Bleeping Computer

NOVEMBER 4, 2022

The Robin Banks phishing-as-a-service (PhaaS) platform is back in action with infrastructure hosted by a Russian internet company that offers protection against distributed denial-of-service (DDoS) attacks. [.].

Banking 104

Banking Phishing Accountability DDOS 104

The Hacker News

APRIL 18, 2024

Described as one of the largest Phishing-as-a-Service (PhaaS) providers, LabHost offered phishing pages targeting banks, high-profile organizations, and other service

Phishing 121

Phishing Cybercrime Banking 121

Tech Republic Security

JUNE 18, 2020

The phishing email leads recipients to a phony BOA landing page in an attempt to steal their banking credentials, according to Armorblox.

Banking 187

Banking Phishing 187

Troy Hunt

AUGUST 30, 2023

They'd observed a phishing campaign that had collected 68k credentials from unsuspecting victims and asked if HIBP may be used to help alert these individuals to their exposure. Last week I was contacted by CERT Poland. Data accumulated by the malicious activity spanned from October 2022 until just last week.

Phishing 338

Phishing Password Management Passwords Banking 338

Security Affairs

DECEMBER 12, 2021

Cofense researchers discovered a new phishing campaign using QR codes targeting German e-banking users in the last weeks. Threat actors continue to use multiple techniques to avoid detection and trick recipients into opening phishing messages, including the use of QR codes. “The phish sites are fairly similar.

Banking 145

Banking Phishing Social Engineering Engineering 145

Penetration Testing

DECEMBER 1, 2023

A recent report by Zimperium has revealed the discovery of 245 counterfeit mobile applications, designed to mimic... The post Iran’s Phishing Pandemic: 245 Fake Banking Apps Target Citizens appeared first on Penetration Testing.

Banking 80

Banking Phishing Penetration Testing Cybercrime 80

Trend Micro

NOVEMBER 6, 2022

We found five banking malware families targeting customers of seven banks in India to steal personal and credit card information via phishing campaigns.

Banking 89

Banking Phishing Malware Cyber threats 89

Krebs on Security

OCTOBER 7, 2022

consumers have their online bank accounts hijacked and plundered by hackers, U.S. But new data released this week suggests that for some of the nation’s largest banks, reimbursing account takeover victims has become more the exception than the rule. Bank , and Wells Fargo. ” Sen.

Banking 255

Banking Accountability Scams Passwords 255

CSO Magazine

JANUARY 4, 2023

In a case that highlights how attackers can leverage information from data breaches to enhance their attacks, a group of attackers is using customer information stolen from a Colombian bank in phishing attacks with malicious documents, researchers report.

Banking 118

Banking Phishing Data breaches Marketing 118

Bleeping Computer

DECEMBER 10, 2021

A new phishing campaign that targets German e-banking users has been underway in the last couple of weeks, involving QR codes in the credential-snatching process. [.].

Banking 142

Banking Phishing 142

Bleeping Computer

JULY 27, 2022

A new phishing as a service (PhaaS) platform named 'Robin Banks' has been launched, offering ready-made phishing kits targeting the customers of well-known banks and online services. [.].

Banking 112

Banking Phishing 112

The Hacker News

NOVEMBER 6, 2022

A phishing-as-a-service (PhaaS) platform known as Robin Banks has relocated its attack infrastructure to DDoS-Guard, a Russian provider of bulletproof hosting services. Robin Banks was

Banking 87

Banking Phishing DDOS Cybersecurity 87

Bleeping Computer

MAY 17, 2021

bank holding company, in a spear-phishing campaign attempting to infect recipients with what looks like remote access trojan (RAT) malware. [.]. Threat actors impersonated Truist, the sixth-largest U.S.

Banking 120

Banking Phishing Malware 120

The Hacker News

JUNE 9, 2023

Banking and financial services organizations are the targets of a new multi-stage adversary-in-the-middle (AitM) phishing and business email compromise (BEC) attack, Microsoft has revealed.

