Security Affairs

APRIL 17, 2020

Google says that the Gmail malware scanners have blocked around 18 million phishing and malware emails using COVID-19 lures in just one week. Google announced that its anti-malware solutions implemented to defend its Gmail users have blocked around 18 million phishing and malware emails using COVID-19 lures within the last seven days.

Phishing 145

Phishing Malware Government Small Business 145

Security Affairs

MARCH 30, 2020

Security experts uncovered a new Coronavirus-themed phishing campaign, the messages inform recipients that they have been exposed to the virus. The phishing messages tell the victims that one of their colleagues, friends, or family members has tested positive for the virus, then it urges them to print the attached “EmergencyContact.

Phishing 145

Phishing Advertising Cryptocurrency Malware 145

Security Affairs

APRIL 11, 2020

Crooks are using a fake Cisco “critical security advisory” in a new phishing campaign aimed at stealing victims’ Webex credentials. The Cofense’s phishing defense center has uncovered an ongoing phishing campaign that uses a Cisco security advisory related to a critical vulnerability as a lure. ” concludes the experts.

Phishing 145

Phishing Advertising Healthcare Cyber Attacks 145

Security Affairs

AUGUST 17, 2020

The malware has been active since at least 2014, it was undetected for more than 3 years and was used in highly targeted attacks. Now experts from CISA are warning of phishing messages delivering weaponized Microsoft Word documents that contain malicious Visual Basic Application (VBA) macro code. SecurityAffairs – hacking, KONNI RAT).

Phishing 139

Phishing Malware Advertising Architecture 139

Krebs on Security

AUGUST 30, 2019

But when accounts at those CRM providers get hacked or phished, the results can be damaging for both the client’s brand and their customers. Here’s a look at a recent CRM-based phishing campaign that targeted customers of Fortune 500 construction equipment vendor United Rentals. Stamford, Ct. . Image: APWG.

Phishing 256

Phishing Marketing Accountability DNS 256

Security Affairs

JULY 21, 2020

Cybercriminals are increasingly leveraging public cloud services such as Google Cloud Services in phishing campaigns against Office 365 users. Cybercriminals are increasingly abusing cloud services, such as Google Cloud Services, to arrange phishing campaign aimed at stealing Office 365 logins. com” to host the phishing page.

Phishing 128

Phishing Advertising Hacking 128

Krebs on Security

FEBRUARY 17, 2021

Secret Service and Department of Homeland Security told reporters on Wednesday the trio’s activities involved extortion, phishing, direct attacks on financial institutions and ATM networks, as well as malicious applications that masqueraded as software tools to help people manage their cryptocurrency holdings.

Cryptocurrency 344

Cryptocurrency Financial Services Banking Government 344

Security Affairs

APRIL 9, 2020

Group-IB’s CERT-GIB analyzed hundreds of coronavirus -related phishing emails and discovered top malware strains in COVID-19 campaigns. Group-IB’s Computer Emergency Response Team ( CERT-GIB ) analyzed hundreds of coronavirus-related phishing emails between February 13 and April 1, 2020. Spyware: the most likely COVID-19 payload.

Phishing 143

Phishing Malware Spyware DDOS 143

Security Affairs

APRIL 30, 2020

Group-IB uncovered a new sophisticated phishing campaign, tracked as PerSwaysion, against high-level executives of more than 150 companies worldwide. . PerSwaysion is a highly-targeted phishing campaign. New round of phishing attempts leveraging current victim’s account usually takes less than 24 hours.

Phishing 138

Phishing Accountability Financial Services Cloud Migration 138

Krebs on Security

APRIL 7, 2022

Security experts say both VPNFilter and Cyclops Blink are the work of a hacking group known as Sandworm or Voodoo Bear , the same Russian team blamed for disrupting Ukraine’s electricity in 2015. SANDWORM AND TRITON. energy facilities. and international companies and entities, including U.S. ” HYDRA. . ” HYDRA.

Marketing 309

Marketing Energy and Utilities Malware Ransomware 309

Security Affairs

SEPTEMBER 18, 2020

Web-phishing targeting various online services almost doubled during the COVID-19 pandemic , it accounted for 46 percent of the total number of fake web pages. Secure web- phishing. In the first six months of 2020, CERT-GIB blocked a total of 9 304 phishing web resources, which is an increase of 9 percent compared to the previous year.

Phishing 136

Phishing Ransomware Spyware Banking 136

Security Affairs

NOVEMBER 26, 2019

A group under the Magecart umbrella adopted a new tactic that leverages on MiTM and phishing attacks to target sites using external payment processors. The name Fullz House comes from two different attack techniques, the phishing, and the web skimming. The [phishing] pages are part of a framework,” they wrote.

