers take advantage of social engineering and people letting their guard down around February 14th.

Scams 74

Scams Cybercrime Social Engineering Phishing 74

Krebs on Security

NOVEMBER 21, 2020

The attacks were facilitated by scams targeting employees at GoDaddy , the world’s largest domain name registrar, KrebsOnSecurity has learned. In March, a voice phishing scam targeting GoDaddy support employees allowed attackers to assume control over at least a half-dozen domain names, including transaction brokering site escrow.com.

Cryptocurrency 364

Cryptocurrency VPN Scams Social Engineering 364

Heimadal Security

FEBRUARY 28, 2025

Phishing scams are no longer just poorly written emails full of typos. Todays sophisticated back-end technologies take phishing and social engineering to the next level. The era of messages from long-lost, wealthy relatives leaving fortunes to unknown heirs has passed its peak.

Scams 59

Scams Phishing Social Engineering Engineering 59

Penetration Testing

MAY 13, 2024

AhnLab’s Mobile Analysis Team has issued an alarm about an insidious new breed of romance scams specifically targeting cryptocurrency enthusiasts.

Social Engineering 93

Social Engineering Cryptocurrency Engineering Penetration Testing 93

Krebs on Security

FEBRUARY 26, 2023

GoDaddy described the incident at the time in general terms as a social engineering attack, but one of its customers affected by that March 2020 breach actually spoke to one of the hackers involved. One multifactor option — physical security keys — appears to be immune to these advanced scams.

Hacking 331

Hacking Social Engineering Phishing Scams 331

Krebs on Security

DECEMBER 29, 2020

In almost every category — from epic breaches and ransomware to cybercrime justice and increasingly aggressive phishing and social engineering scams — 2020 was a year that truly went to eleven. Who’s Behind the ‘Web Listings’ Mail Scam? Would You Have Fallen for this Phone Scam?

Scams 312

Scams Social Engineering Cybercrime Advertising 312

SecureWorld News

MARCH 20, 2025

March Madness is here, and while fans are busy filling out brackets and making last-minute bets, cybercriminals are running their own full-court presstargeting unsuspecting fans with phishing scams, fake betting apps, and credential-harvesting schemes.

Scams 84

Scams Social Engineering Mobile Phishing 84

Security Affairs

JANUARY 21, 2025

The Computer Emergency Response Team of Ukraine (CERT-UA) warned of cyber scams involving threat actors impersonating the agency by sending fraudulent AnyDesk connection requests under the guise of security audits. CERT-UA warned of scammers impersonating the agency, using fake AnyDesk requests to conduct fraudulent security audits.

Social Engineering 109

Social Engineering Scams Engineering Software 109

Security Through Education

MARCH 22, 2023

What does a government scam, an IT support scam and a romance scam have in common? They all use psychology and social engineering skills to convince their victims to take an action that is detrimental to them. Let’s see what lessons we can learn from scam artists to better protect ourselves.

Scams 122

Scams Social Engineering Engineering Media 122

Adam Shostack

JANUARY 2, 2025

Roger Grimes has an exciting new model of scams that's going to transform how we teach people ot defend against them. Over the years, I've had the opportunity to look at scams and cons and how they translate to technical systems. So I was pretty excited to see an article from Roger Grimes, Traits of Most Scams.

Scams 130

Scams Social Engineering Engineering Cybersecurity 130

Krebs on Security

NOVEMBER 21, 2024

The targeted SMS scams asked employees to click a link and log in at a website that mimicked their employer’s Okta authentication page. Some SMS phishing messages told employees their VPN credentials were expiring and needed to be changed; other phishing messages advised employees about changes to their upcoming work schedule. .”

Identity Theft 258

Identity Theft Phishing Cryptocurrency Accountability 258

Security Boulevard

OCTOBER 25, 2024

Gary Perkins, Chief Information Security Officer Social engineers rely on two key psychological triggers: urgency and empathy. In today’s hyper-connected world, cybersecurity […] The post Cyber Scams & Why We Fall for Them appeared first on CISO Global.

Scams 105

Scams Social Engineering CISO Engineering 105

SecureWorld News

OCTOBER 3, 2023

And one of the most successful and increasingly prevalent ways of attack has come from social engineering, which is when criminals manipulate humans directly to gain access to confidential information. Social engineering is more sophisticated than ever, and its most advanced iteration is the topic of today's discussion: deepfakes.

Social Engineering 109

Social Engineering Phishing Engineering Technology 109

The Hacker News

SEPTEMBER 1, 2023

The Classiscam scam-as-a-service program has reaped the criminal actors $64.5 Classiscam campaigns initially started out on classified sites, on which scammers placed fake advertisements and used social engineering techniques to convince users to pay for goods by transferring money to bank cards," Group-IB said in a new report.

Scams 138

Scams Social Engineering Banking Advertising 138

Security Affairs

NOVEMBER 30, 2024

SpyLoan apps exploit social engineering to gain sensitive user data and excessive permissions, leading to extortion, harassment, and financial loss. Similar scams were reported globally. McAfee researchers discovered 15 SpyLoan Android apps on Google Play with a combined total of over 8 million installs.

Social Engineering 128

Social Engineering Media Mobile Scams 128

Krebs on Security

AUGUST 19, 2021

According to the latest figures (PDF) released by the FBI Internet Crime Complaint Center (IC3), the reported losses from BEC scams continue to dwarf other cybercrime loss categories, increasing to $1.86 billion in 2020. .

Ransomware 363

Ransomware Social Engineering Cybercrime Scams 363

Security Boulevard

APRIL 8, 2024

A beleaguered health care industry that already is a top target of cybercriminals is under attack again, with bad actors recently using social engineering techniques in calls to IT helpdesks to gain access into the systems of targeted organizations.

Scams 124

Scams Social Engineering Engineering Healthcare 124