Accountability, Information Security, Passwords and Phishing

Password Managers Under Attack, Shady Reward Apps on Google Play, Meta Account Center 2FA Bypass

Security Boulevard

FEBRUARY 5, 2023

The attacks on password managers and their users continue as Bitwarden and 1Password users have reported seeing paid ads for phishing sites in Google search results for the official login page of the password management vendors.

Password Management

Password Management Passwords Accountability Phishing

“My Slice”, an Italian adaptive phishing campaign

Security Affairs

JANUARY 22, 2024

Adaptive phishing campaigns are emerging as an increasingly sophisticated threat in the cybersecurity landscape. The phenomenon This phenomenon represents an evolution of traditional phishing tactics, as attackers seek to overcome defenses using more personalized and targeted approaches.

Phishing

Phishing Education Social Engineering Media

Passwords stolen via phishing campaign available through Google search

Security Affairs

JANUARY 21, 2021

Bad ops of operators of a phishing campaign exposed credentials stolen in attacks and made them publicly available through Google queries. . Check Point Research along with experts from cybersecurity firm Otorio shared details on their investigation into a large-scale phishing campaign that targeted thousands of global organizations.

Phishing

Phishing Passwords Manufacturing Healthcare

Attackers impersonate CircleCI platform to compromise GitHub accounts

Security Affairs

SEPTEMBER 25, 2022

GitHub is warning of an ongoing phishing campaign targeting its users to steal credentials and two-factor authentication (2FA) codes by impersonating the CircleCI DevOps platform. Phishing messages claims that a user’s CircleCI session expired and attempt to trick recipients into logging in using GitHub credentials. com circle-cl[.]com

Accountability

Accountability Phishing Authentication Passwords

Phishing, the campaigns that are targeting Italy

Security Affairs

OCTOBER 12, 2023

This post analyzed the numerous phishing campaigns targeting users and organizations in Italy. Phishing is a ploy to trick users into revealing personal or financial information through an e-mail, Web site, and even through instant messaging. Phishing can also be used as a precursor attack to drop malware.

Phishing

Phishing Scams Education Passwords

Phishing with hacked sites

SecureList

AUGUST 14, 2023

Examples include automation with phishing kits or Telegram bots. Besides tucking a phishing page inside the website they hack, scammers can steal all of the data on the server and completely disrupt the site’s operation. A lack of maintenance and security patches means they are easy to compromise using a known exploit.

Phishing

Phishing Hacking Banking Scams

Passwordless sign-in with passkeys is now available for Google accounts

Security Affairs

MAY 3, 2023

Google announced the introduction of the passwordless secure sign-in with Passkeys for Google Accounts on all platforms. Google is rolling out the passwordless secure sign-in with Passkeys for Google Accounts on all platforms. ” reads the announcement published by the company. face recognition, fingerprints).

Accountability

Accountability Passwords Password Management Phishing

Massive phishing campaign targets users of the Zimbra Collaboration email server

Security Affairs

AUGUST 18, 2023

ESET researchers uncovered a mass-spreading phishing campaign targeting users of the Zimbra Collaboration email server since April 2023. The phishing messages include a phishing page in the attached HTML file, they warn the recipient of an email server update, account deactivation, or similar issue.

Phishing

Phishing Social Engineering Accountability Engineering

Microsoft announces passwordless authentication for consumer accounts

Security Affairs

SEPTEMBER 15, 2021

Microsoft announced that users can access their consumer accounts without providing passwords and using more secure authentication methods. “One of our recent surveys found that 15 percent of people use their pets’ names for password inspiration. . Follow me on Twitter: @securityaffairs and Facebook.

Authentication

Authentication Accountability Passwords Phishing

Large-scale AiTM phishing campaign targeted +10,000 orgs since 2021?

Security Affairs

JULY 12, 2022

A large-scale phishing campaign used adversary-in-the-middle (AiTM) phishing sites to hit more than 10,000 organizations. In AiTM phishing, threat actors set up a proxy server between a target user and the website the user wishes to visit, which is the phishing site under the control of the attackers.

Phishing

Phishing Authentication Social Engineering Passwords

A new phishing scam targets American Express cardholders

Security Affairs

SEPTEMBER 5, 2022

Cybersecurity firm Armorblox discovered a new phishing campaign aimed at American Express customers. Armorblox researchers uncovered a new phishing campaign that is targeting American Express customers. The subject of the emails reads “Important Notification About Your Account” in an attempt to urge recipients to open it.

