Browsing tag
Cyber attacks are evolving, thanks to cybercriminals who are equipping themselves with new skills and capabilities – In this scenario, from business to an unsuspecting internet user; learning about cyber security is a must. Let’s dig into it. According to Statista, there were over a thousand data breaches in 2020. In comparison, the number was […]
So far, the ongoing phishing attack has utilized more than 350 unique domains to target Microsoft Office 365 users. Microsoft has warned about a new widespread phishing campaign in which scammers are abusing open redirect links to divert users to malicious websites and steal MS Office 365 credentials. In a detailed report, the IT security researchers […]
The phishing email claims that WeTransfer has shared two files with the victim, and there’s a link to view them. According to a report from Armorblox, cybercriminals are spoofing the WeTransfer file hosting system to carry out credential phishing attacks in which spoofed email leads to a phishing page featuring Microsoft Excel branding. The primary […]
LA County resident booked in iCloud phishing scam pretended to be an Apple representative. A Los Angeles County man identified as Hao Kuo Chi was arrested for breaching thousands of Apple iCloud accounts and obtaining over 620,000 private photos and 9,000 videos of nearly 306 young women. According to the feds, the 40-year-old La Puente, […]
According to researchers, cybercriminals are abusing legitimate challenge and response services like Google’s reCAPTCHA or deploying customized fake CAPTCHA-like validation. Palo Alto Networks’ Unit 42 researchers have published a detailed report on how cybercriminals exploit CAPTCHA features including Google’s I Am Not A Robot Function dubbed reCAPTCHA to carry out their scams against unsuspected users. These […]
Phishing is getting smarter. A type of social engineering attack in which the attacker uses fraudulent messages that are designed to fool the would-be victim into sharing sensitive information or clicking a particular link, phishing has long been part of life on the internet. The term was first coined a quarter-century ago, using a purposeful […]
In the latest LinkedIn phishing scam, the sender’s email address appears to be from Paul University which is based in Nigeria. Phishing scams are one of the most often done owing to their simplicity and sadly, reliability as well. In the latest, researchers from ArmorBlox have discovered a new LinkedIn phishing campaign that targeted approximately […]
The email contains varying subject lines revolving around “order shipping” with messages instructing users to install the patch released by Microsoft. A few days ago, Hackread.com covered how the REvil Ransomware gang attacked an IT company named Kaseya which led to over 1000 businesses being victimized. Although ransom demands were made for publishing the decryptor […]
In yet another sign that the Russian hackers who breached SolarWinds network monitoring software to compromise a slew of entities never really went away, Microsoft said the threat actor behind the malicious cyber activities used password spraying and brute-force attacks in an attempt to guess passwords and gain access to its customer accounts. “This recent […]
Many movies and other media may have a bit of a warped idea of what hackers do, exactly. But one show that got it right is Mr. Robot, which shows that a company’s weakest spot is usually its people. The “human factor” they call it. It’s true that a lot of data breaches and other […]
Gaming is a multi-billion industry that is why it is a lucrative target for cybercriminals as well. Gaming giants on the other hand have resources to protect their cyber infrastructure from cyberattacks but what about naive gamers with no knowledge of cybersecurity? It is a fact that gamers are under constant threat of phishing, malware, […]
Microsoft has disclosed that the SolarWinds hackers or SolarWinds supply chain attack-fame threat actors are back in action. This time, they are targeting government agencies, consultants, think tanks, and non-governmental organizations across 24 countries. Microsoft’s findings were corroborated by cybersecurity firm Volexity. Research reveals that this time, SolarWinds attackers have singled out NGOs, research institutions, government […]
No matter how strong a company’s defense systems are, it’s critical that they include comprehensive employee training for all employees. Imagine that you’re an entry-level employee in a new job. You get a call from a service technician. “We’re doing a regular update of your scheduling software,” the technician explains. “Great,” you think, “What excellent […]
The website was scamming users in the name of providing the COVID-19 vaccine but actually collecting their personal data for malicious purposes. The US Attorney’s office for the District of Maryland has seized “freevaccinecovax.org” which purported to be the website of an actual biotechnology company developing a vaccine for COVID-19 but in reality, it was […]
If installed; the fake and malicious WhatsApp pink app takes full control of a targeted device. An unusual baiting technique has appeared with the WhatsApp users receiving links that claim to turn the application’s theme from its trademark green to pink. Simultaneously, it also promises ‘‘new features” that have not been specified. Cyber experts have […]
The malware is also capable of controlling the device’s front and back camera to take photos periodically. The IT security researchers at Zimperium have discovered an Android malware capable of stealing sensitive data from infected devices and transfer it on servers controlled by the attackers. The malware is disguised in an app called “System Update” […]
ToxicEye is a new remote access Trojan (RAT) malware that has been used for more than 130 attacks over the past three months. Check Point Research has found that this new multi-functional remote access trojan (RAT) is spread via phishing emails containing a malicious .exe file. SEE: Malware infected Telegram app found in Play Store The […]
Phishing, which started off as Nigerian Prince scams in the 1990s, has become a common attack vector ever since. As though phishing wasn’t enough of a cybersecurity menace, overtime many different kinds of phishing have come into being. Among many forms of this cyberthreat, spear-phishing attacks are the most challenging to stop. Spear phishing attacks […]
A prolific phishing kit distribution network dubbed “16Shop” believed to be active since 2018 and developed by a hacking group called the “Indonesian Cyber Army.” It’s a huge first attack targeting Apple kits and then attacked Amazon customers before the prime day in 2019. The analysis also explained that 16Shop is using three different anti-bot […]
People often make a great effort to protect their credit/debit card details against fraudulent transactions. This has been further helped by banks implementing increased security with the help of two-factor authentication( 2FA). However, there’s this one instance where even 2FA doesn’t save you. Imagine someone replaces a legitimate payment page with a fraudulent one. Once […]
If you’ve updated your Windows today like me, this article may just end up scaring you a bit. In the latest, it has been discovered that a malicious campaign has been installing ransomware under the pretext of updating your operating system. Named as Cyborg ransomware; the attackers try to lure users by sending emails prompting […]