article thumbnail

Clever Social Engineering Attack Using Captchas

Schneier on Security

This is really interesting. It’s a phishing attack targeting GitHub users, tricking them to solve a fake Captcha that actually runs a script that is copied to the command line.

article thumbnail

New cybersecurity data reveals persistent social engineering vulnerabilities

Tech Republic Security

The post New cybersecurity data reveals persistent social engineering vulnerabilities appeared first on TechRepublic. Ransomware was down last year, though LockBit led threat actors and employees opened a third of the toxic emails in the last six months of 2022.

Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

article thumbnail

Proofpoint Exposes Sophisticated Social Engineering Attack on Recruiters That Infects Their Computers With Malware

Tech Republic Security

Recruiters and anyone else involved in hiring processes should be knowledgeable about this social engineering attack threat. Get the details.

article thumbnail

The Mad Liberator ransomware group uses social-engineering techniques

Security Affairs

Mad Liberator employs social engineering techniques to gain access to the victim’s environment, specifically targeting organizations using remote access tools like Anydesk. However, the social-engineering tactics the group used in the case described above are noteworthy – but they are not unique.

article thumbnail

ReliaQuest Uncovers New Black Basta Social Engineering Technique

Digital Shadows

During the investigation, we discovered a wider trend: a campaign of escalated social engineering tactics originally associated with the ransomware group “Black Basta.” There has been a significant rise in ransomware actors using social engineering techniques to gain unauthorized access to sensitive systems and data.

article thumbnail

Black Basta Ransomware Group Elevates Social Engineering with Microsoft Teams and Malicious QR Codes

Penetration Testing

The ReliaQuest Threat Research Team uncovered an intensified social engineering campaign tied to the ransomware group Black Basta.

article thumbnail

Investigating the Navalny Poisoning

Schneier on Security

Navalny got a confession out of one of the poisoners, displaying some masterful social engineering. Bellingcat has investigated the near-fatal poisoning of Alexey Navalny by the Russian GRU back in August. The details display some impressive traffic analysis. Lots of interesting opsec details in all of this.