Education, Hacking, Information Security and Phishing

“My Slice”, an Italian adaptive phishing campaign

Security Affairs

JANUARY 22, 2024

Adaptive phishing campaigns are emerging as an increasingly sophisticated threat in the cybersecurity landscape. The phenomenon This phenomenon represents an evolution of traditional phishing tactics, as attackers seek to overcome defenses using more personalized and targeted approaches.

Phishing

Phishing Education Social Engineering Media

Phishing, the campaigns that are targeting Italy

Security Affairs

OCTOBER 12, 2023

This post analyzed the numerous phishing campaigns targeting users and organizations in Italy. Phishing is a ploy to trick users into revealing personal or financial information through an e-mail, Web site, and even through instant messaging. Phishing can also be used as a precursor attack to drop malware.

Phishing

Phishing Scams Education Passwords

Experts warn of a surge in NetSupport RAT attacks against education and government sectors

Security Affairs

NOVEMBER 21, 2023

Experts warn of a surge in NetSupport RAT attacks against education, government, and business services sectors. The most impacted sectors are education, government, and business services. GhostPulse), and other forms of phishing campaigns. The researchers did not observe newer variants utilizing older methods. .”Once

Education

Education Government Business Services Software

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

NCSC warns of a surge in ransomware attacks on education institutions

Security Affairs

SEPTEMBER 20, 2020

National Cyber Security Centre (NCSC) has issued an alert about a surge in ransomware attacks targeting education institutions. National Cyber Security Centre (NCSC), has issued an alert about a surge in ransomware attacks against education institutions. SecurityAffairs – hacking, education institutions).

Education

Education Ransomware Antivirus Backups

Microsoft disrupts SEABORGIUM ’s ongoing phishing operations

Security Affairs

AUGUST 15, 2022

Microsoft disrupted a hacking operation linked conducted by Russia-linked APT SEABORGIUM aimed at NATO countries. Microsoft has disrupted activity by SEABORGIUM, a Russia-based actor launching persistent phishing, credential and data theft, intrusions, and hack-and-leak campaigns tied to espionage.

Phishing

Phishing Accountability Hacking Surveillance

Microsoft blocked tens of billions of brute-force and phishing attacks in 2021

Security Affairs

FEBRUARY 4, 2022

Office 365 and Azure Active Directory (Azure AD) customers were the targets of billions of brute-force and phishing attacks last year. Microsoft revealed that Office 365 and Azure Active Directory (Azure AD) customers were the targets of billions of phishing emails and brute force attacks last year. ” states Microsoft.

Phishing

Phishing Authentication Education Cyber threats

FBI warns of PYSA Ransomware attacks against Education Institutions in US and UK

Security Affairs

MARCH 17, 2021

The FBI has issued an alert to warn about an increase in PYSA ransomware attacks on education institutions in the US and UK. The FBI has issued Tuesday an alert to warn about an increase in PYSA ransomware attacks against education institutions in the United States and the United Kingdom. SecurityAffairs – hacking, FBI).

Education

Education Ransomware Encryption Antivirus

UK NCSC warns of spear-phishing attacks from Russia-linked and Iran-linked groups

Security Affairs

JANUARY 26, 2023

National Cyber Security Centre (NCSC) warns of a surge in the number of attacks from Russian and Iranian nation-state actors. National Cyber Security Centre (NCSC) is warning of targeted phishing attacks conducted by threat actors based in Russia and Iran. The are increasingly targeting organizations and individuals.

Phishing

Phishing Media Hacking Education

Cryptocurrencies and cybercrime: A critical intermingling

Security Affairs

APRIL 26, 2024

Emerging threats Cybercrime often exploits precisely the lack of regulation and centralized controls of cryptocurrencies to deceive investors and embezzle funds through various forms of phishing, investment scams, digital wallet theft, ransomware, and illegal mining. Education improves awareness” is his slogan.

Cryptocurrency

Cryptocurrency Cybercrime Education Scams

Unmasking 2024’s Email Security Landscape

Security Affairs

FEBRUARY 28, 2024

Emerging Threats and Trends The landscape of email threats continues to evolve, with VIPRE’s report shedding light on several alarming trends: Deepfake and AI Exploitation: Attackers increasingly leverage deepfake technology and AI to craft more convincing phishing emails, significantly raising the stakes for email security.