Phishing

Phishing Scams Social Engineering Password Management

YouTube creators’ accounts hijacked with cookie-stealing malware

Security Affairs

OCTOBER 20, 2021

A Cookie Theft malware was employed in phishing attacks against YouTube creators, Google’s Threat Analysis Group (TAG) warns. Financially motivated threat actors are using Cookie Theft malware in phishing attacks against YouTube creators since late 2019. ” reads the analysis published by Google TAG. Pierluigi Paganini.

Accountability

Accountability Malware Phishing Social Engineering

MailChimp breached, intruders conducted phishing attacks against crypto customers

Security Affairs

APRIL 4, 2022

Threat actors gained access to internal tools of the email marketing giant MailChimp to conduct phishing attacks against crypto customers. Trezor WARNING: Elaborate Phishing attack. Trazor also took the phishing domain used by threat actors offline and launched an investigation to determine how many users have been impacted.

Phishing

Phishing Data breaches Cryptocurrency Social Engineering

Defense contractor Belcan leaks admin password with a list of flaws

Security Affairs

AUGUST 22, 2023

While the leaked information highlights Belcan’s commitment to information security through the implementation of penetration tests and audits, attackers could exploit the lapse in leaving the tests’ results open, together with admin credentials hashed with bcrypt.

Passwords

Passwords Penetration Testing Engineering Manufacturing

Threat actors hacked the Dropbox Sign production environment

Security Affairs

MAY 2, 2024

Threat actors breached the Dropbox Sign production environment and accessed customer email addresses and hashed passwords Cloud storage provider DropBox revealed that threat actors have breached the production infrastructure of the DropBox Sign eSignature service and gained access to customer information and authentication data.

Hacking

Hacking Authentication Passwords Accountability

Not All MFA is Equal, and the Differences Matter a Lot

Daniel Miessler

MARCH 10, 2022

In that post we talked about 8 levels of password security, starting from using shared and weak passwords and going all the way up to passwordless. The answer is remarkably simple, actually— phishing. This means traditional MFA is becoming increasingly useless against phishing in the real world.

Authentication

Authentication Phishing Passwords Accountability

Ukraine warns of attacks aimed at taking over Telegram accounts

Security Affairs

APRIL 6, 2022

Ukraine’s technical security and intelligence service warns of threat actors targeting aimed at gaining access to users’ Telegram accounts. State Service of Special Communication and Information Protection (SSSCIP) of Ukraine spotted a new wave of cyber attacks aimed at gaining access to users’ Telegram accounts.

Accountability

Accountability Phishing Passwords Hacking

Box flaw allowed to bypass MFA and takeover accounts

Security Affairs

JANUARY 19, 2022

A vulnerability in the implementation of multi-factor authentication (MFA) for Box allowed threat actors to take over accounts. A vulnerability in the implementation of multi-factor authentication (MFA) for Box allowed attackers to take over accounts without having access to the victim’s phone, Varonis researchers reported.

Accountability

Accountability Authentication Passwords Data breaches

Ukraine’s CERT-UA warns of phishing attacks against Ukrainian citizens

Security Affairs

MARCH 8, 2022

Ukraine’s CERT-UA warned citizens of new phishing attacks launched through compromised email accounts belonging to Indian entities. The attacks were aimed at stealing sensitive information from compromised accounts. The attacks were aimed at stealing sensitive information from compromised accounts.

Phishing

Phishing Accountability Passwords Cyber Attacks

Hackers abusing the Ngrok platform phishing attacks

Security Affairs

FEBRUARY 16, 2021

Researchers from threat intelligence Cyble have discovered threat actors abusing the Ngrok platform in a fresh phishing campaign. Researchers at the threat intelligence firm Cyble discovered a new wave of phishing attacks targeting multiple organizations that are abusing the ngrok platform, a secure and introspectable tunnel to the localhost.

Phishing

Phishing Cybercrime Mobile Internet

Threat actors stole 1.1 million customer accounts from 17 well-known companies

Security Affairs

JANUARY 6, 2022

million of their customers have had their user accounts compromised in credential stuffing attacks. million accounts of their customers were compromised in credential stuffing attacks. Credential stuffing attacks involve botnets trying stolen login credentials usually obtained through phishing attacks and data breaches.