Banking 88

Banking Phishing Financial Services 88

The Hacker News

FEBRUARY 26, 2024

Cybersecurity researchers are warning about a spike in email phishing campaigns that are weaponizing the Google Cloud Run service to deliver various banking trojans such as Astaroth (aka Guildma), Mekotio, and Ousaban (aka Javali) to targets across Latin America (LATAM) and Europe.

Banking 110

Banking Phishing Malware Cybersecurity 110

Heimadal Security

MAY 18, 2021

In a spear-phishing campaign, Truist Financial Corporation has been impersonated by cybercriminals trying to spread malware that seemed to look like remote access trojan (RAT), a program used by hackers to take complete control of the victim’s computer to perform malicious activities. Truist Financial Corp. Truist Financial Corp.

Banking 133

Banking Phishing Malware Cybersecurity 133

Krebs on Security

AUGUST 18, 2022

” A copy of the phishing message included in the PayPal.com invoice. While the phishing message attached to the invoice is somewhat awkwardly worded, there are many convincing aspects of this hybrid scam. Details of this scam were shared Wednesday with PayPal’s anti-abuse (phish@paypal.com) and media relations teams.

Scams 312

Scams Phishing Accountability Banking 312

Bleeping Computer

JANUARY 3, 2023

Threat actors behind a recent malware campaign have been using the stolen information of bank customers in Colombia as lures in phishing emails designed to infect targets with the BitRAT remote access trojan, according to cloud security firm Qualys. [.].

Banking 81

Banking Phishing Malware 81

Security Boulevard

DECEMBER 12, 2021

Phishing attempts over text messages are becoming more prevalent. I received an SMS text message that contained a phishing attempt for a Canadian Bank. The message implied that I have received a new notification with this bank and I should visit the provided link.

Banking 57

Banking Phishing Scams 57

Security Affairs

APRIL 18, 2024

An international law enforcement operation led to the disruption of the prominent phishing-as-a-service platform LabHost. An international law enforcement operation, codenamed Nebulae and coordinated by Europol, led to the disruption of LabHost, which is one of the world’s largest phishing-as-a-service platforms.

Phishing 107

Phishing Cybercrime Passwords Banking 107

Bleeping Computer

FEBRUARY 20, 2022

Users of Monzo, one of the UK's most popular digital-only banking platforms, are being targeted by phishing messages supported by a growing network of malicious websites. [.].

Banking 91

Banking Phishing Mobile 91

Heimadal Security

DECEMBER 13, 2021

Over the last few weeks, a new phishing operation focusing on e-banking users from Germany has been in progress, using QR codes during the credential-stealing operation. The post Hackers Use QR Codes to Steal Banking Credentials in Recent Phishing Attempts appeared first on Heimdal Security Blog.

Banking 107

Banking Phishing Cybersecurity 107

SecureWorld News

APRIL 1, 2024

A new Phishing-as-a-Service (PhaaS) threat called "darcula" is taking advantage of encrypted mobile messaging services to unleash a wave of sophisticated smishing attacks targeting organizations across more than 100 countries. Mobile devices tend to have weaker security compared to desktop systems, making them an attractive target vector."

Phishing 94

Phishing Mobile Encryption Technology 94

The Hacker News

FEBRUARY 27, 2024

Mexican users have been targeted with tax-themed phishing lures at least since November 2023 to distribute a previously undocumented Windows malware called TimbreStealer.

Phishing 117

Phishing Malware Scams Banking 117

Krebs on Security

SEPTEMBER 1, 2023

Domain names ending in “ US ” — the top-level domain for the United States — are among the most prevalent in phishing scams, new research shows. government, which is frequently the target of phishing domains ending in.US. US phishing domains.US This is noteworthy because.US is overseen by the U.S.

Phishing 219

Phishing Telecommunications Government DNS 219

Tech Republic Security

OCTOBER 5, 2021

Throughout the summer of 2021, the number of phishing URLs designed to impersonate Chase jumped by 300%, says security firm Cyren.

