Krebs on Security

OCTOBER 13, 2021

A recent phishing campaign targeting Coinbase users shows thieves are getting cleverer about phishing one-time passwords (OTPs) needed to complete the login process. In each case, the phishers manually would push a button that caused the phishing site to ask visitors for more information, such as the one-time password from their mobile app.

Passwords 363

Passwords Phishing Accountability Scams 363

Krebs on Security

MARCH 14, 2025

In this scam, dubbed “ ClickFix ,” the visitor to a hacked or malicious website is asked to distinguish themselves from bots by pressing a combination of keyboard keys that causes Microsoft Windows to download password-stealing malware.

Phishing 292

Phishing Scams Malware Passwords 292

eSecurity Planet

OCTOBER 22, 2024

These malware scams lure individuals with fake conference invitations designed to mimic legitimate meeting requests and exploit users’ trust. Lumma stealer: Designed to harvest personal information and sensitive data from infected devices. AMOS stealer: Specifically targets macOS systems, stealing sensitive data and credentials.

Scams 124

Scams Malware Phishing Social Engineering 124

Krebs on Security

SEPTEMBER 18, 2024

Friends and family who follow the links for the streaming services are then asked to cough up their credit card information. One of the many scam funeral group pages on Facebook. Clicking to view the “live stream” of the funeral takes one to a newly registered website that requests credit card information.

Scams 65

Scams DNS Internet Internet 65

Krebs on Security

JULY 3, 2023

Here’s a look at the most recent incarnation of this scam — DomainNetworks — and some clues about who may be behind it. The Better Business Bureau listing for DomainNetworks gives it an “F” rating, and includes more than 100 reviews by people angry at receiving one of these scams via snail mail.

Scams 303

Scams Business Services Accountability Marketing 303

Krebs on Security

JANUARY 7, 2025

Before we get to the Apple scam in detail, we need to revisit Tony’s case. The Owner: The phishing panel owner, who will frequently listen in on and participate in scam calls. In the first step of the attack, they peppered the target’s Apple device with notifications from Apple by attempting to reset his password.

Phishing 343

Phishing Cryptocurrency Accountability Social Engineering 343

Krebs on Security

APRIL 14, 2019

site that helps him manage more than 500 scam properties and interactions with up to 100 (soon-to-be-scammed) “guests” looking to book the fake listings. The Land Lordz administrative panel for a scammer who’s running dozens of Airbnb scams in the United Kingdom. The price is € 250 + €500 secure deposit.

Scams 278

Scams Advertising Accountability Phishing 278

eSecurity Planet

MARCH 31, 2025

Streaming giant Netflix is at the center of a rising wave of online scams, cybersecurity experts warn. Fraudsters use increasingly sophisticated tactics from fake texts to deceptive emails and websites to steal Netflix users personal and financial information. They can now access the account, which contains financial information.

Scams 108

Scams Artificial Intelligence Phishing Passwords 108

Webroot

MAY 9, 2025

Text scams, also known as smishing (SMS + phishing ), are on the rise. The Federal Trade Commission reports that in 2024, consumers lost $470 million to scams that started with text messages. Watch out for these common scams Package delivery alerts Package delivery alerts are the most common text scam.

Scams 72

Scams Mobile Banking VPN 72

Security Affairs

MARCH 24, 2025

The FBI warns of a significant increase in scams involving free online document converters to infect users with malware. The FBI warns that threat actors use malicious online document converters to steal users sensitive information and infect their systems with malware. ” reads the alert. ” reads the alert.

Malware 116

Malware Scams Identity Theft Antivirus 116

Adam Levin

NOVEMBER 23, 2020

of all reports to the BBB Scam Tracker “were online purchase scams, up from 24.3% of those consumers lost money due to those scams, up from 71.2% A BBB survey conducted in August found that the majority of these scammed consumers made purchases for which they never received products. On top of that, 80.5%

Scams 239

Scams Banking Retail Consumer Protection 239

eSecurity Planet

JUNE 9, 2025

SEE: Password Management Policy (TechRepublic Premium) ‘A Lot of Money, Very Unacceptable’ HMRC’s deputy chief executive, Angela MacDonald, revealed the theft during a Treasury Select Committee hearing on Wednesday. HMRC has already locked down affected accounts, removed incorrect information, and reset login details.