Accountability

Accountability Retail Passwords Data breaches

Russia-linked APT28 group spotted exploiting Outlook flaw to hijack MS Exchange accounts

Security Affairs

DECEMBER 5, 2023

Microsoft warns that the Russia-linked APT28 group is actively exploiting the CVE-2023-23397 Outlook flaw to hijack Microsoft Exchange accounts. Most of the APT28s’ campaigns leveraged spear-phishing and malware-based attacks. The vulnerability is a Microsoft Outlook spoofing vulnerability that can lead to an authentication bypass.

Accountability

Accountability Government Phishing Authentication

Swiss real estate agency Neho fails to put a password on its systems

Security Affairs

MAY 31, 2023

Real estate agencies handle sensitive data, including customers’ personally identifiable information, bank account details, and other data highly valued by cybercriminals. The file contained PostgreSQL and Redis databases credentials, including host, port, username, and password. Ensuring cybersecurity is vital.

Passwords

Passwords Phishing Accountability Banking

TodayZoo phishing kit borrows the code from other kits

Security Affairs

OCTOBER 24, 2021

Microsoft uncovered an extensive series of credential phishing campaigns that employed a custom phishing kit tracked as TodayZoo. Microsoft researchers uncovered a custom phishing kit, dubbed TodayZoo, that was used in an extensive series of credential phishing campaigns. com domain to send the phishing messages.

Phishing

Phishing Passwords Hacking Accountability

Crooks are using lures related to Her Majesty Queen Elizabeth II in phishing attacks

Security Affairs

SEPTEMBER 15, 2022

Threat actors are exploiting the death of Queen Elizabeth II as bait in phishing attacks to steal Microsoft account credentials from victims. Researchers from Proofpoint are warning of threat actors that are using the death of Queen Elizabeth II as bait in phishing attacks. The phishing page (hxxps://auth[.]royalqueenelizabeth[.]com/?)

Phishing

Phishing Accountability Authentication Technology

GUEST ESSAY: Sure steps to achieve a robust employee cybersecurity awareness training regimen

The Last Watchdog

OCTOBER 24, 2022

Employee security awareness is the most important defense against data breaches. Related: Leveraging security standards to protect your company. It involves regularly changing passwords and inventorying sensitive data. As such, you should limit the amount of information that employees have access to. This can be risky.

Passwords

Passwords Security Awareness Data breaches Cybersecurity

0ktapus phishing campaign: Twilio hackers targeted other 136 organizations

Security Affairs

AUGUST 25, 2022

The threat actors behind Twilio and Cloudflare attacks have been linked to a phishing campaign that targeted other 136 organizations. The threat actors behind the attacks on Twilio and Cloudflare have been linked to a large-scale phishing campaign that targeted 136 organizations, security firm Group-IB reported.

Phishing

Phishing Authentication Accountability Passwords

Caffeine, a new Phishing-as-a-Service toolkit available in the underground

Security Affairs

OCTOBER 11, 2022

Researchers warn of a new phishing-as-a-service (PhaaS) toolkit, called Caffeine, which is being used by cybercriminals. In March 2022, Mandiant researchers discovered threat actors using a shared Phishing-as-a-Service (PhaaS) platform called Caffeine. ” reads the report published by Mandiant.

Phishing

Phishing Cybercrime Accountability Advertising

CISA warns of recent successful cyberattacks against cloud service accounts

Security Affairs

JANUARY 14, 2021

The Cybersecurity and Infrastructure Security Agency (CISA) announced that several recent successful cyberattacks hit various organizations’ cloud services. According to the agency, the attackers conducted phishing campaigns and exploited poor cyber hygiene practices of the victims in the management of cloud services configuration.

Accountability

Accountability Phishing Authentication Passwords

ConnectWise Quietly Patches Flaw That Helps Phishers

Krebs on Security

DECEMBER 1, 2022

ConnectWise , which offers a self-hosted, remote desktop software application that is widely used by Managed Service Providers (MSPs), is warning about an unusually sophisticated phishing attack that can let attackers take remote control over user systems when recipients click the included link. build and the then-canary 22.9

Phishing

Phishing Architecture Passwords Accountability

RockYou2021: largest password compilation of all time leaked online with 8.4 billion entries

Security Affairs

JUNE 7, 2021

RockYou2021, the largest password compilation of all time has been leaked on a popular hacker forum, it contains 8.4 billion entries of passwords. . What seems to be the largest password collection of all time has been leaked on a popular hacker forum. The same user also claims that the compilation contains 82 billion passwords.