Phishing

Phishing Identity Theft Scams Malware

App used by hundreds of schools leaking children’s data

Security Affairs

NOVEMBER 24, 2023

It can also be used by someone with malicious intent to impersonate school officials or manipulate children and parents,” said Vincentas Baubonis, Information Security Researcher at Cybernews. The DigitalOcean storage bucket, containing almost a million sensitive files, was left open to anyone without requiring authentication.

Identity Theft

Identity Theft Internet Internet Education

FBI: Compromised US academic credentials available on various cybercrime forums

Security Affairs

MAY 27, 2022

The FBI warns organizations in the higher education sector of credentials sold on cybercrime forums that can allow threat actors to access their networks. Crooks obtain the information by conducting spear-phishing and ransomware attacks, or other means. SecurityAffairs – hacking, FBI). To nominate, please visit:?.

Cybercrime

Cybercrime Education Accountability Phishing

Akira ransomware received $42M in ransom payments from over 250 victims

Security Affairs

APRIL 21, 2024

A joint advisory published by CISA, the FBI, Europol, and the Netherlands’ National Cyber Security Centre (NCSC-NL) revealed that since early 2023, Akira ransomware operators received $42 million in ransom payments from more than 250 victims worldwide. The attackers mostly used Cisco vulnerabilities CVE-2020-3259 and CVE-2023-20269.

Ransomware

Ransomware Encryption Antivirus VPN

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

The Last Watchdog

JUNE 21, 2020

The logic of the raid mainly comes down to using unsecured RDP ports or spear-phishing to infiltrate networks and gain a foothold in them. In many cases, the crooks hack managed service providers (MSPs) first and then use this access to compromise the partnering organizations.

Ransomware

Ransomware Hacking Encryption Penetration Testing

Russia-linked APT28 used post-compromise tool GooseEgg to exploit CVE-2022-38028 Windows flaw

Security Affairs

APRIL 22, 2024

Microsoft has observed APT28 using GooseEgg in post-compromise activities against various targets, including government, non-governmental, education, and transportation sector organizations in Ukraine, Western Europe, and North America. Most of the APT28s’ campaigns leveraged spear-phishing and malware-based attacks.

Government

Government Education Phishing Malware

Microsoft seized 41 domains used by Iran-linked Bohrium APT

Security Affairs

JUNE 6, 2022

Microsoft’s Digital Crimes Unit (DCU) announced the seizure of domains used by Iran-linked APT Bohrium in spear-phishing campaigns. Microsoft’s Digital Crimes Unit (DCU) announced to have taken legal action to disrupt a spear-phishing operation linked to Iran-linked APT Bohrium. SecurityAffairs – hacking, Bohrium).

Phishing

Phishing Manufacturing Education Cybercrime

Google TAG warns of Russia-linked APT groups targeting Ukraine

Security Affairs

APRIL 20, 2023

The researchers from Google TAG are warning of Russia-linked threat actors targeting Ukraine with phishing campaigns. Russia-linked threat actors launched large-volume phishing campaigns against hundreds of users in Ukraine to gather intelligence and aimed at spreading disinformation, states Google’s Threat Analysis Group (TAG).

Phishing

Phishing Education Accountability Telecommunications

Ransomware realities in 2023: one employee mistake can cost a company millions

Security Affairs

OCTOBER 17, 2023

With 85% of campaigns targeting victims with phishing emails containing malicious links, another form of a social engineering attack, education and cyber vigiliance remain a high priority. Why should employers educate employees about cyber security? This method was identified as vishing – a voice-based phishing attack.

Social Engineering

Social Engineering Ransomware Engineering Phishing

Phishers migrate to Telegram

Security Affairs

APRIL 6, 2023

The experts pointed out that crooks engaged in phishing activities have started to rely on the popular instant messaging platform more in recent months. On Telegram is possible to find channels that offer: Free phishing kits that can be used to target users of a large number of global and local brands. ” Phishing-as-a-Service.

Phishing

Phishing Scams Social Engineering Banking

Social engineering, deception becomes increasingly sophisticated

Security Affairs

FEBRUARY 20, 2023

This is done through deep learning methodologies such as the Generative Adversarial Network (GAN) i.e., a group of neural network models for machine learning, deputed to teach computers how to process information by emulating the human brain. He is also the author of the book “La Gestione della Cyber Security nella Pubblica Amministrazione”.

