Security Affairs

SEPTEMBER 25, 2023

A phishing campaign targets Ukrainian military entities using drone manuals as lures to deliver the post-exploitation toolkit Merlin. Securonix researchers recently uncovered a phishing campaign using a Pilot-in-Command (PIC) Drone manual document as a lure to deliver a toolkit dubbed Merlin. ” concludes the report.

Phishing 95

Phishing Cyber Attacks Malware Internet 95

Security Affairs

DECEMBER 29, 2023

Ukraine’s CERT (CERT-UA) warned of a new phishing campaign by the APT28 group to deploy previously undocumented malware strains. The group employed previously undetected malware such as OCEANMAP, MASEPIE, and STEELHOOK to steal sensitive information from target networks. file classified as MASEPIE.

Phishing 117

Phishing Malware Computers and Electronics Internet 117

SC Magazine

JULY 2, 2021

Researchers reported on Friday that cybercriminals are mimicking legitimate correspondence to actively target popular cloud applications DocuSign and SharePoint in phishing attacks designed to steal user log-in credentials. The post Phishing attack targets DocuSign and SharePoint users appeared first on SC Media.

Phishing 136

Phishing Authentication Security Awareness Media 136

Security Affairs

MAY 29, 2023

Experts warn of phishing attacks that are combining the use of compromised Microsoft 365 accounts and.rpmsg encrypted emails. Trustwave researchers have observed threat actors using encrypted RPMSG attachments sent via compromised Microsoft 365 accounts in a phishing campaign aimed at stealing Microsoft credentials.

Encryption 92

Encryption Phishing Accountability Authentication 92

Security Affairs

JANUARY 28, 2021

Researchers from RiskIQ have discovered a new phishing kit dubbed LogoKit that dynamically compose phishing content. Researchers from RiskIQ discovered a new phishing kit that outstands for its ability to dynamically create phishing messages to target specific users. SecurityAffairs – hacking, Phishing).

Phishing 123

Phishing Cryptocurrency Passwords Hacking 123

Security Affairs

JANUARY 6, 2022

Experts warn of a new phishing technique that abuses the commenting feature of Google Docs to send out emails that appear from a legitimate source. The attack chain is very simple, attackers create a Google Document using their Google account. SecurityAffairs – hacking, Phishing). The comment mentions the target with an @.

Phishing 111

Phishing Accountability Hacking Information Security 111

Security Affairs

AUGUST 15, 2022

Microsoft has disrupted activity by SEABORGIUM, a Russia-based actor launching persistent phishing, credential and data theft, intrusions, and hack-and-leak campaigns tied to espionage. More details + TTPs in this MSTIC blog: [link] — Microsoft Security Intelligence (@MsftSecIntel) August 15, 2022. Pierluigi Paganini.

Phishing 91

Phishing Accountability Hacking Surveillance 91

Security Affairs

FEBRUARY 27, 2020

Google announced that the new scanning capabilities implemented in Gmail have increased the detection rate of malicious documents. “Gmail protects your incoming mail against spam, phishing attempts, and malware. The post Data on Detection of Malicious Documents in Gmail are impressive appeared first on Security Affairs.

Malware 111

Malware Advertising Technology Engineering 111

Security Affairs

OCTOBER 24, 2021

Microsoft uncovered an extensive series of credential phishing campaigns that employed a custom phishing kit tracked as TodayZoo. Microsoft researchers uncovered a custom phishing kit, dubbed TodayZoo, that was used in an extensive series of credential phishing campaigns. com domain to send the phishing messages.

Phishing 117

Phishing Passwords Hacking Accountability 117

Security Affairs

DECEMBER 25, 2021

The phishing messages use weaponized Word or Excel attachments to install the Dridex banking Trojan. “This letter is to inform you that you have been exposed to a coworker who tested positive for OMICRON variant of COVID-19 sometime between December 18th and 20th,” reads a phishing message shared by Bleeping Computer.

Phishing 127

Phishing Passwords Banking Malware 127

Security Affairs

DECEMBER 13, 2020

Subway UK confirmed the hack of a marketing system that was used to send out phishing messages to deliver malware to the customers. Hackers have compromised a marketing system in Subway UK and used it to send out phishing messages to deliver malware to the customers. The system does not hold any bank or credit card details.”

Marketing 134

Marketing Phishing Hacking Data breaches 134

Security Affairs

AUGUST 12, 2021

Microsoft warns of a long-running spear-phishing campaign that has targeted Office 365 customers in multiple attacks since July 2020. Microsoft revealed that a year-long spear-phishing campaign has targeted Office 365 customers in multiple attacks starting with July 2020. com , or api[.]statvoo[.]com Pierluigi Paganini.

