Security Boulevard

MARCH 20, 2025

ThreatLabz researchers demonstrated how DeepSeek can be manipulated to quickly generate phishing pages that mimic trusted brands. generated phishing campaigns: A ThreatLabz case study demonstrates how DeepSeek can create a phishing page in just five prompts.AI-driven

Social Engineering 76

Social Engineering Phishing Risk Insurance 76

Security Affairs

AUGUST 3, 2023

Russia-linked APT29 group targeted dozens of organizations and government agencies worldwide with Microsoft Teams phishing attacks. Microsoft Threat Intelligence reported that the cyberspies conducted highly targeted social engineering attacks using credential theft phishing lures sent as Microsoft Teams chat.

Phishing 98

Phishing Authentication Social Engineering Government 98

SC Magazine

JANUARY 26, 2021

companies as a primary target of a new phishing scheme. Cybercriminals have been using a phishing kit featuring fake Office 365 password alerts as a lure to target the credentials of chief executives, business owners and other high-level corporate leaders. The company could not be certain, however, if the V4 phishing kit was involved.

Phishing 118

Phishing Passwords Security Awareness Social Engineering 118

Security Affairs

AUGUST 16, 2023

A phishing campaign employing QR codes targeted a leading energy company in the US, cybersecurity firm Cofense reported. “Beginning in May 2023, Cofense has observed a large phishing campaign utilizing QR codes targeting the Microsoft credentials of users from a wide array of industries.” com (Cloudflare’s Web3 services).

Phishing 98

Phishing Energy and Utilities Insurance Manufacturing 98

SecureWorld News

NOVEMBER 3, 2022

Dropbox recently announced it had been the target of a phishing attack that resulted in the threat actor(s) accessing some code the company had stored on GitHub. What happened in the Dropbox phishing attack? Like many persistent phishing campaigns, this eventually worked, and the threat actor copied 130 Dropbox code repositories.

Phishing 98

Phishing Passwords Social Engineering Accountability 98

Digital Shadows

FEBRUARY 19, 2025

Key Findings ReliaQuest recently responded to a manufacturing sector breach involving phishing and data exfiltration. The attackers used phishing and evasion techniques commonly associated with the Black Basta ransomware group. This figure aligns with the 2024 average and a marks 22% faster speed compared to 2023.

Phishing 112

Phishing Accountability Social Engineering Data breaches 112

Security Affairs

OCTOBER 19, 2023

During the reporting period, key findings include: DDoS and ransomware rank the highest among the prime threats, with social engineering, data related threats, information manipulation, supply chain, and malware following.

Social Engineering 133

Social Engineering Artificial Intelligence Engineering Ransomware 133

Malwarebytes

OCTOBER 27, 2023

Octo Tempest is believed to be a group of native English speaking cybercriminals that uses social engineering campaigns to compromise organizations all over the world. This can be done in a number of ways, but the most common ones involve social engineering attacks on the victim's carrier.

Social Engineering 116

Social Engineering Engineering Ransomware Backups 116

SecureWorld News

SEPTEMBER 30, 2024

including government, manufacturing, transportation, and law enforcement. The cybercriminals behind Storm-050 employ advanced social engineering techniques, including phishing emails to trick victims into granting access to internal systems. The group is now expanding its operations by targeting U.S.

Ransomware 116

Ransomware Social Engineering Healthcare Phishing 116

Thales Cloud Protection & Licensing

DECEMBER 16, 2021

Deepfakes, mis and disinformation threaten to disrupt the social tissue of modern democracies by damaging the trust people place on institutions, each other and science. Social engineering and phishing attacks are the most common vector. The situation is no different in other continents. Ransomware cases increase.

Social Engineering 126

Social Engineering Phishing Ransomware Cybercrime 126

eSecurity Planet

SEPTEMBER 14, 2022

As a matter of fact, the most-reported crime in the 2021 Internet Crime Report report was phishing , a social engineering scam wherein the victim receives a deceptive message from someone in an attempt to get the victim to reveal personal information or account credentials or to trick them into downloading malware.

Social Engineering 121

Social Engineering Energy and Utilities Phishing Scams 121

SecureList

DECEMBER 9, 2024

This case underscores the serious risk that social engineering and supply chain attacks pose to open-source projects. Kernel exploitation in Windows and Linux The two major operating systems power many of the world’s critical assets, including servers, manufacturing equipment, logistics systems and IoT devices.