Phishing 208

Phishing Banking 208

Heimadal Security

NOVEMBER 7, 2022

The cybercriminals behind Robin Bank have relocated the phishing-as-a-service (PhaaS) platform to a Russian hosting service. DDoS-Guard takes over from Cloudflare after the latest caused a multi-day disruption of Robin Bank operations by distancing its services from the phishing infrastructure.

Banking 120

Banking DDOS Phishing Cybersecurity 120

Krebs on Security

FEBRUARY 1, 2021

Authorities in the United Kingdom have arrested a 20-year-old man for allegedly operating an online service for sending high-volume phishing campaigns via mobile text messages. ” SMS Bandits offered an SMS phishing (a.k.a. Image: osint.fans. “But on the telecom front they were using fairly sophisticated tactics.”

Phishing 312

Phishing Telecommunications Mobile Advertising 312

Krebs on Security

NOVEMBER 2, 2018

Thieves are combining SMS-based phishing attacks with new “cardless” ATMs to rapidly convert phished bank account credentials into cash. That phishing site prompted visitors to enter their account credentials — including usernames, passwords, one-time passcodes and PIN numbers — to unlock their accounts.

Phishing 232

Phishing Banking Scams Accountability 232

Krebs on Security

AUGUST 9, 2021

Playing along, I said I was sorry to hear about his ordeal, and asked Mitch if there were any stolen cards issued by a particular bank or to a specific region that he was seeking. The payment message displayed by the carding site phishing domain BriansClub[.]com. Shortly after it came online as a phishing site last year, BriansClub[.]com

Phishing 349

Phishing Cybercrime Accountability Advertising 349

Heimadal Security

JULY 28, 2022

A brand-new Phishing-as-a-Service (PhaaS) platform known as “Robin Banks” has been developed, providing ready-made phishing tools intended to trick customers of reputable financial institutions and online services. Among the targeted organizations are: Citibank Bank of America Capital One Wells Fargo PNC S.

Banking 100

Banking Phishing Cybersecurity 100

Krebs on Security

FEBRUARY 8, 2021

Cyber cops in Ukraine carried out an arrest and several raids last week in connection with the author of a U-Admin , a software package used to administer what’s being called “one of the world’s largest phishing services.” The U-Admin phishing panel interface. Image: fr3d.hk/blog. ” U-Admin, a.k.a.

Phishing 256

Phishing Scams Banking Mobile 256

CyberSecurity Insiders

APRIL 21, 2023

ICICI Bank, an Indian bank with a business presence in over 15 countries, has become a victim of a data breach, leaking information of more than 3.8 However, the multinational Indian bank is still investigating the incident and may take at least 48 hours to offer confirmed details on the customer info leak.

Data breaches 120

Data breaches Banking Government Phishing 120

The Hacker News

FEBRUARY 4, 2024

The threat actors behind the Mispadu banking Trojan have become the latest to exploit a now-patched Windows SmartScreen security bypass flaw to compromise users in Mexico. Propagated via phishing mails, Mispadu is a Delphi-based information stealer

Banking 84

Banking Phishing Malware 84

Tech Republic Security

OCTOBER 12, 2022

Recent phishing emails claim to offer a COVID-19 grant application from the SBA but are actually looking to capture banking details and other confidential data, says Inky. The post Credential phishing attacks continue to exploit COVID-19 to target businesses appeared first on TechRepublic.

Phishing 142

Phishing Banking Small Business 142

Security Boulevard

JANUARY 8, 2024

Or the urgent “your bank account is compromised!” Step into the complex ecosystem of phishing. Here, emails serve as […] The post How to Conduct an Effective Phishing Audit? The post How to Conduct an Effective Phishing Audit? alert that nearly tricked you into surrendering your PIN?

Phishing 70

Phishing Banking Accountability Penetration Testing 70

Security Affairs

SEPTEMBER 24, 2023

A new variant of a banking trojan, called BBTok, targets users of over 40 banks in Latin America, particularly Brazil and Mexico. Check Point researchers warn of a new variant of a banking trojan, called BBTok, that is targeting users of over 40 banks in Latin America. The phishing messages include a malicious link.

Banking 124

Banking Phishing Malware Hacking 124