Security Affairs

JULY 22, 2019

Last week, hackers published a list of Discord credentials (email addresses/passwords) that were allegedly phished from the users of the gaming chat platform. “Along with their message, the hackers posted a database of the allegedly phished credentials, split into multiple sections of those that work and those that don’t.

Phishing 76

Phishing Data breaches Passwords Advertising 76

Security Affairs

JUNE 17, 2019

Security researchers at Cofense have spotted a phishing campaign aimed at commercial banking customers distributing a new remote access trojan (RAT) tracked as WSH RAT. Threat actors are using the RAT to deliver keyloggers and information stealers. Within five days, WSH RAT was observed being actively distributed via phishing.

Banking 102

Banking Phishing Advertising Malware 102

Security Affairs

AUGUST 27, 2019

Researchers at Cofense uncovered an advanced phishing campaign delivering Quasar RAT via fake resumes. Experts at security firm Cofense observed an advanced phishing campaign delivering Quasar RAT via fake resumes. The fake resumes distributed in this phishing campaign detected are password-protected Microsoft Word documents.

Phishing 79

Phishing Passwords Advertising Malware 79

Security Affairs

AUGUST 30, 2019

Foxit Software, the company behind the Foxit PDF reader app, disclosed a data breach that exposed customers’ information, including passwords. Foxit Software, the PDF software provider behind the Foxit PDF reader app disclosed a security breach that took place recently exposing customers’ information.

Data breaches 80

Data breaches Passwords Software Identity Theft 80

Security Affairs

JANUARY 2, 2020

The Poloniex cryptocurrency exchange is forcing users to reset their passwords following a data leak. . Another bad news for the community of the virtual currencies communities, the Poloniex cryptocurrency exchange has forced its users to reset their passwords following a data leak. . This is a real email! Pierluigi Paganini.

Passwords 59

Passwords Cryptocurrency Data breaches Advertising 59

Security Affairs

SEPTEMBER 20, 2019

Cofense researchers spotted a phishing campaign that is targeting taxpayers in the United States to infect them with the Amadey malware. Security experts at Cofense uncovered a phishing campaign that is targeting taxpayers in the United States attempting to infect them with a new piece of malware named Amadey. The post U.S.

Phishing 82

Phishing Social Engineering Malware Advertising 82

Security Affairs

JANUARY 2, 2024

Palo Alto Networks’s Unit 42 first observed the malware in November 2023 reporting that it has been advertised on the hacking forum Hackforums since April 30, 2023. The attack spotted by the researchers used phishing messages posing as Abu Dhabi National Oil Company (ADNOC). net on 2023-04-30.

Malware 111

Malware Passwords Cryptocurrency Hacking 111

Security Affairs

MAY 27, 2022

“The FBI is informing academic partners of identified US college and university credentials advertised for sale on online criminal marketplaces and publically accessible forums. Crooks obtain the information by conducting spear-phishing and ransomware attacks, or other means.

Cybercrime 129

Cybercrime Education Accountability Phishing 129

Webroot

APRIL 3, 2024

Simply put, it’s the practice of ensuring that only authorized individuals have access to your sensitive information and online accounts. This encompasses everything from protecting your passwords to being vigilant against phishing scams and online fraud. Instead, enter your credentials each time for added security.

VPN 83

VPN Passwords Scams Accountability 83

Security Affairs

APRIL 20, 2020

Over 267 million Facebook profiles are offered for sale on dark web sites and hacker forums, the dump is offered for £500 ($623) and doesn’t include passwords. Hackers are offering for sale over 267 million Facebook profiles for £500 ($623) on dark web sites and hacker forums, the archive doesn’t include passwords.

Data breaches 145

Data breaches Passwords Advertising Phishing 145

Security Affairs

APRIL 6, 2023

The experts pointed out that crooks engaged in phishing activities have started to rely on the popular instant messaging platform more in recent months. On Telegram is possible to find channels that offer: Free phishing kits that can be used to target users of a large number of global and local brands. ” Phishing-as-a-Service.

Phishing 89

Phishing Scams Social Engineering Banking 89

Security Affairs

APRIL 12, 2020

. “In a recent investigation of deep and dark web forums, IntSights researchers came across a cybercriminal who shared a database containing more than 2300 usernames and passwords to Zoom accounts.” ” reads the report published by security firm IntSights. Most debated uses are Zoom checkers and credential stuffing.