Internet 107

Internet Internet Risk Social Engineering 107

SecureList

NOVEMBER 29, 2024

The campaign, which we dubbed EastWind , used phishing emails with malicious shortcuts attached to deliver malware to target computers. The attack starts with phishing emails purporting to be a court order or summons from an institution in Colombia’s judicial system.

Energy and Utilities 100

Energy and Utilities Ransomware Malware Government 100

CyberSecurity Insiders

APRIL 5, 2023

According to a study conducted by se-curity firm Mandiant, the group has been in operation since 2018 and has now been tasked with carrying out both espionage and financially motivated attacks such as credential harvesting and social engineering.

Hacking 105

Hacking Social Engineering Cryptocurrency Manufacturing 105

SecureWorld News

FEBRUARY 17, 2022

Security researchers from Proofpoint have tracked an APT that has targeted the aviation, aerospace, transportation, manufacturing, and defense industries dating back to 2017, and are calling it TA2541. Phishing in the transportation sector. It's an advanced persistent threat (APT) that has troubled the transportation sector for years.

Social Engineering 98

Social Engineering Phishing Engineering Manufacturing 98

Digital Shadows

JANUARY 14, 2025

The sectors targeted by ransomware groups have also remained consistent: Professional services and technical services (PSTS) and manufacturing companies are primary targets because of their economic importance, low tolerance for operational downtime, and higher willingness to pay ransoms. to deliver timely detections for GreyMatter customers.

Ransomware 126

Ransomware Social Engineering Phishing Manufacturing 126

Malwarebytes

AUGUST 4, 2023

Attackers believed to have ties to Russia's Foreign Intelligence Service (SVR) are using Microsoft Teams chats as credential theft phishing lures. The targeted organizations are mostly found among government, non-government organizations (NGOs), IT services, technology, discrete manufacturing, and media sectors.

Authentication 98

Authentication Phishing Accountability Small Business 98

Malwarebytes

JUNE 22, 2022

A phishing campaign is using voicemail notification messages to go after victims’ Office 365 credentials. The javascript uses the windows.location.replace method to redirect the target to a specially crafted phishing page. How to avoid being phished. to make it look like a sound clip. Spoofed email.

Phishing 114

Phishing Password Management Passwords Manufacturing 114

Duo's Security Blog

DECEMBER 19, 2024

Phishing is still one of the most common attack vectors, and the holidays provide an especially appealing time to launch an attack thats been supercharged by modern natural language processing models and novel QR codes. No industry is spared this phishing season, though some are targeted more often than others.

Phishing 64

Phishing Authentication Social Engineering Passwords 64

Appknox

JUNE 23, 2022

Thus, these Australian attacks significantly contribute to the rising trend in socially engineered attacks. Cryptocurrency and NFT attacks are rising as decentralized finance, and digital art assets become sophisticated socially engineered threats. Common Trends Among the Australian Mobile Threats.

Social Engineering 92

Social Engineering Mobile Scams Engineering 92

CyberSecurity Insiders

MAY 15, 2023

Currently, it appears that the attackers are primarily focusing on companies in manufacturing, wealth management, insurance, and pharmaceuticals sectors. Hopefully, this service will help mitigate the risks associated with the malicious attack, such as phishing and other social engineering attacks.

Ransomware 100

Ransomware Insurance Social Engineering Manufacturing 100

Security Affairs

AUGUST 14, 2020

The Israeli defence ministry announced on Wednesday that it had foiled a cyber attack carried out by a foreign threat actor targeting the country’s defence manufacturers. Attackers sent to the victims weaponized spear-phishing messages using a malicious attachment.

Cyber Attacks 127

Cyber Attacks Social Engineering Advertising Manufacturing 127

Digital Shadows

NOVEMBER 26, 2024

Key Points Phishing incidents rose during the reporting period (August 1 to October 31, 2024), accounting for 46% of all customer incidents. This increase is likely driven by high employee turnover and easy access to phishing kits. Meanwhile, “RansomHub” is rising rapidly due to its attractive ransomware-as-a-service (RaaS) model.

Cyber Attacks 59

Cyber Attacks Phishing Ransomware Cyber Insurance 59

The Last Watchdog

JULY 13, 2023

Bantick “As the MOVEit hack has proved, the bad actors are always looking for new ways to attack with tactics ranging from third party supplier attacks to more sophisticated social engineering and phishing attack techniques.

