CyberSecurity Insiders

JANUARY 5, 2022

Highly placed sources say that the malware has been distributed via phishing campaign by a cyber threat group named MalSmoke. Microsoft that fixed this security vulnerability in 2012-13 by implementing strict file verification policies is busy urging admins to follow its legacy advisory published in August 2013 in order to fix the issue.

Malware 131

Malware Spyware Antivirus Cyber threats 131

Security Affairs

APRIL 5, 2022

Ukraine CERT-UA spotted a spear-phishing campaign conducted by Russia-linked Armageddon APT targeting local state organizations. The phishing messages have been sent from “vadim_melnik88@i[.]ua,” The Gamaredon group was first discovered by Symantec and TrendMicro in 2015, but evidence of its activities has been dated back to 2013.

Phishing 113

Phishing Government Hacking Malware 113

Krebs on Security

FEBRUARY 14, 2020

In May 2013, the U.S. Justice Department seized Liberty Reserve , alleging the virtual currency service acted as a $6 billion financial hub for the cybercrime world.

Identity Theft 218

Identity Theft Government Scams Cybercrime 218

Security Affairs

AUGUST 20, 2023

North Korea-linked APT Kimsuky launched a spear-phishing campaign targeting US contractors working at the war simulation centre. North Korea-linked APT group Kimsuky carried out a spear-phishing campaign against US contractors involved in a joint U.S.-South South Korea military exercise.

Phishing 80

Phishing Hacking Cyber Attacks Government 80

CyberSecurity Insiders

JULY 30, 2021

Britain-based luxury clothing designer & lifestyle service offering company says that DarkTrace has thwarted most of the weekly cyber attacks that include 200 targeted hacks such as spear phishing emails targeting high-level executives and cyber campaigns that help steal critical data from companies.

Retail 144

Retail Artificial Intelligence Cyber Attacks Cyber threats 144

Security Affairs

JUNE 3, 2023

Kimsuky cyberespionage group (aka ARCHIPELAGO, Black Banshee, Thallium , Velvet Chollima, APT43 ) was first spotted by Kaspersky researcher in 2013. The APT group has persistently refined its social engineering tactics, making its spear-phishing campaigns progressively harder to detect.

Social Engineering 88

Social Engineering Phishing System Administration Engineering 88

The Last Watchdog

JUNE 21, 2020

The epidemic went truly mainstream with the release of CryptoLocker back in 2013, and it has since transformed into a major dark web economy spawning the likes of Sodinokibi, Ryuk, and Maze lineages that are targeting the enterprise on a huge scale in 2020. FBI spoofs 2012 – 2013. File encryption 2013 – 2015.

Ransomware 243

Ransomware Hacking Encryption Penetration Testing 243

Security Affairs

SEPTEMBER 29, 2023

The WBSC, headquartered in Switzerland, was established in 2013 and currently has 141 countries as members located in Asia, Africa, the Americas, Europe, and Oceania. Another risk people whose passports were exposed have to deal with is spear phishing attacks.

Identity Theft 116

Identity Theft Social Engineering Banking Risk 116

Security Affairs

MAY 8, 2023

Ukraine’s CERT-UA warns of an ongoing phishing campaign aimed at distributing the SmokeLoader malware in the form of a polyglot file. CERT-UA warns of an ongoing phishing campaign that is distributing the SmokeLoader malware in the form of a polyglot file.

Malware 91

Malware Phishing VPN Accountability 91

Spinone

MARCH 11, 2018

The Internet blew up with the latest news about Gmail phishing attack. What Was the Goal of Gmail Phishing Attack? The most intriguing part of the Google Docs phishing attack is that a victim received the email with a phishing link from a person who was familiar to him /her. What can we expect? What should we do next?

Phishing 40

Phishing Accountability Media Data breaches 40

Krebs on Security

OCTOBER 1, 2022

In customer guidance released Thursday, Microsoft said it is investigating two reported zero-day flaws affecting Microsoft Exchange Server 2013, 2016, and 2019. In the meantime, it is urging a subset of Exchange customers to enable a setting that could help mitigate ongoing attacks.

Hacking 181

Hacking Passwords Internet Internet 181

Security Affairs

MARCH 21, 2022

Ukraine CERT (CERT-UA) warns of spear-phishing ??attacks The Government Team for Response to Computer Emergencies of Ukraine (CERT-UA) warns of spear-phishing messages conducted by UAC-0035 group (aka InvisiMole) against Ukrainian state bodies. attacks conducted by UAC-0035 group (aka InvisiMole) on state organizations of Ukraine.