Passwords

Passwords Data breaches Accountability Password Management

EvilProxy Phishing-As-A-Service With MFA Bypass Emerged In Dark Web

Security Affairs

SEPTEMBER 5, 2022

Resecurity researchers discovered a new Phishing-as-a-Service (PhaaS) called EvilProxy advertised on the Dark Web. Following the recent Twilio hack leading to the leakage of 2FA (OTP) codes, cybercriminals continue to upgrade their attack arsenal to orchestrate advanced phishing campaigns targeting users worldwide.

Phishing

Phishing Accountability Hacking Advertising

9 Possible Ways Hackers Can Use Public Wi-Fi to Steal Your Sensitive Data

Security Affairs

FEBRUARY 12, 2024

Public Wi-Fi users are prime targets for MITM attacks because the information they send is often not encrypted, meaning it’s easy for hackers to access your data. Once they’re in, they can grab your emails, usernames, passwords, and more. They might even lock you out of your own accounts by resetting your passwords.

DNS

DNS VPN Encryption Passwords

Crooks use math symbols to evade anti-phishing solutions

Security Affairs

OCTOBER 13, 2021

Threat actors are using mathematical symbols on impersonated company logos to evade detection in phishing campaigns. Researchers from anti-phishing cybersecurity firm INKY have detailed a new technique to evade detection in phishing attacks, it leverages using mathematical symbols on impersonated company logos.

Phishing

Phishing Telecommunications Accountability Marketing

Cybercriminals Deliver IRS Tax Scams & Phishing Campaigns By Mimicking Government Vendors

Security Affairs

APRIL 21, 2022

Threat intelligence firm Resecurity details how crooks are delivering IRS tax scams and phishing attacks posing as government vendors. The identified phishing e-mail warned the victims about overdue payments to the IRS, which should then be paid via PayPal, the e-mail contained an HTML attachment imitating an electronic invoice.

Scams

Scams Phishing Government Passwords

Exclusive: Welcome “Frappo” – Resecurity identified a new Phishing-as-a-Service

Security Affairs

MAY 10, 2022

“Frappo” acts as a Phishing-as-a-Service and enables cybercriminals the ability to host and generate high-quality phishing pages which impersonate major online banking, e-commerce, popular retailers, and online-services to steal customer data. Detailed analysis of the Phishing-As-A-Service Frappo is available here: [link].

Phishing

Phishing Banking Retail Financial Services

AnyDesk Incident: Customer Credentials Leaked and Published for Sale on the Dark Web

Security Affairs

FEBRUARY 4, 2024

Such information being available for cybercriminals could act as a catalyst for new attacks, including targeted phishing campaigns. Notably, per additional context acquired from the actor, the majority of exposed accounts on the Dark Web didn’t have 2FA enabled. ” However, there seems to be an issue with it.

Scams

Scams Passwords Phishing Accountability

Gamblers’ data compromised after casino giant Strendus fails to set password

Security Affairs

NOVEMBER 15, 2023

Source: Cybernews Usernames Names Government ID numbers (CURP) Phone numbers Email addresses Home addresses Dates of Birth Gender KYC status IP addresses used to register for an account IP addresses used to log in Deposit amounts Withdrawal amounts Notes on users, submitted by admins and customer support agents.

Passwords

Passwords Identity Theft Social Engineering Spyware

Mother of all breaches – a historic data leak reveals 26 billion records: check what’s exposed

Security Affairs

JANUARY 22, 2024

“The dataset is extremely dangerous as threat actors could leverage the aggregated data for a wide range of attacks, including identity theft, sophisticated phishing schemes, targeted cyberattacks, and unauthorized access to personal and sensitive accounts,” the researchers said. The leak’s scale is of yet unseen proportions.

Identity Theft

Identity Theft Data breaches Accountability Phishing

Foxit Software discloses a data breach that exposed user passwords

Security Affairs

AUGUST 30, 2019

Foxit Software, the company behind the Foxit PDF reader app, disclosed a data breach that exposed customers’ information, including passwords. Foxit Software, the PDF software provider behind the Foxit PDF reader app disclosed a security breach that took place recently exposing customers’ information.

Data breaches

Data breaches Passwords Software Identity Theft

What is a Passkey?

Identity IQ

FEBRUARY 21, 2024

IdentityIQ The traditional method of safeguarding our accounts with passwords is facing growing challenges. As technology evolves, so do the methods employed by hackers, making passwords both inconvenient and increasingly susceptible to breaches. Passkey vs. Password – What’s the Difference? But what is a passkey?