Social Engineering

Social Engineering Engineering Artificial Intelligence Computers and Electronics

US cyber and law enforcement agencies warn of Phobos ransomware attacks

Security Affairs

MARCH 2, 2024

US CISA, the FBI, and MS-ISAC issued a joint CSA to warn of attacks involving Phobos ransomware variants observed as recently as February 2024 US CISA, the FBI, and MS-ISAC issued a joint cyber security advisory (CSA) to warn of attacks involving Phobos ransomware variants such as Backmydata , Devos, Eight, Elking, and Faust.

Ransomware

Ransomware Backups Healthcare Firewall

EvilExtractor, a new All-in-One info stealer appeared on the Dark Web

Security Affairs

APRIL 24, 2023

The tool was developed by a company named Kodex, which claims that the tool was developed for an educational purpose. FortiGuard Labs observed this malware in a phishing email campaign on 30 March, which we traced back to the samples included in this blog.” The malware environment checking and Anti-VM functions.

Cybercrime

Cybercrime Malware Education Phishing

BlueCharlie changes attack infrastructure in response to reports on its activity

Security Affairs

AUGUST 6, 2023

The APT group has been active since at least 2017, its campaigns involve persistent phishing and credential theft campaigns leading to intrusions and data theft. Recently, Recorded Future Insikt Group observed BlueCharlie building a new infrastructure to launch phishing campaigns and/or credential harvesting.

Phishing

Phishing Social Engineering Authentication Cryptocurrency

10 Holiday Cybersecurity Tips for CISOs

Security Boulevard

NOVEMBER 22, 2023

Chief information security officers (CISOs) should proactively implement strategies and protect their infrastructures against hacking months and weeks leading up to this busy time of the year.  Yet, the holiday period is critical for many businesses. Here's how to keep your business safe.

CISO

CISO Cybersecurity Phishing Backups

CISA adds Zimbra bug exploited in attacks against NATO countries to its Known Exploited Vulnerabilities catalog

Security Affairs

APRIL 4, 2023

Proofpoint researchers recently reported that a Russian hacking group, tracked as Winter Vivern (aka TA473), has been actively exploiting vulnerabilities ( CVE-2022-27926 ) in unpatched Zimbra instances to gain access to the emails of NATO officials, governments, military personnel, and diplomats.

Phishing

Phishing Spyware Government Passwords

Remcos RAT campaign targets US accounting and tax return preparation firms

Security Affairs

APRIL 16, 2023

The phishing attacks began in February 2023, the IT giant reported. In 2021, CISA added Remcos to the list of top malware strains due to its use in mass phishing attacks using COVID-19 pandemic themes targeting businesses and individuals.

Accountability

Accountability Phishing Financial Services Surveillance

Analyzing attacks conducted by North Korea-linked ARCHIPELAGO APT group

Security Affairs

APRIL 6, 2023

The attack chain associated with ARCHIPELAGO starts with phishing emails that embed malicious links. The messages pose as sent by a representative of a media outlet or think tank and ask North Korea experts to participate in a media interview or request for information (RFI).

Phishing

Phishing Media Passwords Malware

British Council exposed 144,000 files containing student details?

Security Affairs

FEBRUARY 1, 2022

The British Council is a British organisation specialising in international cultural and educational opportunities. It operates in over 100 countries: promoting a wider knowledge of the United Kingdom and the English language; encouraging cultural, scientific, technological and educational co-operation with the United Kingdom.

Identity Theft

Identity Theft Education Phishing Scams

FBI and CISA warn of attacks by Rhysida ransomware gang

Security Affairs

NOVEMBER 15, 2023

The ransomware gang hit organizations in multiple industries, including the education, healthcare, manufacturing, information technology, and government sectors. According to the advisory, the threat actors have been observed exploiting Zerologon ( CVE-2020-1472 ) in Microsoft’s Netlogon Remote Protocol in phishing attempts.

Ransomware

Ransomware Manufacturing Healthcare Education

What the Email Security Landscape Looks Like in 2023

Security Affairs

MAY 12, 2023

Email Threats Are Becoming More Sophisticated There are a number of ways that email can be leveraged to compromise the security of an organization, but the most prominent approach is phishing. In 2022, email phishing attacks made up 24% of all spam emails — up from 11% in 2021. It’s a trend that’s growing. QR code spoofing.

