phishing

Coindesk
7 hours ago
Cryptocurrency

MicroStrategy's X Account Hacked, Leads to $440K Crypto Being Stolen: Blockchain Sleuth ZachXBT

MicroStrategy's X account was hacked, leading to a phishing message posted for followers.
Over $440,000 worth of crypto was stolen due to the phishing attempt.
TNW | Data-Security
3 days ago
Deliverability

New Russian PSYOPs mix disinformation, spam, and Navalny

Russia-aligned PSYOPs campaign involved espionage, disinformation, and phishing.
ESET uncovered Operation Texonto, linking it to Russian propaganda, targeting Ukrainians, and Navalny-related domains.
identity-theft
Theregister
5 days ago
Privacy professionals

Orgs are having a major identity crisis

Identity-related threats are increasing with attackers using stolen credentials.
Reports show a surge in cyber attacks using valid credentials and phishing as top access vectors.
Hubspot
1 week ago
Privacy professionals

4 Phishing Email Examples Even I Could Fall For (& How to Spot Them)

Phishing emails are online scams that trick recipients into providing sensitive information.
Phishing emails come in various types, each designed to exploit specific vulnerabilities or scenarios.
moreidentity-theft
data-breach
Mail Online
1 week ago
Privacy professionals

Warning to Facebook Marketplace users as 200,000 accounts leaked

Hundreds of thousands of Facebook Marketplace accounts have been leaked online, putting users at risk of phishing and cyberattacks.
The leaked data includes personal information such as names, phone numbers, email addresses, and Facebook profile information.
ReadWrite
2 weeks ago
Privacy professionals

Massive data breach in France affects 33 million citizens

A massive security breach has affected almost half of French citizens, involving two service providers for medical insurance companies.
Around 33 million customers' data was stolen, including personal information such as birth dates, social security numbers, and insurance details.
BleepingComputer
2 weeks ago
Privacy professionals

Data breach at French healthcare services firm puts millions at risk

French healthcare services firm Viamedis suffered a cyberattack exposing the data of policyholders and healthcare professionals.
The data breach includes sensitive information such as social security numbers and names of health insurers.
The breach was the result of a successful phishing attack on an employee, not ransomware.
New York Post
1 month ago
Privacy professionals

'Extremely dangerous' leak reveals 26 billion account records stolen from Twitter, LinkedIn, more: 'Mother of All Breaches'

One of the largest data breaches in history has compromised billions of accounts worldwide.
The dataset is extremely dangerous and valuable for malicious actors, who could use it for identity theft, phishing schemes, and targeted cyberattacks.
TechCrunch
1 month ago
Privacy professionals

Framework says hackers accessed customer data after phishing attack on accounting partner | TechCrunch

U.S. repairable laptop maker Framework confirmed a data breach after an employee at its accounting service provider was phished.
Hackers accessed customers' personal information, including names, email addresses, and balances owed.
It's unclear if any other clients of the accounting service provider were affected.
moredata-breach
TechRepublic
1 week ago
Information security

What is a Passkey? Definition, How It Works and More

Passkeys combine private and public cryptographic keys for authentication.
Passkeys are phishing-resistant and eliminate the need for complex passwords.
Ars Technica
1 week ago
Privacy professionals

Ongoing campaign compromises senior execs' Azure accounts, locks them using MFA

Unknown attackers are targeting Microsoft Azure accounts in an ongoing campaign to steal sensitive data and financial assets.
The attackers use phishing techniques and account takeovers to compromise the targeted accounts and enroll them in multifactor authentication to secure them.
DevOps.com
1 week ago
Privacy professionals

The Code Caveat: When Developer Credentials Become the Hacker's Pickaxe - DevOps.com

Developers are often the weakest link in cloud security.
Common ways developers can compromise cloud security include exposing credentials, falling victim to phishing campaigns, and using weak passwords.
ComputerWeekly.com
2 weeks ago
Privacy professionals

Security Think Tank: The phishing forecast for 2024 | Computer Weekly

Phishing campaigns leveraging AI capabilities expected to increase in 2024.
Automation behind cyber attacks and AI will continue to expand, allowing for more sophisticated targeted attacks.
TechRepublic
2 weeks ago
Privacy professionals

Spear Phishing vs Phishing: What Are The Main Differences?

