Phishing

Nivdort trojan found in new Facebook phishing attack

Nivdort trojan found in new Facebook phishing attack

By

The cybercriminals who targeted WhatsApp users with malware may be behind a phishing scam that is now going after Facebook users, according to a new report.

Marijuana stock driven high, then dumped, by spam campaign

Marijuana stock driven high, then dumped, by spam campaign

By

Symantec is investigating a pump and dump stock spam campaign that used the long-lived W.32 Waledac botnet to target a marijuana farming company possibly generating thousands in illegal profits.

Thar she blows: Whaling attacks likely to rise in 2016

Thar she blows: Whaling attacks likely to rise in 2016

Whaling attacks eschew technical sophistication in favour of a good old fashioned confidence trick and according to cyber-security company, Mimecast, they're on the rise.

New, improved Macro malware hitting Microsoft Office

New, improved Macro malware hitting Microsoft Office

By

The comeback was 16 years in the making, but macro malware is once again on security professional's radar in a big way impacting at least 100,000 people since it began its resurgence earlier this year, according to Intel Security

Nemucod Trojan usage on the rise, but damage limited

Nemucod Trojan usage on the rise, but damage limited

By

The Nemucod trojan is on the rise and being used to spread Teslacrypt ransomware via phishing campaigns, although the silver lining is not as many people are being victimized this time around.

Alibaba customers targeted in Phishing attack

Alibaba customers targeted in Phishing attack

By

Customers of the online retail giant Alibaba are being specifically targeted with a phishing scam.

Former State Department worker pleads guilty to sextortion charges

Former State Department worker pleads guilty to sextortion charges

By

A former U.S. State Department staffer pleaded guilty to a variety of crimes related to a sextortion scheme he was operating.

Crafty spear phishing campaign uses terror attack to increase proficiency

Crafty spear phishing campaign uses terror attack to increase proficiency

By

Cybercrimminals are using the fear generated from the recent wave of terror attacks to target corporate offices in the Middle East and Canada with spear phishing attacks.

DHS CISO wants repercussions for workers who fall for security scams

DHS CISO wants repercussions for workers who fall for security scams

By

Falling for a phishing scam is embarrassing enough without having to learn the email came from your boss as part of a test of your cybersecurity knowledge, but that is what the chief information officer of the Department of Homeland is doing to his staff.

Nuclear Regulatory Commission's computers hacked three times in three years

By

The separate attacks were carried out by at least two foreign entities, who might have been able to access sensitive documents and details on U.S. critical infrastructure.

Attackers leverage Ebola virus fear to spread malware

By

Phishing campaigns are being leveraged by attackers to reach victims and collect email logins, as well as infect their machines with malware.

Phishing scheme targets biting World Cup player's sympathizers

By

A phishing scam asks World Cup fans to sign a fake petition in support of a soccer play disqualified from playing after biting another player.

French telecom company's customer information breached again

By

More than a million of Orange users' telephone numbers, birth dates and email addresses were stolen last month in a phishing attack.

Report: Data breaches up 62 percent in 2013

Report: Data breaches up 62 percent in 2013

By

Targeted attacks grew by 91 percent and lasted three times longer, according to a recent threat report.

Fake Malaysia Airlines video on Facebook spreads malware

By

Scammers are using a phony video, claiming that Flight MH370 has been found, to redirect Facebook users to malicious websites.

Phishing scam aimed at Google Docs, Drive users

By

Symantec spotted a phishing campaign that sends users to a realistic-looking fake Google log-in page.

APT12 group latches to G20 Summit buzz to infiltrate organizations

By

APT12, the espionage group believed to be behind attacks on The New York Times, is piggy-backing on international interest in the G20 summit to penetrate victims' networks via malicious emails.

CTO of media company faked-out employees with "phishing" emails

CTO of media company faked-out employees with "phishing" emails

By

But the debate over the value of information security awareness programs and exercises in the workplace continues.

More users than ever experiencing phishing attack attempts

More users than ever experiencing phishing attack attempts

By

The Moscow-headquartered security firm Kaspersky Lab found that 37.3 million people faced the prospect of being phished in 2012 to present day, an 87 percent increase over the same period between 2011 and 2012.

Scammers on the hunt for Memorial Day deal watchers

Scammers on the hunt for Memorial Day deal watchers

By

Like they do with major news events and other holidays, online fraudsters are seeking to cash in on the upcoming Memorial Day weekend.

Twitter begins rollout of two-factor authentication to limit account takeovers

Twitter begins rollout of two-factor authentication to limit account takeovers

By

Following a series of high-profile Twitter account hijacks, the microblogging service finally has delivered two-factor authentication.

Online crime clearinghouse received nearly 290K complaints in 2012

By

The number of fraud complaints lodged with the Internet Crime Complaint Center actually fell in 2012, but the amount of alleged losses to victims rose.

Study finds hosting providers offer phishing paradise

By

The Anti-Phishing Working Group found that 47 percent of all phishing attacks involve shared web hosting, like one might find on WordPress or Joomla.

New BlackHole email campaign found

By

Spam campaigns are sending out spurious emails purported to be from Facebook, LinkedIn, American Airlines and financial institutions, McAfee researchers found.

Spear phishing campaign targeted energy sector

By

The unsuccessful attacks were the result of email addresses being publicly posted on an electric company's website.

Spear phishes used to infect South Korean corporate networks

By

Security researchers have found evidence that, not surprisingly, social engineering tactics were leveraged by the attackers, who set their malware to "go off" three days after reaching victims.

Small businesses in crosshairs of new malware-laden email ruse

By

The Federal Trade Commission and the Better Business Bureau are alerting businesses about the new threat.

Twitter embraces DMARC standard to stymie phishing attacks

By

Twitter announced Thursday that is adopting Domain-Based Message Authentication, Reporting and Conformance (DMARC), a new specification designed to authenticate emails so users don't fall for fraudulent emails.

Phishing emails use fake Mandiant China spy report bait to target victims

Phishing emails use fake Mandiant China spy report bait to target victims

By

Security firm Seculert is tracking two versions of the threat: one which is targeting Japanese organizations and the other directed, ironically, toward Chinese journalists.

Phishers hang a velvet rope to keep their attacks quiet

By

The concept of "bouncer list phishing" is designed to keep everyone, except a select few, on the outside of the campaign.

Sign up to our newsletters

RECENT COMMENTS

FOLLOW US