Spyware 83

Spyware DNS Phishing Government 83

Doctor Chaos

FEBRUARY 21, 2022

Created in 2013, the framework documents in detail countless cyberattack strategies. For example, by using the framework to learn about phishing attack strategies, you could develop a detailed training program for your team. Phishing attacks and ransomware attacks surged the most.

Phishing 147

Phishing Cybersecurity Firewall Education 147

Security Affairs

JANUARY 18, 2022

Trend Micro researchers spotted an elusive threat actor, called Earth Lusca, that targets organizations worldwide via spear-phishing and watering hole attacks. . The Winnti group was first spotted by Kaspersky in 2013, but according to the researchers the gang has been active since 2007. Both clusters served as a C&C server.

Cryptocurrency 109

Cryptocurrency Social Engineering Media Phishing 109

Security Affairs

DECEMBER 1, 2022

In 2013, Yahoo suffered one of the worst data breaches in history, exposing over 3 billion user accounts. Near the holiday season of 2013, hackers exposed the credit and debit card information of over 110 million Target customers. Here are three of the worst data breaches that could have been avoided: Yahoo.

Data breaches 93

Data breaches Passwords Social Engineering Encryption 93

Krebs on Security

SEPTEMBER 6, 2021

The Manipulaters’ core brand in the underground is a shared cybercriminal identity named “ Saim Raza ,” who for the past decade across dozens of cybercrime sites and forums has peddled a popular spamming and phishing service variously called “ Fudtools ,” “ Fudpage ,” “ Fudsender ,” etc.

Software 239

Software Phishing Cybercrime Accountability 239

Security Affairs

AUGUST 16, 2022

Symantec and TrendMicro first discovered the Gamaredon group in 2015, but evidence of its activities has been dated back to 2013. The attack chain starts with spear-phishing messages using a self-extracting 7-Zip file, which was downloaded via the system’s default browser.

Malware 81

Malware Phishing Hacking Government 81

NopSec

FEBRUARY 15, 2017

Do you feel confident that everyone in your organization could identify a phishing email that contained ransomware? In today’s post, we share information with the goal that it will help everyone in your organization protect themselves from phishing attacks.

Phishing 40

Phishing Social Engineering Engineering Healthcare 40

CyberSecurity Insiders

MAY 12, 2021

Darktrace AI has the potential to promptly detect remote working cyber risks, ransomware threats, data loss, supply chain vulnerabilities, phishing, and insider threats. Note- Found in 2013, the UK-based Cyber Defense company Darktrace offers AI-based intelligence-driven cybersecurity.

Cyber threats 84

Cyber threats Cyber Risk IoT Technology 84

Security Affairs

SEPTEMBER 18, 2021

Security researchers from the Cisco Talos team uncovered a spear-phishing campaign targeting the aviation industry for two years avoiding detection. Security researchers from Cisco Talos uncovered a spear-phishing campaign targeting, dubbed Operation Layover, that targeted the aviation industry for two years without being detected.

Malware 96

Malware Phishing DNS Cybercrime 96

Security Affairs

FEBRUARY 6, 2022

Russia-linked APT group Gamaredon is behind spear-phishing attacks against Ukrainian entities and organizations since October 2021. Palo Alto Network experts mapped out three large clusters of the infrastructure used by the nation-state APT group used to support different phishing and malware campaigns.

Government 80

Government Phishing Malware Hacking 80

Security Affairs

JUNE 12, 2020

The group was first discovered by Symantec and TrendMicro in 2015 but evidence of its activities has been dated back to 2013. The attackers first disable protections for running macro scripts in Outlook then deploy the code to send phishing messages to the victim’s contacts. lnk formats. .

Malware 104

Malware Phishing Advertising Government 104

Malwarebytes

DECEMBER 21, 2022

The overwhelming number of organizations filing victim complaints to the IC3 between October 2013 and December 2021 were based in the US. Use spear phishing and other techniques to get access to a legitimate company’s email system and send fraudulent emails from there. gov/Home/BEC.

Social Engineering 85

Social Engineering Phishing Scams Accountability 85

Security Affairs

JUNE 19, 2021

North Korea-linked cyber espionage group Kimsuky (aka Black Banshee, Thallium , Velvet Chollima) was first spotted by Kaspersky researcher in 2013. The North Korea-linked threat actors are conducting spear-phishing attacks to deliver using the AppleSeed backdoor into the network of its targets. ” reported The Record.

Hacking 141

Hacking VPN Internet Internet 141

Security Boulevard

MAY 17, 2023

It would be easy to chalk up this increase to the development and introduction of new advanced types of malware, but the surprising fact is that many of the same threats and exploits used in data breaches in 2013 are still being successfully employed 10 years later. There are still many opportunities to thwart an attack at the DNS level.

