Security Boulevard

APRIL 16, 2024

The post SIM Swappers Try Bribing T-Mobile and Verizon Staff $300 appeared first on Security Boulevard. Not OK: SMS 2FA — Widespread spam targets carrier employees, as scrotes try harder to evade two-factor authentication.

Mobile 115

Mobile Authentication Social Engineering Wireless 115

NetSpi Executives

OCTOBER 24, 2023

Don’t be afraid of social engineering attacks this Cybersecurity Awareness Month! In the spirit of this year’s theme, we created a parody of the Monster Mash to share social engineering prevention tips far and wide. In fact, 98 percent of cyber attacks involve some form of social engineering.

Social Engineering 59

Social Engineering Engineering Cybersecurity Passwords 59

Security Boulevard

JANUARY 7, 2022

“We informed a very small number of customers that the SIM card assigned to a mobile number on their account may have been illegally reassigned or limited account information was viewed,” a T-Mobile spokesperson told BleepingComputer last week in response to questions about a new T-Mobile data breach.

Mobile 120

Mobile Social Engineering Data breaches Accountability 120

SecureWorld News

JUNE 29, 2023

In today's interconnected world, mobile devices have become an integral part of our lives, enabling seamless communication, productivity, and access to sensitive information. However, as reliance on mobile technology grows, so does the risk of cyber threats targeting these devices.

Mobile 84

Mobile Social Engineering IoT Phishing 84

CSO Magazine

MAY 9, 2023

Endpoint security vendor Malwarebytes has announced the release of Mobile Security for OneView to enable managed service providers (MSPs) to protect Chromebooks, Android, and iOS devices against mobile threats such as ransomware and malicious apps. To read this article in full, please click here

Mobile 71

Mobile Social Engineering Engineering Technology 71

Malwarebytes

AUGUST 19, 2021

At the end of last week, T-Mobile was investigating reports of a “massive” customer data breach. A hacker claimed to stolen 100 million people’s data from T-Mobile’s servers, which included everything from names and driver licences to addresses and social security numbers. It’s now confirmed something bad did take place.

Mobile 136

Mobile Social Engineering Data breaches Accountability 136

SecureWorld News

AUGUST 4, 2022

Most recently, a former T-Mobile retail store owner was convicted for stealing employee credentials to illegally access internal computer systems and unlock and unblock cellphones. which was a T-Mobile store, in Los Angeles in January 2017. The former store owner used various phishing techniques to steal T-Mobile employee credentials.

Mobile 84

Mobile Identity Theft Social Engineering Retail 84

Appknox

AUGUST 7, 2022

Unfortunately, because of widespread misconceptions, several businesses still don't understand the true potential of pen testing and refrain from using it to ensure mobile app security. However, this article will clear those myths and help you with a reality check on penetration testing for mobile applications.

Penetration Testing 131

Penetration Testing Mobile Engineering Small Business 131

Malwarebytes

MARCH 19, 2024

Once an attacker has successfully hijacked their victim’s mobile number, they can use it to send and receive calls and messages (and the victim can’t). SIM swapping can be done in a number of ways, but perhaps the most common involves a social engineering attack on the victim’s carrier.

Social Engineering 137

Social Engineering Computers and Electronics Mobile Identity Theft 137

Security Affairs

APRIL 23, 2022

Telecommunication giant T-Mobile confirmed the LAPSUS$ extortion group gained access to its networks in March. Telecom company T-Mobile on Friday revealed that LAPSUS$ extortion gang gained access to its networks. ” LAPSUS$ leader White/Lapsus Jobs looking up the Department of Defense in T-Mobile’s internal Atlas system.

Mobile 94

Mobile VPN Social Engineering Telecommunications 94

The Last Watchdog

AUGUST 19, 2021

At the start of this week, word got out that hackers claimed to have seized personal data for as many as 100 million T-Mobile patrons. This stolen booty reportedly included social security numbers, phone numbers, names, home addresses, unique IMEI numbers, and driver’s license information. This was not a sophisticated attack.

Mobile 306

Mobile Data breaches Authentication Accountability 306

Security Boulevard

DECEMBER 13, 2022

Phishing scams are prevalent in the SMS threat landscape, and now BEC attacks are also going mobile,” according to a Trustwave blog post that pointed to. The post Mobile BEC Attacks on the Rise appeared first on Security Boulevard.

