Krebs on Security

AUGUST 19, 2020

For now at least, they appear to be focusing primarily on companies in the financial, telecommunications and social media industries. Allen said it matters little to the attackers if the first few social engineering attempts fail. A phishing page (helpdesk-att[.]com) com) targeting AT&T employees. Image: urlscan.io.

Phishing 363

Phishing VPN Social Engineering Media 363

Malwarebytes

JUNE 16, 2022

It involved 76 countries taking social engineers and telecommunications fraudsters to task, with multiple wins for those involved. Multiple national call centres suspected of telecommunications fraud were also raided. Interpol also mentions 8 suspects arrested in Singapore for “Ponzi-like” job scams.

Scams 95

Scams Telecommunications Media Banking 95

Digital Shadows

OCTOBER 23, 2024

The attacker gained initial access to two employee accounts by carrying out social engineering attacks on the organization’s help desk twice. Scattered Spider previously targeted telecommunications firms, likely to support its SIM-swapping activities that facilitate account takeovers.

Social Engineering 122

Social Engineering Engineering Accountability Backups 122

Krebs on Security

DECEMBER 29, 2022

The unknown intruders gained access to internal Mailchimp tools and customer data by social engineering employees at the company, and then started sending targeted phishing attacks to owners of Trezor hardware cryptocurrency wallets. com, which was fed by pig butchering scams. Uber blames LAPSUS$ for the intrusion.

Cryptocurrency 290

Cryptocurrency Cybercrime Computers and Electronics Scams 290

Digital Shadows

OCTOBER 23, 2024

The attacker gained initial access to two employee accounts by carrying out social engineering attacks on the organization’s help desk twice. Scattered Spider previously targeted telecommunications firms, likely to support its SIM-swapping activities that facilitate account takeovers.

Social Engineering 52

Social Engineering Engineering Accountability Backups 52

Krebs on Security

FEBRUARY 28, 2023

First, they included an offer to use a mutually trusted “middleman” or escrow provider for the transaction (to protect either party from getting scammed). One of the groups that reliably posted “Tmo up! Allison Nixon is chief research officer for the New York City-based cybersecurity firm Unit 221B.

Mobile 337

Mobile Phishing Authentication Advertising 337

Security Affairs

OCTOBER 27, 2024

CISA adds ScienceLogic SL1 flaw to its Known Exploited Vulnerabilities catalog VMware failed to fully address vCenter Server RCE flaw CVE-2024-38812 Cisco states that data published on cybercrime forum was taken from public-facing DevHub environment Internet Archive was breached twice in a month Unknown threat actors exploit Roundcube Webmail flaw (..)

Data breaches 119

Data breaches Healthcare Cybercrime Social Engineering 119