Healthcare 145

Healthcare Phishing Accountability Banking 145

Security Affairs

OCTOBER 25, 2019

Experts have uncovered an ongoing phishing campaign targeting the United Nations and NGOs, including UNICEF and UN World Food. Security firm Lookout uncovered an ongoing spear-phishing campaign aimed at NGOs, including human rights organizations such as the Red Cross, UNICEF, the UN World Food and the UN Development programs.

Phishing 43

Phishing Mobile Advertising Scams 43

Security Affairs

SEPTEMBER 23, 2020

“Fitness chain Town Sports International has exposed 600,000 records of members and employees on the web without a password or any other authentication required to access it, Comparitech researchers report.” ” The expert confirmed that the database did not contain financial data or account passwords. .”

Data breaches 89

Data breaches Phishing Passwords Advertising 89

Security Affairs

JULY 14, 2020

.” According to the company, attackers accessed personal details of the users, including names, email addresses, mailing addresses, phone numbers, and also encrypted passwords. In response to the incident, the bidding portal has forced a password reset for all users’ accounts, both bidder and auctioneer ones. The post 3.4

Hacking 98

Hacking Data breaches Identity Theft Advertising 98

Security Affairs

SEPTEMBER 7, 2023

In April Cyble Research and Intelligence Labs (CRIL) discovered a Telegram channel advertising a new information-stealing malware, named Atomic macOS Stealer (AMOS). The malware targets macOS, it was designed to steal sensitive information from the infected systems. ” concludes the report.

Malware 104

Malware Passwords Engineering Software 104

Krebs on Security

APRIL 14, 2019

Scammers who make a living swindling Airbnb.com customers have a powerful new tool at their disposal: A software-as-a-service offering called “ Land Lordz ,” which helps automate the creation and management of fake Airbnb Web sites and the sending of messages to advertise the fraudulent listings.

Scams 245

Scams Advertising Accountability Phishing 245

Security Affairs

MARCH 19, 2022

AvosLocker operators already advertised in the past a Linux variant, dubbed AvosLinux, of their malware claiming it was able to support Linux and ESXi servers. Regularly back up data, password protect backup copies offline. Avoid reusing passwords for multiple accounts. Focus on cyber security awareness and training.

Ransomware 96

Ransomware DDOS Passwords Backups 96

Security Affairs

MAY 2, 2020

. “The server was live at the time of our investigation, leaking Personally Identifiable Information (PII) data from people accessing private accounts on Le Figaro’s news website, and in some cases, their login credentials.” Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Identity Theft 111

Identity Theft Passwords Advertising Accountability 111

Security Affairs

MARCH 16, 2020

Last week, Open Exchange Rates disclosed a data breach that exposed the personal information and hashed passwords for customers of its API service. Last week, the currency data provider Open Exchange Rates has disclosed a data breach that exposed the personal information and salted and hashed passwords for customers of its API service.

Data breaches 105

Data breaches Passwords Advertising Accountability 105

Security Affairs

AUGUST 7, 2019

Credential stuffing attacks involve botnets to try stolen login credentials usually obtained through phishing attacks and data breaches. This kind of attacks is very efficient due to the bad habit of users of reusing the same password over multiple services. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Insurance 85

Insurance Data breaches Financial Services Passwords 85

Security Affairs

APRIL 8, 2020

The memo was obtained by the website SpaceRef, it warns of both phishing attacks and malware-based attacks. According to the advisory issued by NASA, the number of phishing attempts doubled in the past few days, at the same time the number of malware attacks on its systems has grown exponentially. ” reads the memo.

Cyber Attacks 145

Cyber Attacks Computers and Electronics VPN Phishing 145

Security Affairs

NOVEMBER 25, 2021

.” Cybercriminals will attempt to entice their victims in multiple ways including: E-mails advertising hot-ticket or products that are hard to find on the market, such as event tickets or gaming systems. Advertisements on social media platforms that promote non-existent or counterfeit items. Use safe passwords or pass phrases.