Phishing

Phishing Social Engineering Small Business B2B

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

Security Affairs

FEBRUARY 28, 2024

“These operations have targeted various industries, including Aerospace & Defense, Education, Energy & Utilities, Governments, Hospitality, Manufacturing, Oil & Gas, Retail, Technology, and Transportation. . ” reads the joint report. ” reads the joint report.

Energy and Utilities

Energy and Utilities Government Firewall Malware

Colorado HCPF Department notifies 4 million individuals after IBM MOVEit breach

Security Affairs

AUGUST 14, 2023

Threat actors can exploit this data to carry out a broad range of fraudulent activities, from phishing attacks to identity theft. The Clop ransomware group claimed to have hacked hundreds of companies globally by exploiting MOVEit Transfer vulnerability. state of Colorado. CDHE did not disclose the number of impacted individuals.

Identity Theft

Identity Theft Data breaches Ransomware Education

3 of the Worst Data Breaches in the World That Could Have Been Prevented

Security Affairs

DECEMBER 1, 2022

While no plaintext passwords or financial data was stolen, the hack did expose answers to security questions. Weak passwords are the easiest way hackers can hack into a system. The hackers used social engineering techniques, sending phishing emails to several of Target’s vendors, and successfully breached Target’s network.

Data breaches

Data breaches Passwords Social Engineering Encryption

Russia-linked APT28 uses fake Windows Update instructions to target Ukraine govt bodies

Security Affairs

APRIL 30, 2023

CERT-UA warns of a spear-phishing campaign conducted by APT28 group targeting Ukrainian government bodies with fake ‘Windows Update’ guides. Most of the APT28s’ campaigns leveraged spear-phishing and malware-based attacks.

System Administration

System Administration Government Phishing Malware

Most Common Causes of Data Breach and How to Prevent It

Security Affairs

MAY 3, 2021

method used for social engineering is phishing, wherein cybercriminals send legitimate- looking malicious emails intended to extort sensitive financial data. Hacking Well, this is the top reason behind approximately half of the data breaches in the world. Employees should only have access to information that is critical for them.

Data breaches

Data breaches Social Engineering Engineering Network Security

FTC shares guidance for small businesses to prevent ransomware attacks

Security Affairs

NOVEMBER 14, 2021

In some cases threat actors could target small businesses with spear-phishing messages that can be specifically crafted using publicly available information or stolen data about an employee. SecurityAffairs – hacking, ransomware). ” The FTC also shared guidance for businesses that experienced a data breach.

Small Business

Small Business Ransomware Backups Authentication

Financially motivated Earth Lusca threat actors targets organizations worldwide

Security Affairs

JANUARY 18, 2022

Trend Micro researchers spotted an elusive threat actor, called Earth Lusca, that targets organizations worldwide via spear-phishing and watering hole attacks. . The first cluster was set up using rented virtual private servers (VPS), it was employed in watering hole and spear-phishing attacks. Both clusters served as a C&C server.

Cryptocurrency

Cryptocurrency Social Engineering Media Phishing

Security Affairs newsletter Round 432 by Pierluigi Paganini – International edition

Security Affairs

AUGUST 13, 2023

Police dismantled bulletproof hosting service provider Lolek Hosted Python URL parsing function flaw can enable command execution UK govt contractor MPD FM leaks employee passport data Power Generator in South Africa hit with DroxiDat and Cobalt Strike The Evolution of API: From Commerce to Cloud Gafgyt botnet is targeting EoL Zyxel routers Charming (..)

Data breaches

Data breaches Artificial Intelligence Cybercrime Adware

Experts warn of an emerging Python-based credential harvester named Legion

Security Affairs

APRIL 17, 2023

Legion is an emerging Python-based credential harvester and hacking tool that allows operators to break into various online services. Cado Labs researchers recently discovered a new Python-based credential harvester and hacking tool, named Legion, which was sold via Telegram. ” reads the analysis published by Cado Labs.

Mobile

Mobile Hacking Malware Accountability

Security Affairs newsletter Round 414 by Pierluigi Paganini – International edition

Security Affairs

APRIL 9, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, newsletter newsletter) The post Security Affairs newsletter Round 414 by Pierluigi Paganini – International edition appeared first on Security Affairs. billion rubles. billion rubles.

