Banking, Phishing and Security Intelligence

BEST PRACTICES: Mock phishing attacks prep employees to avoid being socially engineered

The Last Watchdog

MAY 1, 2019

Social engineering, especially phishing, continues to trigger the vast majority of breach attempts. In 2015, penetration tester Oliver Münchow was asked by a Swiss bank to come up with a better way to test and educate bank employees so that passwords never left the network perimeter.

Social Engineering

Social Engineering Engineering Phishing Banking

HTML Smuggling technique used in phishing and malspam campaigns

Security Affairs

NOVEMBER 12, 2021

Threat actors are increasingly using the HTML smuggling technique in phishing campaigns, Microsoft researchers warn. Microsoft experts warn that threat actors are increasingly using the HTML smuggling technique in phishing campaigns to stealthily deliver threats. — Microsoft Security Intelligence (@MsftSecIntel) July 23, 2021.

Phishing

Phishing Banking Firewall Passwords

Crooks continues to use COVID-19 lures, Microsoft warns

Security Affairs

MAY 13, 2020

Microsoft discovered a new phishing campaign using COVID-19 lures to target businesses with the infamous LokiBot information-stealer. Microsoft has discovered a new COVID-19 themed phishing campaign targeting businesses with the LokiBot Trojan. The choice of password-protected ARJ files aims at bypassing some security solutions.

Phishing

Phishing Advertising Banking Security Intelligence

Microsoft warns TA505 changed tactic in an ongoing malware campaign

Security Affairs

FEBRUARY 2, 2020

An ongoing phishing campaign launched by TA505 is using attachments featuring HTML redirectors for delivering malicious Excel docs. pic.twitter.com/mcRyEBUmQH — Microsoft Security Intelligence (@MsftSecIntel) January 30, 2020. TA505 hacking group has been active since 2014 focusing on Retail and banking sectors.

Malware

Malware Security Intelligence Banking Phishing

French Firms Rocked by Kasbah Hacker?

Krebs on Security

MARCH 2, 2020

An individual thought to be involved has earned accolades from the likes of Apple , Dell , and Microsoft for helping to find and fix security vulnerabilities in their products. In 2018, security intelligence firm HYAS discovered a malware network communicating with systems inside of a French national power company.

DNS

DNS Penetration Testing Malware Hacking

CISA alert warns of Emotet attacks on US govt entities

Security Affairs

OCTOBER 6, 2020

The Emotet banking trojan has been active at least since 2014, the botnet is operated by a threat actor tracked as TA542. The infamous banking trojan is also used to deliver other malicious code, such as Trickbot and QBot trojan or ransomware such as Conti (TrickBot) or ProLock (QBot). ” reads that alert published by CISA.

Government

Government Banking Malware Advertising

Telegram-powered bots circumvent 2FA

Malwarebytes

SEPTEMBER 30, 2021

Yesterday, security intelligence firm, Intel 147, revealed it had noticed an uptick of activity in threat actors providing access to services in Telegram that circumvent two-factor authentication (2FA) methods. If you have sent your OTP to what you now believe is a scammer, call your bank and report it.

Banking

Banking Authentication Social Engineering Passwords

2022: The threat landscape is paved with faster and more complex attacks with no signs of stopping

Webroot

JANUARY 7, 2022

“In 2022, the widespread growth of mobile access will increase the prevalence of mobile malware, given all of the behavior tracking capabilities,” says Grayson Milbourne, security intelligence director, Carbonite + Webroot, OpenText companies. Consumers also remain at risk. What to expect in 2022?

Cybercrime

Cybercrime Phishing Ransomware Cryptocurrency

The Future of Data Protection Begins at GITEX 2019

Thales Cloud Protection & Licensing

OCTOBER 3, 2019

Not all employees are familiar with phishing and other digital threats, for instance. DarkMatter confirmed as much in its Cyber Security Report: June 2019 when it found that approximately 90 percent of UAE-based enterprises exhibited outdated software, credential problems in the form of weak/exposed passwords and insecure protocols.

Telecommunications

Telecommunications Encryption Software Banking

Staying a Step Ahead of the Hack

Webroot

DECEMBER 11, 2020

Social Engineering is when hackers impersonate trusted associates or acquaintances to manipulate people into giving up their passwords, banking information, date of birth or anything else that could be used for identity theft. After clicking the link and entering the info, your security is compromised. Social Engineering.

Hacking

Hacking Social Engineering Phishing Security Awareness

Hackers Also Have Financial Reporting And Quotas :)

Security Boulevard

JUNE 18, 2022

Chief Hacking Officer: Yevi, where are you at with London bank hack?”. Security kinda tough get inside.”. Ransomware attacks, phishing attacks, and business email compromises continue to impact organizations more frequently than a year ago. Hackers Also Have Financial Reporting And Quotas :). Chief Hacking Officer: What?

Hacking

Hacking CISO Cybersecurity Banking

Cyber Security Awareness and Risk Management

Spinone

DECEMBER 26, 2018

Social engineering attacks , including phishing, spam, and viruses introduced via clickable links within e-mail affected 80% of the banking institutions in 2016. VoIP phishing and impersonation also victimized millions of corporate employees across the world , contributing to an even greater cyber threat.

Security Awareness

Security Awareness Risk Cyber threats Cyber Risk

Cyber Security Informer

BEST PRACTICES: Mock phishing attacks prep employees to avoid being socially engineered

HTML Smuggling technique used in phishing and malspam campaigns

Trending Sources

Crooks continues to use COVID-19 lures, Microsoft warns

Microsoft warns TA505 changed tactic in an ongoing malware campaign

French Firms Rocked by Kasbah Hacker?

CISA alert warns of Emotet attacks on US govt entities

Telegram-powered bots circumvent 2FA

2022: The threat landscape is paved with faster and more complex attacks with no signs of stopping

The Future of Data Protection Begins at GITEX 2019

Staying a Step Ahead of the Hack

Hackers Also Have Financial Reporting And Quotas :)

Cyber Security Awareness and Risk Management

Stay Connected