Passwords

Passwords Authentication Accountability Phishing

Hackers published a list of allegedly phished Discord login credentials

Security Affairs

JULY 22, 2019

Last week, hackers published a list of Discord credentials (email addresses/passwords) that were allegedly phished from the users of the gaming chat platform. “Along with their message, the hackers posted a database of the allegedly phished credentials, split into multiple sections of those that work and those that don’t.

Phishing

Phishing Data breaches Passwords Advertising

Data leak exposes users of car-sharing service Blink Mobility

Security Affairs

DECEMBER 21, 2023

The database included the personally identifiable information of Blink Mobility customers and administrators, including: Phone number Email address Encrypted password Registration date Device info and device token Details on subscription and rented vehicles (license plate, VIN, booking start and end location, etc.)

Mobile

Mobile Identity Theft Passwords Phishing

Okta warns of unprecedented scale in credential stuffing attacks on online services

Security Affairs

APRIL 28, 2024

A credential stuffing attack is a type of cyber attack where hackers use large sets of username and password combinations, typically obtained from previous data breaches, phishing campaigns, or info-stealer infections, to gain unauthorized access to user accounts on various online services. ” continues the advisory.

VPN

VPN Accountability Firewall Data breaches

Password Managers Under Attack, Shady Reward Apps on Google Play, Meta Account Center 2FA Bypass

“My Slice”, an Italian adaptive phishing campaign

Trending Sources

Passwords stolen via phishing campaign available through Google search

Attackers impersonate CircleCI platform to compromise GitHub accounts

Phishing, the campaigns that are targeting Italy

Phishing with hacked sites

Passwordless sign-in with passkeys is now available for Google accounts

Massive phishing campaign targets users of the Zimbra Collaboration email server

Microsoft announces passwordless authentication for consumer accounts

Large-scale AiTM phishing campaign targeted +10,000 orgs since 2021?

A new phishing scam targets American Express cardholders

YouTube creators’ accounts hijacked with cookie-stealing malware

MailChimp breached, intruders conducted phishing attacks against crypto customers

Defense contractor Belcan leaks admin password with a list of flaws

Threat actors hacked the Dropbox Sign production environment

Not All MFA is Equal, and the Differences Matter a Lot

Ukraine warns of attacks aimed at taking over Telegram accounts

Box flaw allowed to bypass MFA and takeover accounts

Ukraine’s CERT-UA warns of phishing attacks against Ukrainian citizens

Hackers abusing the Ngrok platform phishing attacks

Threat actors stole 1.1 million customer accounts from 17 well-known companies

Russia-linked APT28 group spotted exploiting Outlook flaw to hijack MS Exchange accounts

Swiss real estate agency Neho fails to put a password on its systems

TodayZoo phishing kit borrows the code from other kits

Crooks are using lures related to Her Majesty Queen Elizabeth II in phishing attacks

GUEST ESSAY: Sure steps to achieve a robust employee cybersecurity awareness training regimen

0ktapus phishing campaign: Twilio hackers targeted other 136 organizations

Caffeine, a new Phishing-as-a-Service toolkit available in the underground

CISA warns of recent successful cyberattacks against cloud service accounts

ConnectWise Quietly Patches Flaw That Helps Phishers

RockYou2021: largest password compilation of all time leaked online with 8.4 billion entries

EvilProxy Phishing-As-A-Service With MFA Bypass Emerged In Dark Web

9 Possible Ways Hackers Can Use Public Wi-Fi to Steal Your Sensitive Data

Crooks use math symbols to evade anti-phishing solutions

Cybercriminals Deliver IRS Tax Scams & Phishing Campaigns By Mimicking Government Vendors

Exclusive: Welcome “Frappo” – Resecurity identified a new Phishing-as-a-Service

AnyDesk Incident: Customer Credentials Leaked and Published for Sale on the Dark Web

Gamblers’ data compromised after casino giant Strendus fails to set password

Mother of all breaches – a historic data leak reveals 26 billion records: check what’s exposed

Foxit Software discloses a data breach that exposed user passwords

What is a Passkey?

Hackers published a list of allegedly phished Discord login credentials

Data leak exposes users of car-sharing service Blink Mobility

Okta warns of unprecedented scale in credential stuffing attacks on online services

Stay Connected