Cyber Risk 189

Cyber Risk Risk Insurance Energy and Utilities 189

CyberSecurity Insiders

NOVEMBER 29, 2022

Globally, healthcare, financial services, manufacturing and state and local governments continue to see a rise in the frequency of attacks. From internet providers to manufacturers, this continues to be an issue. Phishing Targeted Attacks. F5 posted last year that there was a 45% increase in phishing emails from 2020-2021.

Phishing 134

Phishing Technology IoT Manufacturing 134

Thales Cloud Protection & Licensing

DECEMBER 4, 2023

The report also highlights that ransomware attacks are becoming more targeted, with attackers focusing on high-value targets with particular emphasis on the Industrial and Manufacturing sectors. The report notes that these attacks can have significant implications for democratic processes, social cohesion, and national security.

Social Engineering 77

Social Engineering Backups Manufacturing DDOS 77

The Last Watchdog

DECEMBER 3, 2018

Satya Gupta, CTO and Co-founder, Virsec: Gupta.

Hacking 157

Hacking eCommerce Authentication Social Engineering 157

SecureList

NOVEMBER 28, 2024

Based on limited telemetry, we believe with medium to low confidence that some of the initial infections were spear-phishing emails. Most of the infections were still at financial institutions in Vietnam, with one victim active in the manufacturing industry. In terms of victimology, there was little change.

Malware 116

Malware Government Software Spyware 116

Webroot

JANUARY 7, 2022

Malicious actors will continue to improve their social engineering tactics, making it more difficult to recognize deception and make it increasingly easier to become a victim, predicts Milbourne. Industries like oil, gas, manufacturing and mining will continue to see growth in targeted attacks. Ransomware.

Cybercrime 116

Cybercrime Phishing Ransomware Cryptocurrency 116

Security Boulevard

MARCH 31, 2022

The first mention of this malware appears to be in early 2020 , when multiple phishing campaigns cast a wide net over thousands of users, offering RedLine en masse. Seen in attacks against healthcare and manufacturing agencies, RedLine started with heavy-hitter industries and only got worse as more users purchased it. Email filtering.

Cybersecurity 98

Cybersecurity Social Engineering Passwords Malware 98

Security Affairs

NOVEMBER 15, 2019

The phishing campaigns delivering malicious attachments were observed since the end of October. “The increasing sophistication of these lures mirrors improved social engineering and a focus on effectiveness over quantity appearing in many campaigns globally across the email threat landscape.”

Government 103

Government Malware Social Engineering Banking 103

CyberSecurity Insiders

DECEMBER 6, 2022

This analysis from Dirk Schrader, Vice President of Security Research, and Michael Paye, Vice President of Research and Development, is based on Netwrix’s global experience across a wide range of verticals, including technology, finance, manufacturing, government and healthcare.

Cybersecurity 116

Cybersecurity Cybercrime Social Engineering Firmware 116

eSecurity Planet

SEPTEMBER 2, 2021

Attackers have targeted critical and vulnerable sectors such as manufacturing, financial, transportation, healthcare, government administration, energy, and more, including a couple of $50 million attacks on the likes of Acer and Quanta. East Coast. Email is a Critical Ransomware Attack Vector. Forensic Reports.

Ransomware 129

Ransomware DNS Small Business Authentication 129

IT Security Guru

JUNE 17, 2024

It also includes network vulnerabilities, like open or unprotected ports, unpatched software, and avenues for phishing or social engineering attacks. This includes physical vulnerabilities, such as a USB port where someone could plug in a malicious USB stick while an employee is away from their computer.

Financial Services 89

Financial Services Manufacturing Social Engineering Risk 89

Digital Shadows

OCTOBER 14, 2024

Together, they use native English speakers to execute sophisticated social engineering operations, contributing significantly to their newfound dominance. To counter these methods, organizations should prioritize educating users on phishing and social engineering techniques. compared to Q3 2023.

Ransomware 94

Ransomware Social Engineering Insurance Cyber Insurance 94

SecureList

APRIL 27, 2023

Middle East We have identified ongoing spear-phishing campaigns targeting Middle Eastern countries dating back to July 2021. Analyzing and cracking the Trojanized application’s communications, we discovered information about possible victims in the manufacturing and real-estate sectors in India as targets.

Energy and Utilities 145

Energy and Utilities Malware Government Manufacturing 145

SecureWorld News

MARCH 24, 2022

Answer: Educating employees and consumers on the topic and dangers of Phishing and Social Engineering. Answer: One regulation I would change or legislate for is the requirement for manufacturers to embed security into the Internet of Things (IoT) to protect the data and privacy of consumers.

Cybersecurity 98

Cybersecurity Telecommunications IoT Mobile 98