Scams 86

Scams Phishing Password Management Accountability 86

Malwarebytes

JUNE 10, 2025

According to new research conducted by Malwarebytes, 44% of people encounter a mobile scam every single day, while 78% encounter scams at least weekly. As Malwarebytes learned, 25% of scam victims were harassed or blackmailed, 19% had private info exposed, and 15% permanently lost their money. You can read the full report below.

Scams 90

Scams Mobile Identity Theft Social Engineering 90

Adam Levin

NOVEMBER 17, 2020

This prolonged season of online shopping (and stress) will provide ample opportunity for phishers, smishers, vishers and identity thieves to pilfer your valuable personal and/or payment information. Here are 50 ways to avoid getting scammed on Black Friday — and beyond. Never provide your payment information to anyone who calls you.

Scams 243

Scams Retail Banking Passwords 243

Zero Day

JUNE 22, 2025

Our goal is to deliver the most accurate information and the most knowledgeable advice possible in order to help you make smarter buying decisions on tech gear and a wide array of products and services. If we have made an error or published misleading information, we will correct or clarify the article.

Passwords 101

Passwords Data breaches Password Management Accountability 101

Malwarebytes

JUNE 19, 2025

The likely source: information stealers , or infostealers for short. Infostealers are malicious software designed specifically to gather sensitive information from infected devices. Targeted phishing : Combining leaked data allows cybercriminals to engage in very convincing and personalized scams. billion records each.

Identity Theft 138

Identity Theft Passwords Phishing Accountability 138

Malwarebytes

JUNE 9, 2025

Unfortunately, people getting scammed online is a frequent event. It really can happen to anyone, so there’s no need to feel embarrassed if you have been scammed. So here are some things you can do if you’ve been scammed. Use strong, unique passwords and enable multi-factor authentication (MFA) wherever possible.

Scams 72

Scams Banking Artificial Intelligence Accountability 72

Krebs on Security

DECEMBER 18, 2024

The message included a “Google Support Case ID number” and information about the Google representative supposedly talking to him on the phone, stating the rep’s name as “Ashton” — the same name given by the caller. “It’s almost like there’s no consequences. .

Cryptocurrency 363

Cryptocurrency Accountability Authentication Phishing 363

Malwarebytes

OCTOBER 15, 2024

Political ads could be hiding online scams, many people feel, and the election, they say, will likely fall victim to some type of “cyber interference.” Broadly, Malwarebytes found that: 74% of people “consider US election season a risky time for personal information.” The reasons could be obvious.

Scams 136

Scams Identity Theft Cybercrime Accountability 136

Krebs on Security

JULY 29, 2021

Every time there is another data breach, we are asked to change our password at the breached entity. But the reality is that in most cases by the time the victim organization discloses an incident publicly the information has already been harvested many times over by profit-seeking cybercriminals.

Passwords 363

Passwords Password Management Phishing Scams 363

Zero Day

JUNE 20, 2025

Our goal is to deliver the most accurate information and the most knowledgeable advice possible in order to help you make smarter buying decisions on tech gear and a wide array of products and services. If we have made an error or published misleading information, we will correct or clarify the article.

Passwords 106

Passwords Data breaches Password Management Identity Theft 106

Krebs on Security

NOVEMBER 3, 2020

Two young men from the eastern United States have been hit with identity theft and conspiracy charges for allegedly stealing bitcoin and social media accounts by tricking employees at wireless phone companies into giving away credentials needed to remotely access and modify customer account information. Prosecutors say Jordan K.

Scams 358

Scams Wireless Identity Theft Mobile 358

Krebs on Security

NOVEMBER 1, 2024

The missive bore the name of the hotel and referenced details from their reservation, claiming that booking.com’s anti-fraud system required additional information about the customer before the reservation could be finalized. A scan of social media networks showed this is not an uncommon scam.

Phishing 283

Phishing Accountability Artificial Intelligence Cybercrime 283

eSecurity Planet

MAY 28, 2025

The scam, which combined a phone call and a cleverly disguised email, highlights just how advanced phishing methods are becoming, even fooling seasoned tech leaders. The caller, posing as a Google representative, urged him to change his Gmail password right there during the call and warned him not to say it out loud.

Scams 73

Scams Phishing Passwords Media 73

SecureList

OCTOBER 4, 2024

To prevent anyone trying to disclose information about these channels and the fraudulent activity of their creators, the administrators disabled message forwarding, screenshots, and previews of these channels in the Telegram web-version. Inside the archive is an MSI file and a TXT file with a password required for installation.