Computers and Electronics

Computers and Electronics Backups Cybercrime Marketing

Security Affairs newsletter Round 282

Security Affairs

SEPTEMBER 20, 2020

SecurityAffairs – hacking, newsletter). The post Security Affairs newsletter Round 282 appeared first on Security Affairs. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

DDOS

DDOS Ransomware Data breaches Advertising

Multinational ICICI Bank leaks passports and credit card numbers

Security Affairs

APRIL 20, 2023

Employees, businesses, and individuals whose data were exposed could be at risk of spear phishing campaigns,” added researchers. The banking sector is especially vulnerable to phishing attacks, as malicious actors often go after logins to online banking platforms, credit card credentials, and bank account numbers.

Banking

Banking Identity Theft Accountability Phishing

Microsoft aims at stopping cybercriminals from using cracked copies of Cobalt Strike

Security Affairs

APRIL 7, 2023

In November 2022, Google Cloud researchers announced the discovery of 34 different Cobalt Strike hacked release versions with a total of 275 unique JAR files across these versions. Google Cloud Threat Intelligence (GCTI) researchers developed a set of YARA rules to detect hacked variants in the wild with a high degree of accuracy.

Penetration Testing

Penetration Testing Ransomware Malware Hacking

Around the World with Thales: Our Upcoming Events

Thales Cloud Protection & Licensing

SEPTEMBER 27, 2023

As well as October’s Cybersecurity Awareness Month, there are many planned events to help educate on the emerging trends around cybersecurity and privacy. Visit us, and we’ll be happy to discuss applying modern authentication methods to protect your data from emerging threats and phishing attacks.

Authentication

Authentication Data privacy Education Technology

“My Slice”, an Italian adaptive phishing campaign

Phishing, the campaigns that are targeting Italy

Webinars

Trending Sources

Experts warn of a surge in NetSupport RAT attacks against education and government sectors

Webinars

NCSC warns of a surge in ransomware attacks on education institutions

Microsoft disrupts SEABORGIUM ’s ongoing phishing operations

Microsoft blocked tens of billions of brute-force and phishing attacks in 2021

FBI warns of PYSA Ransomware attacks against Education Institutions in US and UK

UK NCSC warns of spear-phishing attacks from Russia-linked and Iran-linked groups

Cryptocurrencies and cybercrime: A critical intermingling

Unmasking 2024’s Email Security Landscape

App used by hundreds of schools leaking children’s data

FBI: Compromised US academic credentials available on various cybercrime forums

Akira ransomware received $42M in ransom payments from over 250 victims

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

Russia-linked APT28 used post-compromise tool GooseEgg to exploit CVE-2022-38028 Windows flaw

Microsoft seized 41 domains used by Iran-linked Bohrium APT

Google TAG warns of Russia-linked APT groups targeting Ukraine

Ransomware realities in 2023: one employee mistake can cost a company millions

Phishers migrate to Telegram

Social engineering, deception becomes increasingly sophisticated

US cyber and law enforcement agencies warn of Phobos ransomware attacks

EvilExtractor, a new All-in-One info stealer appeared on the Dark Web

BlueCharlie changes attack infrastructure in response to reports on its activity

10 Holiday Cybersecurity Tips for CISOs

CISA adds Zimbra bug exploited in attacks against NATO countries to its Known Exploited Vulnerabilities catalog

Remcos RAT campaign targets US accounting and tax return preparation firms

Analyzing attacks conducted by North Korea-linked ARCHIPELAGO APT group

British Council exposed 144,000 files containing student details?

FBI and CISA warn of attacks by Rhysida ransomware gang

What the Email Security Landscape Looks Like in 2023

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

Colorado HCPF Department notifies 4 million individuals after IBM MOVEit breach

3 of the Worst Data Breaches in the World That Could Have Been Prevented

Russia-linked APT28 uses fake Windows Update instructions to target Ukraine govt bodies

Most Common Causes of Data Breach and How to Prevent It

FTC shares guidance for small businesses to prevent ransomware attacks

Financially motivated Earth Lusca threat actors targets organizations worldwide

Security Affairs newsletter Round 432 by Pierluigi Paganini – International edition

Experts warn of an emerging Python-based credential harvester named Legion

Security Affairs newsletter Round 414 by Pierluigi Paganini – International edition

Security Affairs newsletter Round 282

Multinational ICICI Bank leaks passports and credit card numbers

Microsoft aims at stopping cybercriminals from using cracked copies of Cobalt Strike

Around the World with Thales: Our Upcoming Events

Stay Connected