Phishing 116

Phishing Passwords Encryption Cybercrime 116

Security Affairs

JULY 9, 2021

Threat actors have devised a new trick to disable macro security warning that leverage non-malicious docs in phishing attacks. Most of the phishing attacks leverage weaponized Microsoft Office documents and social engineering techniques to trick recipients into enabling the macros. SecurityAffairs – hacking, phishing).

Phishing 98

Phishing Social Engineering Banking Engineering 98

Security Affairs

JANUARY 21, 2021

Bad ops of operators of a phishing campaign exposed credentials stolen in attacks and made them publicly available through Google queries. . Check Point Research along with experts from cybersecurity firm Otorio shared details on their investigation into a large-scale phishing campaign that targeted thousands of global organizations.

Phishing 123

Phishing Passwords Manufacturing Healthcare 123

Security Affairs

AUGUST 9, 2020

Researchers detailed a new evasive phishing technique that leverages modified favicons to inject e-skimmers and steal payment card data covertly. Researchers from cybersecurity firm Malwarebytes have analyzed a new evasive phishing technique used by attackers in the wild in Magecart attacks. ” continues the analysis.

Phishing 144

Phishing Advertising Scams Accountability 144

Security Affairs

AUGUST 17, 2020

Threat actors used a decoy document titled “Pyongyang e-mail lists – April 2017” and it contained the email addresses and phone numbers of individuals working at organizations such as the United Nations, UNICEF and embassies linked to North Korea. The KONNI malware also employed in at least two campaigns in 2017. Pierluigi Paganini.

Phishing 121

Phishing Malware Advertising Architecture 121

Security Affairs

MARCH 30, 2020

Security experts uncovered a new Coronavirus-themed phishing campaign, the messages inform recipients that they have been exposed to the virus. Upon opening the file, victims will need to ‘Enable Content’ to view the content of the protected document, but this action will trigger the infection process.

Phishing 139

Phishing Advertising Cryptocurrency Malware 139

Security Affairs

MAY 28, 2021

The phishing campaign detected by MSTIC leveraged the Google Firebase platform to provide an ISO file containing the malicious code. MSTIC also spotted the nation-state hackers experimenting with attacks that don’t leverage the ISO from Firebase, and instead encoding it within the HTML document. ” continues the report.

Phishing 93

Phishing Threat Detection Telecommunications Malware 93

Security Affairs

APRIL 23, 2022

Ukraine CERT-UA warns of phishing attacks on state organizations of Ukraine using the topic “Azovstal” and Cobalt Strike Beacon. The post Phishing attacks using the topic “Azovstal” targets entities in Ukraine appeared first on Security Affairs. To nominate, please visit:? Pierluigi Paganini.

Phishing 88

Phishing Cybercrime Ransomware Encryption 88

Security Affairs

MAY 30, 2021

Workers are going back to offices after months of remote working and crooks are attempting to exploit the situation by conducting spear-phishing attacks against their organizations. The messages pretend to provide information about changes to business operations the company is taking relative to the COVID-19 pandemic.

Phishing 100

Phishing Authentication Government Accountability 100

Security Affairs

JUNE 7, 2021

Ukraine warned of a “massive” spear-phishing campaign carried out by Russia-linked threat actors against its government and private businesses. This is the third massive spear-phishing campaign that the Ukrainian government attributed to Russia-linked threat actors this year. Follow me on Twitter: @securityaffairs and Facebook.

Phishing 93

Phishing Government Antivirus Passwords 93

Security Affairs

MAY 17, 2024

The attack chain starts with the theft of the identity of a real person in South Korea, then the victims were contacted via Facebook Messenger. Threat actors pretended to share private documents they had written with the victims. “The initial individual approach is similar to an email-based spear phishing attack strategy.

Malware 103

Malware Phishing Accountability Media 103

Security Affairs

JUNE 13, 2021

The Anti-Phishing Working Group (APWG) revealed that the number of phishing websites peaked at record levels in the first quarter of 2021. The Anti-Phishing Working Group (APWG) has published its new Phishing Activity Trends Report related to the first quarter of 2021. Reported Phishing Websites for Q1 2021.

Phishing 104

Phishing Advertising Cryptocurrency Encryption 104

Security Affairs

APRIL 17, 2020

Google says that the Gmail malware scanners have blocked around 18 million phishing and malware emails using COVID-19 lures in just one week. Google announced that its anti-malware solutions implemented to defend its Gmail users have blocked around 18 million phishing and malware emails using COVID-19 lures within the last seven days.

Phishing 118

Phishing Malware Government Small Business 118

Malwarebytes

JANUARY 22, 2024

These targets are approached in spear phishing attacks. The group uses social engineering techniques to persuade their targets to open documents or download malware. Once a relationship has been established, the target will receive a phishing link or a document containing such a link.