Data breaches 52

Data breaches DNS Malware Phishing 52

Security Affairs

MAY 16, 2021

At that time, the researchers tracked the sources IP in Pakistan, the attacks were part of a wider operation that relies on multi-vector such as watering hole websites and phishing email campaigns delivering custom RATs dubbed Crimson and Peppy. These RATs are capable of exfiltrate information, take screenshot, and record webcam streams.

Malware 103

Malware Phishing Hacking Information Security 103

Security Affairs

NOVEMBER 19, 2021

The TA406 cyber espionage group was first spotted by Kaspersky researchers in 2013. A report published by Proofpoint revealed that the North Korea-linked TA406 APT group ( Kimsuky , Thallium , and Konni , Black Banshee, Velvet Chollima) has intensified its operations in 2021.

Cryptocurrency 83

Cryptocurrency Malware Government Education 83

Security Affairs

OCTOBER 13, 2019

Iran-linked APT group Charming Kitten employed new spear-phishing methods in attacks carried out between August and September. Microsoft has been tracking the threat actors at least since 2013, but experts believe that the cyberespionage group has been active since at least 2011. . The link points to a malicious phishing website.

Media 71

Media Social Engineering Phishing Advertising 71

SiteLock

AUGUST 27, 2021

According to the report “A resurgence of RAM scraping malware is the most prominent tactical development in 2013,” the same tactic used in the giant Target breach. Many of the attacks in our 2013 dataset targeted off-the-shelf content management systems (e.g.,

Retail 52

Retail Data breaches DDOS Passwords 52

Security Affairs

SEPTEMBER 12, 2019

Iran-linked Cobalt Dickens APT group carried out a spear-phishing campaign aimed at tens of universities worldwide. This operation is similar to the threat group’s August 2018 campaign , using compromised university resources to send library-themed phishing emails.” ” reads the analysis published by Secureworks.

Phishing 79

Phishing Advertising Hacking Accountability 79

Anton on Security

DECEMBER 8, 2023

For example, you can have a SOAR tool (with its wild promise of automation) that you either cannot handle, or only use for phishing playbooks (what in my analyst days I called “baby’s first playbook”). Anton, you sound like a 2013 SOAR vendor whitepaper!” AI does not transform anything on its own, humans do.

Engineering 130

Engineering Phishing 130

Adam Shostack

MAY 20, 2020

” How the intrusion happens is about questions like: Is it phishing emails that steal creds? Related: My 2013 SIRA talk, “ Building a Science of Security “, “ Zeroing in on Malware Propagation Methods.” Email attachments with exploits? SQL injection? Is it APTs or scripts?

InfoSec 124

InfoSec Government Engineering Phishing 124

Security Affairs

AUGUST 14, 2020

The CactusPete cyber-espionage group has been active since at least 2013, it has been mainly focused on military, diplomatic, and infrastructure targets in Asia and Eastern Europe. Experts pointed out that despite the lack of sophistication, the group carried out successful attacks. reads the analysis published by Kaspersky.

Malware 91

Malware Advertising Phishing Hacking 91

Security Affairs

MARCH 3, 2021

It was founded in 2013 and operates worldwide but mainly in Ukraine and Russia. Scams, Phishing, and Malware: It is common for unethical hackers and criminals on the Internet to use personal data to create trustworthy phishing emails. Phishing emails often use scare tactics to force users to open the attachment.

Data breaches 98

Data breaches Identity Theft B2B Phishing 98

CyberSecurity Insiders

AUGUST 26, 2022

CryptoLocker: Another cryptocurrency attack took place in 2013 at the hands of a piece of ransomware called CryptoLocker. Avoiding phishing scams can be the best way to prevent a ransomware attack. Educating employees: Security on the computer starts with the employees.

Ransomware 123

Ransomware Education Software Malware 123

Security Affairs

AUGUST 27, 2020

Screenshot from the latest forum discussion about RepWatch in 2013: The CSV files appear to have included the same set of 350 million unique emails, separated into three groups: hashed, hashed and salted, and unencrypted files. Watch out for potential spam messages and phishing emails.

Social Engineering 121

Social Engineering Passwords Marketing Phishing 121

Security Affairs

DECEMBER 18, 2019

Threat actors launched spear-phishing attacks using emails with malicious attachments often disguised as PDF files. Attackers used a new variant of the Separ credential-stealing malware, a malicious code that was first spotted by Sonicwall in 2013. One of the emails was disguised as a legitimate message sent by a Siemens subsidiary.

Manufacturing 61

Manufacturing Advertising Phishing Malware 61