Cybercrime, Password Management, Phishing and Scams

A new phishing scam targets American Express cardholders

Security Affairs

SEPTEMBER 5, 2022

Cybersecurity firm Armorblox discovered a new phishing campaign aimed at American Express customers. Armorblox researchers uncovered a new phishing campaign that is targeting American Express customers. The page was crafted to request the victims to enter their user ID and password. Pierluigi Paganini.

Phishing

Phishing Scams Social Engineering Password Management

The Life Cycle of a Breached Database

Krebs on Security

JULY 29, 2021

Much like WeLeakInfo and others operated before being shut down by law enforcement agencies, these services sell access to anyone who wants to search through billions of stolen credentials by email address, username, password, Internet address, and a variety of other typical database fields. TARGETED PHISHING. Don’t re-use passwords.

Passwords

Passwords Password Management Phishing Scams

Busted! Fraud-as-a-Service gang that sold 2FA-proof phishing arrested

Malwarebytes

JULY 23, 2021

The Dutch police announced that they arrested two Dutch citizens, aged 24 and 15, for developing and selling phishing panels. For cybercriminals that lacked the technical knowledge or means, the Fraud Family also offered to host the phishing sites and backend panels. 2FA bypass.

Phishing

Phishing Banking Password Management Scams

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Hackers Intercept USPS Workers' Paychecks in Direct Deposit Scam

SecureWorld News

MAY 22, 2023

More than 450 workers at the United States Postal Service (USPS) lost more than $1 million in a direct deposit scam that left postal workers without pay, angry at the USPS for not heeding warnings of the scheme, and the agency scrambling to figure out exactly what happened. And this is, sadly, an example of why both of those are so critical."

Scams

Scams Password Management Passwords Authentication

Fla. Man Charged in SIM-Swapping Spree is Key Suspect in Hacker Groups Oktapus, Scattered Spider

Krebs on Security

JANUARY 30, 2024

” Group-IB dubbed the gang by a different name — 0ktapus — which was a nod to how the criminal group phished employees for credentials. The missives asked users to click a link and log in at a phishing page that mimicked their employer’s Okta authentication page. On July 28 and again on Aug. According to an Aug.

Social Engineering

Social Engineering Mobile Cybercrime Passwords

ShinyHunters Hits Ticketmaster with Breach Impacting 560 Million Users

SecureWorld News

MAY 30, 2024

The infamous cybercrime syndicate ShinyHunters has struck again, this time claiming responsibility for an absolutely staggering data breach impacting live entertainment giants Ticketmaster and Live Nation. Since the risks customers will face will be in the future in the form of phishing, odds are the impact is minimal.

Data breaches

Data breaches Data privacy Marketing Accountability

Black Friday and Cyber Monday, crooks are already at work

Security Affairs

NOVEMBER 19, 2022

The experts pointed out that the majority of all Black Friday spam (by volume) (56%) received in the same period was marked as a scam. The report provides details about some of the Black Friday scams analyzed by the experts, such as Louis Vuitton and Ray Ban sales scams. SecurityAffairs – hacking, scam).

Scams

Scams Retail Password Management Phishing

AT&T confirms 73 million people affected by data breach

Malwarebytes

APRIL 2, 2024

” The data came to light a few weeks ago when it was put up for sale on an online cybercrime forum, but the seller, a hacker calling themselves “MajorNelson”, claimed it had been stolen from AT&T three years prior. Choose a strong password that you don’t use for anything else. Watch out for fake vendors.

Data breaches

Data breaches Passwords Phishing Accountability

Hybrid phishing and vishing attacks hunt for credit card info

SC Magazine

JUNE 24, 2021

A recently reported phishing and vishing campaign was designed to impersonate Geek Squad. A new blog post report has shone a light on the malicious practice known as voice phishing or vishing – a social engineering tactic that some cyber experts say has only grown in prominence since COVID-19 forced employees to work from home.

Phishing

Phishing Social Engineering Scams Engineering

Russian Infostealer Gangs Steal 50 Million Passwords

eSecurity Planet

NOVEMBER 29, 2022

Group-IB cybersecurity researchers recently identified several Russian-speaking cybercrime groups offering infostealing malware-as-a-service (MaaS), resulting in the theft of more than 50 million passwords thus far. Millions in Cybercrime Profit. Also read: The Challenges Facing the Passwordless Future. Last month, the U.S.

Passwords

Passwords Cybercrime Malware Marketing

Personal Cybersecurity Concerns for 2023

Security Through Education

JANUARY 18, 2023

The truth is technology has grown at an exponential rate and so has cybercrime. Cybercrime doesn’t just affect big businesses and national governments. Impersonation Scams. Although BEC attacks may be targeted at business, they can also be used to scam individual people. What You Can Do. Update your software.

Cybersecurity

Cybersecurity Social Engineering Scams IoT

Happy 13th Birthday, KrebsOnSecurity!

Krebs on Security

DECEMBER 29, 2022

Here’s a look at some of the more notable cybercrime stories from the past year, as covered by KrebsOnSecurity and elsewhere. 24, Russia invades Ukraine, and fault lines quickly begin to appear in the cybercrime underground. com, which was fed by pig butchering scams.

Cryptocurrency

Cryptocurrency Cybercrime Computers and Electronics Scams

Internet Safety Month: Avoiding the consequences of unsafe Internet practices

Malwarebytes

JUNE 3, 2022

By focusing on this context, we hope that you’ll come away with a stronger understanding about, for instance, why you should use a password manager rather than that you should use a password manager. In the world of online scams, criminals care about one thing: Your money. Don’t ruin your device.

