Security Affairs

AUGUST 16, 2023

A phishing campaign employing QR codes targeted a leading energy company in the US, cybersecurity firm Cofense reported. “Beginning in May 2023, Cofense has observed a large phishing campaign utilizing QR codes targeting the Microsoft credentials of users from a wide array of industries.” ” continues the report.

Phishing 98

Phishing Energy and Utilities Insurance Manufacturing 98

SecureList

MAY 28, 2025

The threat actors behind Zanubis continue to refine its code adding features, switching between encryption algorithms, shifting targets, and tweaking social engineering techniques to accelerate infection rates. Join us in this blogpost as we take a closer look at the malware’s evolution over time.

Banking 105

Banking Malware Energy and Utilities Encryption 105

SecureList

NOVEMBER 29, 2024

The malware utilizes cloud resources for its C2 (command and control) servers, which it accesses via APIs using authentication tokens. Interestingly, Twelve shares infrastructure, utilities and TTPs (Tactics, Techniques and Procedures) with the DARKSTAR ransomware group (formerly known as Shadow or COMET).

Energy and Utilities 103

Energy and Utilities Ransomware Malware Government 103

eSecurity Planet

SEPTEMBER 14, 2022

As a matter of fact, the most-reported crime in the 2021 Internet Crime Report report was phishing , a social engineering scam wherein the victim receives a deceptive message from someone in an attempt to get the victim to reveal personal information or account credentials or to trick them into downloading malware. Social Tactics.

Social Engineering 120

Social Engineering Energy and Utilities Phishing Scams 120

SecureList

NOVEMBER 9, 2022

The economic downturn (caused by energy prices, inflation, sanctions, etc.) In 2023, we might see a slight decline in ransomware attacks, reflecting the slowdown of the cryptocurrency markets. We can therefore expect that cybercrime groups from either block will feel safe to attack companies from the opposing side.

Cybersecurity 144

Cybersecurity Cyber Insurance Cybercrime IoT 144

SecureList

NOVEMBER 25, 2024

This is particularly notable in the case of Lazarus APT, specifically its attacks against cryptocurrency investors in May. In general, we’ve observed hacktivists in the Russo-Ukrainian conflict become more skilled and more focused on attacking large organizations such as government, manufacturing and energy entities.

IoT 117

IoT Energy and Utilities Phishing Cryptocurrency 117

SecureList

NOVEMBER 14, 2023

APT targeting turns toward satellite technologies, producers and operators The only known case of an attack utilizing satellite technologies that happened in recent years was the KA-SAT network hack of 2022. They advertise on dark web platforms and employ various techniques, including malware, phishing, and other social engineering methods.

Hacking 140

Hacking Energy and Utilities Malware Media 140