Scams 145

Scams Cryptocurrency Malware Software 145

Webroot

APRIL 11, 2025

But while youre busy trying to get your returns filed on time, tax scammers and identity thieves are busy trying to steal your precious personal information. Thats why each year, the IRS releases its list of Dirty Dozen Tax Scams. According to the IRS, almost 300,000 cases of identity theft were reported in 2024, leading to $5.5

Scams 62

Scams Identity Theft Backups Phishing 62

Krebs on Security

JANUARY 31, 2025

“The Saim Raza-run websites operated as marketplaces that advertised and facilitated the sale of tools such as phishing kits, scam pages and email extractors often used to build and maintain fraud operations,” the DOJ explained. “Presumably, these buyers also include Dutch nationals.

Phishing 282

Phishing Cybercrime Advertising Malware 282

Malwarebytes

JANUARY 27, 2025

But shortly after the payment, ALPHV disappeared in an unconvincing exit scam designed to make it look as if the groups website had been seized by the FBI, forgetting to pay its affiliates in the process. Stolen information The data breach at Change Healthcare is the largest healthcare data breach in US history. Change your password.

Data breaches 123

Data breaches Healthcare Insurance Passwords 123

Krebs on Security

NOVEMBER 21, 2024

The targeted SMS scams asked employees to click a link and log in at a website that mimicked their employer’s Okta authentication page. The bot allowed the attackers to use the phished username, password and one-time code to log in as that employee at the real employer website.

Identity Theft 275

Identity Theft Phishing Cryptocurrency Accountability 275

SecureWorld News

FEBRUARY 14, 2025

Be wary of romance scams "People can be vulnerable on February 14th," said Dave Machin , Partner at The Berkeley Partnership. "If If a store has limited contact information and no or too good to be true customer reviews, this is also a red flag," Machin said. Someone genuine would not be asking for that information," Machin said.

Scams 72

Scams Cybercrime Phishing Social Engineering 72

Webroot

MARCH 3, 2025

During this time, many government agencies and consumer protection organizations come together to help educate consumers on how to keep their personal and financial information secure. Millions of customers were put at risk when their social security numbers, phone numbers, and other sensitive personal information were leaked.

Consumer Protection 99

Consumer Protection Identity Theft Scams Social Engineering 99

Krebs on Security

NOVEMBER 4, 2021

Here’s a look at a fairly elaborate SMS-based phishing scam that spoofs FedEx in a bid to extract personal and financial information from unwary recipients. Those who click “Next Step” after providing that information are asked to add a payment card to cover the $2.20 “redelivery fee.”

Phishing 343

Phishing Scams Mobile DNS 343

Malwarebytes

MARCH 17, 2025

But in the background, their system has hidden malware in the file the victim has downloaded, which is capable of gathering information from the affected device such as: Personal identifying information (PII) including Social Security Numbers (SSN). Financial information, like your banking credentials and crypto wallets.

Malware 136

Malware Adware Education Phishing 136

Krebs on Security

NOVEMBER 21, 2020

The attacks were facilitated by scams targeting employees at GoDaddy , the world’s largest domain name registrar, KrebsOnSecurity has learned. In March, a voice phishing scam targeting GoDaddy support employees allowed attackers to assume control over at least a half-dozen domain names, including transaction brokering site escrow.com.

Cryptocurrency 364

Cryptocurrency Scams Social Engineering VPN 364

Malwarebytes

MAY 8, 2025

Beside stealing usernames, passwords and circumventing two factor authentication, we identified malicious code capable of performing additional nefarious actions unbeknownst to the victim. Browser extensions such as Malwarebytes Browser Guard will block ads but also the scams or malware sites associated with these schemes. datedeath[.]com

Phishing 103

Phishing Authentication Engineering Banking 103

Hacker's King

DECEMBER 25, 2024

Tools designed for password cracking often exploit weak security practices, but understanding these methods is vital for safeguarding your account. This guide explores Snapchat password-cracking tools while focusing on ethical ways to enhance security. Weak or simple passwords are particularly vulnerable.

Passwords 52

Passwords Social Engineering Accountability Scams 52

Malwarebytes

MAY 1, 2025

Phishing In phishing scams, cybercriminals trick people and businesses into handing over sensitive information like credit card numbers or login details for vital online accounts. Lured in by similar color schemes, company logos, and familiar layouts, victims log in to their account by entering their username and password.

Small Business 88

Small Business Cybersecurity Scams Passwords 88