Social Engineering 104

Social Engineering Government Media DNS 104

Security Affairs

NOVEMBER 18, 2020

Chaes is also able to take screenshots of the victim’s machine, and hook and monitor the Chrome web browser to collect user information from infected hosts. The kill chain starts with phishing messages that use a.docx file that once is opened triggers a template injection attack. ” concludes the report.

Phishing 115

Phishing Malware Cryptocurrency Information Security 115

Krebs on Security

DECEMBER 6, 2023

ICANN contends that the use of a standardized request form makes it easier for the correct information and supporting documents to be provided to evaluate a request. Accredited registrars don’t have to participate, but ICANN is asking all registrars to join and says participants can opt out or stop using it at any time.

Phishing 235

Phishing Internet Internet Scams 235

Security Affairs

AUGUST 27, 2019

Researchers at Cofense uncovered an advanced phishing campaign delivering Quasar RAT via fake resumes. Experts at security firm Cofense observed an advanced phishing campaign delivering Quasar RAT via fake resumes. The fake resumes distributed in this phishing campaign detected are password-protected Microsoft Word documents.

Phishing 80

Phishing Passwords Advertising Malware 80

Security Affairs

SEPTEMBER 20, 2019

Cofense researchers spotted a phishing campaign that is targeting taxpayers in the United States to infect them with the Amadey malware. Security experts at Cofense uncovered a phishing campaign that is targeting taxpayers in the United States attempting to infect them with a new piece of malware named Amadey. The post U.S.

Phishing 83

Phishing Social Engineering Malware Advertising 83

Security Affairs

MAY 28, 2024

AddComm distributes documents and tokens physically and digitally to clients and employees. The bank also warns clients to stay alert to phishing messages. Dutch bank ABN Amro discloses data breach following a ransomware attack hit the third-party services provider AddComm. The Dutch bank has stopped using services provided by AddComm.

Data breaches 102

Data breaches Banking Ransomware Phishing 102

Security Affairs

MAY 26, 2024

The attackers sent out emails with ZIP archives containing an IMG files that serves as decoys for hidden EXE malware and ACCDB documents. The documents are weaponized Microsoft Access files, upon enabling the malicious macros they execute PowerShell commands to download and run EXE files.

Malware 107

Malware Banking Accountability Phishing 107

Security Affairs

SEPTEMBER 18, 2020

Web-phishing targeting various online services almost doubled during the COVID-19 pandemic , it accounted for 46 percent of the total number of fake web pages. Secure web- phishing. In the light of global pandemic and the businesses’ dive into online world, the share of this phishing category increased to remarkable 46 percent.

Phishing 103

Phishing Ransomware Spyware Banking 103

Security Affairs

FEBRUARY 27, 2023

The Threat Actors successfully phished a privileged user on the network. They exfiltrated sensitive work place documents as well as scheduled to be released content dating to November 17th, 2023. “The security of our data is paramount and we have comprehensive information security protocols in place to ensure its confidentiality.

Hacking 87

Hacking Cybercrime Social Engineering Data breaches 87

Security Affairs

DECEMBER 21, 2023

Businesses employ MongoDB to organize and store large swaths of document-oriented information. The exposed database hosted over 100K links with scanned documents hosted on a Goyzer domain. The data was leaked via a publicly exposed and passwordless MongoDB database, which has since been closed.

Identity Theft 107

Identity Theft Scams Phishing Accountability 107

Security Affairs

APRIL 30, 2021

The state-sponsored hackers sent spear-phishing messages to a general director working at the Rubin Design Bureau , in Saint Petersburg, which is one of three main Russian centers of submarine design. The spear-phishing messages used a malicious Rich Text File (RTF) document that included descriptions of an autonomous underwater vehicle.

Phishing 130

Phishing Malware Antivirus Encryption 130

Security Affairs

MAY 21, 2024

The gang published a series of documents as proof of the hack, including people’s ID cards, data sheets, payroll payment requesters and a picture of the folder exfiltrated from the victim’s systems. The attacks began with a spam/phishing email containing malicious URL links. Sunoco is the largest at 8 billion gallons.

Hacking 128

Hacking Ransomware Phishing Malware 128

Security Affairs

SEPTEMBER 24, 2019

Security experts at Proofpoint observed a new wave of phishing attacks aimed at US Utilities in an attempt to deliver the LookBack RAT. Security experts at Proofpoint have discovered a new series of phishing attacks targeting entities US utilities in an attempt to deliver the LookBack RAT. nceess [. ] Nceess [. ]

Phishing 76

Phishing Energy and Utilities Advertising Engineering 76