Browsing category
No one wants to believe they’d fall victim to a phishing attacks. However, phishing attacks are on the rise, and are more sophisticated than ever. There’s a good reason phishing attacks are touted as one of the most common security challenges companies and individuals face – there are ample opportunities for cybercriminals to maximize profits. […]
A new form of a sophisticated phishing attack on Android Chrome let hackers hide the original address bar’ screen space by displaying its own fake URL bar when the user scrolls down the web page. Security researcher James fisher demonstrated this phishing attack by hosting his own domain (jameshfisher.com), and he exploits the flaw in […]
Hackers abuse popular code repositories service such as GitHub to host a variety of phishing domains to make their targets to believe it is through github.io domains. By using well-known services like Dropbox, Google Drive, Paypal, eBay, and Facebook, attackers able to bypass whitelists and network defenses. Proofpoint identified a range of malicious activities that […]
India’s Leading outsourcing giant Wipro Ltd confirmed that some of its employee accounts have been hacked in an advanced phishing campaign. The company detected an abnormal activity in a few of his employee accounts on its network. Kerbs On Security detailed that the companies It systems have been hacked and used to launch an attack […]
Secure Email Accounts is one of the most important concerns in the digital world since the email account is one of the most targetted sources for cyber attacks . The Email accounts are the tempting targets for hackers, they find every possible way to infiltrate your email accounts as they are the unique identifiers for […]
Jigsaw, subsidiary of alphabet launched phishingquiz helping user’s to identify what’s fake, the program loads eight questions and asks the user’s to identify it is a phishing or a legitimate one. A phishing attack is one of the dangerous social engineering attacks that leads to capture a victim’s username and password that will get store […]
Researchers discovered a new type of advance phishing attack that taking advantages of office 365 vulnerability to bypass all the Microsoft security even though users implemented the Advanced Threat Protection (APT) Phishing attacks one of the most frequently targeting millions of users nowadays and this attack left all the Office 365 users vulnerable since the […]
A Massive data breach at San Diego Unified School District lost more than 500,000 and the stolen data file contains the personal information of dating back to the 2008-09 school year faculties and students. An unauthorized individual have been accessed that database file and he/she may have an access to view the personal data of some […]
A new study by PhishLabs nearly half of the phishing sites using SSL HTTPS connection and shows padlock which indicates a means of telling it as a legitimate site. The reason for the alarming rise is because still the internet user’s believe in the padlock “look for the lock” and believe the website is legitimate […]
Malicious hackers launching a new phishing campaign that targets Spotify customers to hijacking the user’s account and steal the credentials. Spotify customers targeted via emails along with malicious links that redirect into a deceptive website which leads users to give away their credentials. Once users enter their credentials, username and password will be sent to […]
Cybercriminals are distributing new phishing scam related to natural disasters that abusing Microsoft Azure Blog Hosting and also attempt to steal the login credentials. Victims abused by forcing them to involved with fake donations or steal funds directly via fraudulent donations in order to steal the credit card numbers. This Phishing campaign Lures Florida Hurricane Michael using malicious PDF documents […]
A new phishing technique dubbed PhishPoint affected about 10% of Office 365 users. With the new technique, attackers used SharePoint files to host phishing links. Office 365 scans for the link in the Email bodies for blacklist and suspicious domains, in this case, the link enclosed, is to a SharePoint document. Avanan Cloud Security detected […]
Scammers continue to adapt with new techniques to trick user’s and make them fall as a victim. Scammers always impose limits such as “call immediately” or “Offer Valid Today only” to make you act on it immediately. Security researchers from Symantec spotted a new Tech Support Scam that adopts to call optimization service for inserting […]
Two-factor authentication is an additional layer of security on top of the username and password. It makes harder for attackers to gain access to personal devices or accounts. KnowBe4 Cheif Hacking officer Kevin Mitnick demonstrates the phishing attack with the fake email pretends to be from Linkedin, but the email actually comes from the typosquatted […]
Phishing is one of the most common problems for Internet Users, hackers find a new innovative method to create believable URL’s to trick users. Attackers launch innovative phishing attacks to trick the users and to steal sensitive data such as their passwords, credit card numbers, or other sensitive information. It is hard to detect as […]
Hackers involved in Business Phishing Campaign using well crafted social engineering methods to harvest login credentials and to steal money. The attack most likely to be originated from Nigerian origin and they are engaged in credential harvesting, phishing and social engineering campaign designed to steal financial assets. IBM X-Force Incident Response team detected the campaign, […]
Security Firm FireEye Released a new Phishing tool called ReelPhish to simplifies the real-time Phishing attack that is designed to be run on the attacker’s system and control it by navigating the Attacker web browser. A phishing attack is one of the dangerous social engineering attacks that leads to capture a victim’s username and password that will […]
Phishing is one of the most common problems for Internet Users, hackers find a new innovative method to create believable URL’s to trick users. According to Google research, more than 15% accounts hijacked by using these social engineering methods. Crooks ran a Netflix phishing campaign to hijack user accounts. Phishing campaigns run by crooks hijacking top […]
A New Phishing and scam tools are discovered that used by the cyber criminal to unlock the physically stolen iPhones by compromising the victim’s iCloud accounts through abusing the “find my iPhone” future. Once iPhone user linked to an Apple ID with iCloud Account then the Device owner can lock the Phone if it gets […]
Nowadays Linkedin is suffering by many Social Engineering attack that is used to harvesting the user Credentials and Linkedin is widely used Professional Network which is always Big Fish For hackers to Target and Stealing the users account and other information. A New Phishing Attack Targeting Linkedin users that spreading via Compromised Linkedin Accounts to […]
A New Attack method called “XSSJacking” a type of Web application Clickjacking, Pastejacking and Self-XSS Web application based Attack Discovered by the Security Researcher Dylan Ayrey. While Clickjacking vulnerability existing in particular page, this attack will trigger Self-XSS. “Self–XSS is a social engineering attack used to gain control of victims’ web accounts.In a self–XSS attack, the […]