Mobile 98

Mobile Scams Phishing Social Engineering 98

Threatpost

SEPTEMBER 18, 2019

The idea that humans are the weakest link shouldn't guide the thinking on social-engineering defense.

Social Engineering 63

Social Engineering Engineering InfoSec Mobile 63

SecureWorld News

MARCH 21, 2024

March Madness is a prime opportunity for cybercriminals to deploy phishing lures, malicious apps, and social engineering tactics," warns Krishna Vishnubhotla, VP of Product Strategy at mobile security firm Zimperium. These can be vehicles for delivering malware, committing fraud, or harvesting valuable data.

Cybersecurity 92

Cybersecurity Social Engineering Phishing Mobile 92

SecureList

MARCH 1, 2021

In 2020, Kaspersky mobile products and technologies detected: 5,683,694 malicious installation packages, 156,710 new mobile banking Trojans, 20,708 new mobile ransomware Trojans. Pandemic theme in mobile threats. The mobile malware Trojan-Ransom.AndroidOS.Agent.aq The year in figures. Trends of the year.

Mobile 134

Mobile Malware Adware Banking 134

The Hacker News

NOVEMBER 20, 2023

Android smartphone users in India are the target of a new malware campaign that employs social engineering lures to install fraudulent apps that are capable of harvesting sensitive data.

Social Engineering 100

Social Engineering Banking Government Mobile 100

Hot for Security

JUNE 15, 2021

Our mobile devices are not just a means to communicate with others. Mobile security is often overlooked by many technology users, who dismiss the reality of security risks brought by careless interactions with the digital world. Threat actors know that users often behave recklessly with their smart devices. Back up data.

Mobile 137

Mobile Banking Phishing Social Engineering 137

Security Boulevard

OCTOBER 15, 2021

The post Social Engineering Threats Rose 270% in 2021 – Indicating a Shift to Multi-Channel Phishing Attacks as Apps and Browsers Move to the Cloud first appeared on SlashNext.

Social Engineering 52

Social Engineering Engineering Phishing Hacking 52

Joseph Steinberg

OCTOBER 24, 2022

An online cybersecurity event with 2,500 people already logged in had to be cancelled after suspected cybercriminals launched a social engineering attack in the event’s chat window.

Cybersecurity 331

Cybersecurity Social Engineering Artificial Intelligence Scams 331

Security Boulevard

JANUARY 24, 2023

Last week, T-Mobile disclosed that the personally identifiable information (PII) of 37 million of its past and present customers had been breached in an API attack. They also shared that the attack had been going on since November but was only caught January 5 by T-Mobile’s security team. Was the API known to T-Mobile?

Mobile 57

Mobile Social Engineering Engineering Government 57

Security Boulevard

FEBRUARY 23, 2021

Such lures are used as social engineering schemes by threat actors; in this case, the malware was targeted at security researchers. We have recently observed other instances of threat actors targeting security researchers with social engineering techniques. Mobile/15B150 Safari/604.1". User-agent: "Mozilla/5.0

Social Engineering 62

Social Engineering Engineering Passwords Malware 62

Krebs on Security

JANUARY 30, 2024

In each attack, the victims saw their email and financial accounts compromised after suffering an unauthorized SIM-swap, wherein attackers transferred each victim’s mobile phone number to a new device that they controlled. Prosecutors say Noah Michael Urban of Palm Coast, Fla., Twilio disclosed in Aug.

Social Engineering 303

Social Engineering Mobile Cybercrime Passwords 303

The Hacker News

DECEMBER 1, 2023

Spreading primarily through messaging services, it combines app-based malware with social engineering to defraud banking customers," Oslo-based mobile app

Banking 87

Banking Malware Social Engineering Mobile 87

Security Affairs

FEBRUARY 27, 2021

The telecommunications giant T-Mobile disclosed a data breach after some of its customers were apparently affected by SIM swap attacks. The telecommunications provider T-Mobile has disclosed a data breach after it became aware that some of its customers were allegedly victims of SIM swap attacks.

Mobile 85

Mobile Telecommunications Data breaches Identity Theft 85

The Hacker News

MARCH 21, 2022

Social engineering attacks leveraging a combination of romantic lures and cryptocurrency fraud have been luring unsuspecting victims into installing fake apps by taking advantage of legitimate iOS features like TestFlight and Web Clips.