Phishing 134

Phishing Cybercrime Advertising Software 134

Security Affairs

JULY 19, 2020

A vulnerability affecting the Zoom feature dubbed Vanity URL could have been exploited by hackers for phishing attacks. A vulnerability affecting the Zoom feature dubbed Vanity URLs could have been exploited by hackers for phishing attacks. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Phishing 131

Phishing Advertising Hacking Information Security 131

Security Affairs

JUNE 11, 2020

A hack-for-hire group tracked as Dark Basin targeted thousands of journalists, advocacy groups, and politicians worldwide over 7 years. “A little-known Indian IT firm offered its hacking services to help clients spy on more than 10,000 email accounts over a period of seven years.” ” reported the Reuters agency.

Hacking 128

Hacking Phishing Accountability Media 128

The Last Watchdog

DECEMBER 3, 2018

Related: Uber hack shows DevOps risk. The Starwood hack appears to come in second in scale only to the 2013 Yahoo breac h, which affected as many as 3 billion accounts, while a subsequent Yahoo breach also hit 500 million accounts. In 2014, a JP Morgan Chase hack exposed 76 million households.

Hacking 157

Hacking eCommerce Authentication Social Engineering 157

SecureWorld News

APRIL 22, 2025

Victims are sent unsolicited invitations to join Zoom calls, often via links in phishing emails or messages. Lazarus Group: a history of cybercrime The Lazarus Group is believed to be a state-sponsored hacking collective operated by the North Korean government. billion hack of the Bybit exchange in February 2025.

Cryptocurrency 91

Cryptocurrency Social Engineering Cybercrime Engineering 91

Security Affairs

JULY 11, 2020

A jury found Russian hacker Yevgeniy Nikulin guilty for the hack of LinkedIn, Dropbox, and Formspring back in 2012 and for the sale of the stolen data on cybercrime black marketplaces. Nikulin used data stolen from Linkedin to launch spear-phishing attacks against employees at other companies, including Dropbox. Pierluigi Paganini.

Hacking 118

Hacking Cybercrime Data breaches Advertising 118

Security Affairs

OCTOBER 5, 2020

Threat actors have hacked at least three Swiss universities, including the University of Basel and managed to drain employee salary transfers. The hackers carried out spear-phishing attacks against the Swiss universities in an attempt of tricking its employees into providing their access data. SecurityAffairs – hacking, cybercrime).

Advertising 145

Advertising Phishing Cybercrime Hacking 145

SecureWorld News

FEBRUARY 18, 2021

It may be the most complete picture we've ever had of North Korean hacking campaigns. The unsealed documents highlight a number of attack targets and motives in an effort to hack, digitally intrude, and defraud. The hacking indictment filed in the U.S. North Korean hacking methods and attack vectors. global targets.

Hacking 109

Hacking Cryptocurrency Computers and Electronics Banking 109

Security Affairs

JULY 8, 2020

The US Department of Justice has indicted a hacker named Fxmsp for hacking over three hundred organizations worldwide and selling access to their networks. The US Department of Justice has indicted a hacker that goes online with the moniker Fxmsp for hacking over three hundred organizations worldwide and selling access to their networks.

Hacking 115

Hacking Antivirus Advertising Cybercrime 115

Malwarebytes

JULY 28, 2021

And while actual, measurable cyberrattacks and hacks surrounding The Olympics did not truly get rolling until 2008 in Beijing, The Olympic games have traditionally been quite the target for malicious acts of all kinds, dating back years. It was also the first major Olympics event where organizers braced for hacking related impact.

Scams 144

Scams Hacking Malware Mobile 144

Security Affairs

JULY 14, 2020

The company confirmed that the an investigation into the hack is still ongoing. Experts warn that attackers can use the PII in the data dump to carry out phishing campaigns, online and offline scams, and even identity theft. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Hacking 114

Hacking Data breaches Identity Theft Advertising 114

Security Affairs

OCTOBER 18, 2020

Iran-linked cyberespionage group Silent Librarian has launched a new phishing campaign aimed at universities around the world. Iran-linked APT group Silent Librarian has launched another phishing campaign targeting universities around the world. Clearly we only uncovered a small portion of this phishing operation.

Phishing 142

Phishing Advertising Hacking Technology 142

Krebs on Security

MARCH 2, 2020

A large number of French critical infrastructure firms were hacked as part of an extended malware campaign that appears to have been orchestrated by at least one attacker based in Morocco, KrebsOnSecurity has learned. com , an Arabic-language computer hacking forum. In this two-hour Arabic language YouTube tutorial from 2014 , Fatal.001

DNS 319

DNS Penetration Testing Malware Hacking 319

Security Affairs

NOVEMBER 18, 2023

An Israeli hacker has been sentenced to 80 months in prison in the US for his role in a massive spear-phishing campaign. Azari orchestrated the international hacking-for-hire spearphishing campaign from his home in Israel. and around worldwide. and around worldwide. The man was arrested in September 2019 while traveling to the U.