Scams 122

Scams Identity Theft Advertising Media 122

Security Affairs

AUGUST 27, 2020

Here are some examples of how potential attackers can use the data found in the unsecured Amazon S3 bucket against the owners of the exposed email addresses: Spamming 350 million email IDs Carrying out phishing attacks Brute-forcing the passwords of the email accounts. Watch out for potential spam messages and phishing emails.

Social Engineering 120

Social Engineering Passwords Marketing Phishing 120

Security Affairs

MARCH 20, 2020

The APT28 group (aka Fancy Bear , Pawn Storm , Sofacy Group , Sednit , and STRONTIUM ) has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide. ” ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Phishing 135

Phishing Accountability Advertising DNS 135

Security Affairs

APRIL 24, 2023

EvilExtractor is a new “all-in-one” info stealer for Windows that is being advertised for sale on dark web cybercrime forums. FortiGuard Labs observed this malware in a phishing email campaign on 30 March, which we traced back to the samples included in this blog.” ” reads the report published by Fortinet.

Cybercrime 87

Cybercrime Malware Education Phishing 87

Security Affairs

APRIL 19, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Scams 82

Scams Phishing Advertising DDOS 82

Security Affairs

AUGUST 25, 2019

. “The IRS this week detected this new scam as taxpayers began notifying phishing@irs.gov about unsolicited emails from IRS imposters.” The emails contain a ‘temporary password’ or ‘one-time password’ to ‘access’ the files to submit the refund. ” concludes the press release.

Malware 78

Malware Computers and Electronics Scams Passwords 78

Security Affairs

NOVEMBER 23, 2019

“We can confirm that all payment information, passwords and accounts are safe, but certain users’ name, contact number, email and shipping address may have been exposed. Impacted users may receive spam and phishing emails as a result of this incident.” .” reads the statement published by the company.

Data breaches 98

Data breaches Passwords Advertising Accountability 98

Security Affairs

NOVEMBER 22, 2019

Our Cybersecurity team discovered and shut down malicious, unauthorized access to some information related to your T-Mobile prepaid wireless account. None of your financial data (including credit card information) or social security numbers was involved , and no passwords were compromised.” Pierluigi Paganini.

Wireless 96

Wireless Data breaches Mobile Telecommunications 96

Security Affairs

SEPTEMBER 11, 2019

The malicious code was initially advertised on many hacking forums for up to $300, later other threat actors started offering it for less than $80 in the cybercrime underground. Now researchers spotted phishing messages targeting the employees of a large U.S. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Manufacturing 78

Manufacturing Phishing Advertising Malware 78

Security Affairs

FEBRUARY 14, 2020

This malware is currently used for phishing & remote access by #DPRK cyber actors to conduct illegal activity, steal funds & evade sanctions. If these services are required, use strong passwords or Active Directory authentication. Enforce a strong password policy and implement regular password changes.

Malware 114

Malware Passwords Advertising Antivirus 114

Security Affairs

AUGUST 6, 2020

Use two-factor authentication with strong passwords. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Consider installing and using a VPN. Keep computers, devices, and applications patched and up-to-date. Pierluigi Paganini.

Ransomware 106

Ransomware VPN Advertising Marketing 106

Security Affairs

MARCH 8, 2020

The emails provide updates on the Coronavirus outbreak, it includes stats on the epidemic and contains an email of corona-virus@caramail.com that is likely used for phishing purposes. See Using Caution with Email Attachments and Avoiding Social Engineering and Phishing Scams for more information. Pierluigi Paganini.

Malware 120

Malware Scams Social Engineering Phishing 120

Security Affairs

APRIL 5, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Advertising 90

Advertising Malware Hacking Data breaches 90

Security Affairs

OCTOBER 6, 2020

The alert published by CISA was based on data provided by the Multi-State Information Sharing & Analysis Center (MS-ISAC) and the CISA itself since July 2020. “Since August, CISA and MS-ISAC have seen a significant increase in malicious cyber actors targeting state and local governments with Emotet phishing emails.

Government 133

Government Banking Advertising Malware 133

Security Affairs

FEBRUARY 10, 2023

The attack chain starts with an phishing emails containing a malicious URL or malicious attachment that lead to deployment of WasabiSeed and Screenshotter malware. Experts, for example, observed phishing emails using Microsoft Publisher (.pub) ” reads the post published by Proofpoint.

Malware 82

Malware Phishing Spyware Cybercrime 82