Scams 91

Scams Social Engineering Mobile Cryptocurrency 91

Security Boulevard

JUNE 5, 2022

The DuckDuckGo mobile browser allows Microsoft trackers due to an agreement in their syndicated search content contract, a database of contact details for hundreds of Verizon employees was compromised after an employee was social engineered to give the attacker remote access to their corporate computer, and details about new research that shows that (..)

Social Engineering 113

Social Engineering Mobile Engineering Data breaches 113

Adam Levin

MAY 15, 2019

The hacking group, called “The Community” primarily used social engineering (trickery) and SIM card hijacking to steal funds and cryptocurrency from their victims. Once authenticated, the mobile phone number of the target victim is moved to the criminal’s phone. Read more about the story here.

Identity Theft 176

Identity Theft Social Engineering Mobile Authentication 176

Bleeping Computer

FEBRUARY 15, 2024

A new iOS and Android trojan named 'GoldPickaxe' employs a social engineering scheme to trick victims into scanning their faces and ID documents, which are believed to be used to generate deepfakes for unauthorized banking access. [.]

Social Engineering 125

Social Engineering Banking Malware Engineering 125

Thales Cloud Protection & Licensing

AUGUST 8, 2022

Verizon’s 2022 Mobile Security Index Report – Confirming what we all suspected. What happens when you combine a pandemic that forces most businesses into a remote work environment, coupled with increased mobile device use for many daily tasks? Mobile devices are now the primary means of communication and other activities.

Mobile 71

Mobile Social Engineering Risk Threat Reports 71

The Last Watchdog

JUNE 18, 2018

They are scrambling to invent and deliver a fresh portfolio of mobile banking services that appeal to millennials. Related articles: Hackers revamp tactics, target mobile wallets. And then we got down to discussing the high-bar banks must meet to maintain trustworthiness, while attempting to leverage mobile banking services.

Banking 137

Banking Mobile Social Engineering Authentication 137

Heimadal Security

OCTOBER 13, 2022

New research conducted by a Dutch mobile security company recently discovered a network of phishing websites targeting Italian online-banking users to get a hold of their credentials.

Banking 114

Banking Malware Social Engineering Mobile 114

Appknox

JUNE 23, 2022

The risks to the privacy of Australian customers are at an all-time high, as the nation has reported the highest percentage of mobile threats globally, standing at 26.9%. The average Australian netizen uses web-based mobile apps to browse, entertain, communicate, and shop online. Australian Mobile Cybersecurity in 2022.

Social Engineering 92

Social Engineering Mobile Scams Engineering 92

CyberSecurity Insiders

MAY 28, 2023

Social Engineering: Investigate the human element of cybersecurity by exploring social engineering techniques and tactics used to manipulate individuals. Mobile Security: Research the unique security challenges posed by mobile devices, including app vulnerabilities, data leakage, and mobile malware.

Cybersecurity 111

Cybersecurity Penetration Testing Social Engineering IoT 111

SecureWorld News

AUGUST 2, 2022

New research from security firm CloudSEK shows that more than 3,200 mobile applications were leaking Twitter API (Application Program Interface) keys, which can be used to gain access and take over user accounts. These soldiers come from vulnerabilities in mobile applications.

Mobile 83

Mobile Accountability Identity Theft Cryptocurrency 83

The Last Watchdog

APRIL 10, 2019

These smaller institutions, much like the giants, are hustling to expand mobile banking services. Yet, they are much less well equipped to detect and repel cyber attackers, who are relentlessly seeking out and exploiting the fresh attack vectors spinning out of expansion of mobile banking. Talk more soon.

Banking 117

Banking Mobile Accountability Artificial Intelligence 117

Krebs on Security

FEBRUARY 26, 2023

GoDaddy described the incident at the time in general terms as a social engineering attack, but one of its customers affected by that March 2020 breach actually spoke to one of the hackers involved. But we do know the March 2020 attack was precipitated by a spear-phishing attack against a GoDaddy employee.

Hacking 251

Hacking Social Engineering Phishing Scams 251

The Last Watchdog

JUNE 13, 2018

With our affiliations and preferences put in play by search engines and social media, we’re perfect patsies for social engineering. Related article: Is your mobile device spying on you? Keating, vice president of product strategy at Zimperium , a Dallas-based supplier of mobile device security systems.

Mobile 131

Mobile Banking IoT Social Engineering 131