Phishing is the most common attack vector, with 1.6 billion potentially harmful emails sent in 2023.
Spear phishing is a highly targeted form of phishing that can cause greater damage.
Entrepreneur
3 weeks ago
Deliverability

3 Email Changes Google and Yahoo Will Require You to Adopt By February 1st | Entrepreneur

Google and Yahoo have partnered to create new guidelines for mass email senders to combat spam, spoofing, and phishing attacks.
Email senders must authenticate their emails, enable one-click unsubscribing, and maintain a low spam complaint rate.
Tripwire
1 month ago
Privacy professionals

NCSC Warns That AI is Already Being Used by Ransomware Gangs

Malicious attackers are using artificial intelligence (AI) for more effective cyber attacks, and the volume and impact of threats will increase in the next two years.
AI tools make it easy to generate believable text, images, audio, and deepfake videos that can be used to deceive targets.
www.theguardian.com
1 month ago
Privacy professionals

AI will make scam emails look genuine, UK cybersecurity agency warns

AI tools can make it difficult to identify phishing emails and other cyber attacks
Generative AI and large language models will complicate efforts to detect different types of attacks
www.theguardian.com
1 month ago
Privacy professionals

AI will make scam emails look genuine, UK cybersecurity agency warns

Artificial intelligence will make it difficult to spot phishing emails as AI tools become more sophisticated.
Generative AI and large language models will complicate efforts to identify different types of cyber attacks.
english.elpais.com
1 month ago
Artificial intelligence

Beware of ChatGPT's evil twin and other generative AI dangers

Generative artificial intelligence tools like FraudGPT and WormGPT are being used by cybercriminals for malicious purposes.
These AI tools can create convincing fake messages and emails, leading to scams, deepfakes, and misinformation campaigns.
WIRED
1 month ago
Artificial intelligence

Staying One Step Ahead of Hackers When It Comes to AI

Generative AI is being used by cybercriminals to automate the creation of personalized phishing emails.
Generative AI may make biometric hacking easier and allow hackers to target chatbots and inject malware into their generated output.
CyberScoop
1 month ago
Privacy professionals

North Korean government hackers target individuals of interest, infosec professionals

North Korean hackers targeted media organizations and experts in the country's affairs, with a potential focus on cybersecurity researchers.
The hackers used phishing emails to install the RokRAT backdoor, and also used a decoy document from a previous North Korean hacking campaign to plan upcoming attacks on cybersecurity professionals.
Theregister
1 month ago
Privacy professionals

Google TAG: Kremlin cyber spies build a custom backdoor

Russian cyberspies linked to the FSB have developed a custom backdoor called SPICA and are targeting various organizations and individuals in the US, UK, Ukraine, and other NATO countries.
The backdoor allows the attackers to execute shell commands, steal cookies, and upload/download files and documents.
www.fastcompany.com
2 months ago
Artificial intelligence

5 cybersecurity predictions for 2024

Cybersecurity costs are predicted to rise globally to $10.5 trillion by 2025 as cybercrime becomes more sophisticated.
AI-powered scams and advanced phishing techniques are expected to increase in 2024.
Theregister
2 months ago
Privacy professionals

Money-grubbing crooks abuse OAuth apps for BEC, phishing

Miscreants are misusing OAuth for financially motivated cyber crimes such as phishing and crypto mining.
Microsoft warns that compromised accounts without strong authentication are particularly vulnerable to OAuth abuse.
Theregister
2 months ago
Information security

The Russians are coming! Err, they've already infiltrated

Russia-backed attackers named defense-industrial firms and energy facilities as new targets for phishing campaigns.
The Russian group Star Blizzard, believed to be affiliated with the FSB, is responsible for the attacks.
ComputerWeekly.com
2 months ago
Privacy professionals

UK names Russian FSB agents behind political hacking campaign | Computer Weekly

Russia's FSB is confirmed to be behind a hacking campaign targeting politicians, civil servants, journalists, and civil society organizations.
The campaign aimed to interfere with UK politics and the democratic process by phishing high-profile individuals.
TechRepublic
3 months ago
Privacy professionals

Sekoia: Latest in the Financial Sector Cyber Threat Landscape

The financial sector is the most impacted by phishing worldwide and is increasingly targeted by QR code phishing.
Phishing-as-a-service model is being massively adopted in 2023, with phishing kits sold to cybercriminals.
QR code phishing campaigns are on the rise in the financial sector.
SecurityWeek
3 months ago
Privacy professionals

Royal Ransomware Possibly Rebranding After Targeting 350 Organizations Worldwide

The Royal ransomware gang has targeted over 350 organizations and demanded over $275 million in ransom.
The US cybersecurity agency and the FBI have issued an updated alert warning about the rebranding of the Royal ransomware operation and the emergence of a new ransomware called Blacksuit.
The Royal gang uses phishing, exploits vulnerabilities, and leverages initial access brokers to gain entry into victims' networks.
TechRepublic
6 months ago
Privacy professionals

How to Prevent Phishing Attacks with Multi-Factor Authentication

Phishing exploits human behavior more than technology, making it a successful attack vector.
Phishing attacks in the cloud can be more complicated due to ownership of the environment.
[ Load more ]