Internet

Internet Internet Scams Passwords

How to Talk to Your Grandparents About Cybersecurity

McAfee

SEPTEMBER 10, 2021

According to research from the FBI and FTC, cybercrimes against older adults cost more than $650 million in losses each year. With Grandparent’s Day right around the corner, here’s a guide on how you can help keep your grandparents safe from the most common cybercrimes on the internet. Talk About the Latest Online Scams .

Cybersecurity

Cybersecurity Scams Passwords Cybercrime

Arrested: Fearmongering data thieves who victimized thousands of businesses

Malwarebytes

FEBRUARY 24, 2023

Sadly, one of the people arrested was also a member of the Dutch Institute for Vulnerability Disclosure (DIVD), a group of volunteer cybercrime fighters. The cybercrime unit behind the arrests also warned that criminals are getting better at refining this kind of stolen data and finding innovative uses for it. Take your time.

Phishing

Phishing Passwords Cybercrime Banking

Protect your business with security awareness training

SiteLock

AUGUST 27, 2021

In fact, 97% of us can’t tell a phishing email from a legitimate one. Cybercriminals know this, which is why phishing attacks account for more than 80% of reported security incidents and why 54% of companies say their data breaches were caused by “negligent employees. ”. Humans can be distracted, intimidated and especially – misled.

Security Awareness

Security Awareness Passwords Phishing Scams

State of Malware 2024: What consumers need to know

Malwarebytes

FEBRUARY 6, 2024

Released today, the Malwarebytes State of Malware 2024 report takes a deep dive into the latest developments in the world of cybercrime. Passwords Google and Microsoft made good on their promise to back passkeys , an encryption-based alternative to passwords that can’t be stolen, guessed, cracked, or phished.

Malware

Malware Passwords Identity Theft Banking

Clouding the issue: what cloud threats lie in wait in 2022?

Malwarebytes

MARCH 17, 2022

The linked article focuses on misconfiguration, phishing issues, limiting data share, and the ever-present Internet of Things. Digital wallet phish attempts are rampant on social media, and we expect this to rise. Below are some other areas of concern which spring to mind. Below, we dig into a few of those.

Cryptocurrency

Cryptocurrency Backups Phishing Password Management

We dig into the Game Players Code

Malwarebytes

OCTOBER 22, 2021

Malicious ads, fake games, survey scams, phishing attacks…whatever you can think of, it’s in use. LLoyds Bank, in response to the never-ending glut of financial gaming fraud, has come up with something called “ Shield against scams ”. The “ I accidentally reported you ” scam is hitting saturation point at the moment.

Accountability

Accountability Banking Scams Password Management

3.8 billion Clubhouse and Facebook user records allegedly scraped and merged, put for sale online

Security Affairs

SEPTEMBER 24, 2021

This means that it would be much easier for scammers to run localized mass campaigns and craft personalized scams based on the data gleaned from the potential victims’ Facebook profiles. Brute-forcing the passwords of the affected Facebook profiles. Change the password of your Clubhouse and Facebook accounts. Spamming 3.8

Passwords

Passwords Media Scams Accountability

MY TAKE: COVID-19’s silver lining could turn out to be more rapid, wide adoption of cyber hygiene

The Last Watchdog

MAY 11, 2020

These developments would have, over the next decade or so, steadily and materially reduced society’s general exposure to cybercrime and online privacy abuses. What’s more the FBI reports that Business Email Compromise (BEC) accounted for an estimated $26 billion in cybercrime-related losses over a three year period.

Computers and Electronics

Computers and Electronics Data privacy Encryption Media

Account Takeover: What is it and How to Prevent It?

Identity IQ

MAY 7, 2021

A compromised business account, especially at a management or executive level, opens up a range of fraud opportunities for criminals. Once they have access to an account with sufficient authority, cybercriminals can use that trusted email address to scam other companies into making fraudulent payments or just distribute malware en mass.

Accountability

Accountability Data breaches Passwords Social Engineering

Cyber Security Informer

A new phishing scam targets American Express cardholders

The Life Cycle of a Breached Database

Webinars

Trending Sources

Busted! Fraud-as-a-Service gang that sold 2FA-proof phishing arrested

Webinars

Hackers Intercept USPS Workers' Paychecks in Direct Deposit Scam

Fla. Man Charged in SIM-Swapping Spree is Key Suspect in Hacker Groups Oktapus, Scattered Spider

ShinyHunters Hits Ticketmaster with Breach Impacting 560 Million Users

Black Friday and Cyber Monday, crooks are already at work

AT&T confirms 73 million people affected by data breach

Hybrid phishing and vishing attacks hunt for credit card info

Russian Infostealer Gangs Steal 50 Million Passwords

Personal Cybersecurity Concerns for 2023

Happy 13th Birthday, KrebsOnSecurity!

Internet Safety Month: Avoiding the consequences of unsafe Internet practices

How to Talk to Your Grandparents About Cybersecurity

Arrested: Fearmongering data thieves who victimized thousands of businesses

Protect your business with security awareness training

State of Malware 2024: What consumers need to know

Clouding the issue: what cloud threats lie in wait in 2022?

We dig into the Game Players Code

3.8 billion Clubhouse and Facebook user records allegedly scraped and merged, put for sale online

MY TAKE: COVID-19’s silver lining could turn out to be more rapid, wide adoption of cyber hygiene

Account Takeover: What is it and How to Prevent It?

Stay Connected