Identity Theft 139

Identity Theft Phishing Hacking Accountability 139

Security Affairs

DECEMBER 1, 2019

Over 90 percent of the users identified by Google were targeted via “credential phishing emails” that attempt to trick victims into providing their password or other account credentials to hijack their Google account. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Phishing 145

Phishing Accountability Advertising Cyber Attacks 145

Security Affairs

DECEMBER 21, 2023

Threat actors are exploiting an old Microsoft Office vulnerability, tracked as CVE-2017-11882 (CVSS score: 7.8), as part of phishing campaigns to spread the Agent Tesla malware. “ Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, malware)

Malware 134

Malware Phishing Spyware Cyber threats 134

Krebs on Security

JUNE 29, 2023

Nikita Kislitsin , formerly the head of network security for one of Russia’s top cybersecurity firms, was arrested last week in Kazakhstan in response to 10-year-old hacking charges from the U.S. Prosecutors in Northern California indicted Kislitsin in 2014 for his alleged role in stealing account data from Formspring.

Cybersecurity 303

Cybersecurity Cybercrime Hacking Network Security 303

Security Affairs

MARCH 20, 2020

Most of APT28s’ campaigns leveraged spear-phishing and malware-based attacks, the recent mass scanning activity represents a change in the modus operandi of the group. Trend Micro investigated waves of the APT28’s targeted credential phishing attacks and collected thousands of email samples sent out by the group since 2014.

Phishing 145

Phishing Accountability Advertising DNS 145

Security Affairs

MAY 2, 2020

Phishing attacks impersonating notifications from Microsoft Teams targeted as many as 50,000 Teams users to steal Office365 logins. Abnormal Security experts observed two separate phishing attacks impersonating notifications from Microsoft Teams that targeted as many as 50,000 Teams users to steal Office365 logins. Pierluigi Paganini.

Phishing 145

Phishing Advertising Financial Services Marketing 145

Security Affairs

AUGUST 14, 2020

The campaigns were classified as either phishing or malware. Phishing and Malware Q2 2020. The results depicted in Figure 1 show that phishing campaigns (84,5%) were more prevalent than malware (15,5%) during Q2 2020. From Figure 2, January presented a total of 15 phishing campaigns, 29 in February and 46 during March.

Threat Reports 145

Threat Reports Phishing Banking Malware 145

Security Affairs

AUGUST 13, 2020

’ The Lazarus APT is linked to North Korea, the activity of the Group surged in 2014 and 2015, its members used mostly custom-tailored malware in their attacks. In September, the US Treasury placed sanctions on three North Korea-linked hacking groups, the Lazarus Group, Bluenoroff, and Andarial. Pierluigi Paganini.

Cyber Attacks 145

Cyber Attacks Manufacturing Hacking Advertising 145

Security Affairs

OCTOBER 12, 2020

“Based on the message body of the leak, the cyber attack indicates hacktivism, but last year, around May 23, 2019, UK warned NATO allies of hacking activities of Russia -> Link. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Advertising 143

Advertising Manufacturing Hacking Cyber Attacks 143

Security Affairs

MARCH 27, 2020

Google announced to have warned users of almost 40,000 alerts of state-sponsored phishing or malware attacks during 2019. Google shared data on alerts related to state-sponsored attacks, the tech giant revealed that it issued almost 40,000 alerts of state-sponsored phishing or malware attacks to its users during 2019.

Phishing 145

Phishing Accountability Advertising Malware 145

Security Affairs

APRIL 20, 2020

Threat Report Portugal Q1 2020: Phishing and malware by numbers. The campaigns were classified as either phishing or malware. Phishing and Malware Q1 2020. The results depicted in Figure 1 show that phishing campaigns (57,7%) were more prevalent than malware (42,3%) during Q1 2020.

Threat Reports 137

Threat Reports Phishing Banking Malware 137

Security Affairs

OCTOBER 7, 2020

The hacking technique was employed by an unidentified hacking group to avoid detection. The threat actor that employed the Kraken technique, likely an APT group, launched a phishing attack that used messages with a.ZIP file attachment. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Advertising 140

Advertising Hacking Manufacturing Phishing 140

Security Affairs

APRIL 28, 2020

Kaspersky experts uncovered a new wave of phishing scams that use a COVID-19 theme and impersonate shipping carriers, including FedEx, UPS, and DHL. Kaspersky observed COVID-19-themed phishing scams that impersonate popular shipping carriers such as FedEx, UPS, and DHL. SecurityAffairs – phishing, hacking).

Scams 141

Scams Phishing Advertising Hacking 141