Malwarebytes researchers are warning IT workers seeking love online to beware "CatPhishing" scams which can leave entire companies devastated.
An attack campaign targeting Android users in Austria has been employing a unique trio of techniques to steal their funds: a credentials phishing web page, malicious banking app overlays, and credit card phishing screens.
The altered missive came from Campaign Chairman John Podesta's email. Podesta was netted in a phishing campaign.
Researchers from Palo Alto Networks have uncovered QtBot, an intermediate-stage downloader that helps to deliver the final payload in geography-based Locky-Trickbot malspam campaigns.
Malspam campaigns designed to spread the Ursnif banking trojan have been heavily targeting Japanese banks and payment card providers in 2017, especially since this past September, according to IBM's X-Force research.
The details of a phishing campaign currently being run in Switzerland that uses a tax dodge to entice its victims to open an attached file which will then download the Retefe banking trojan have been released by PhishMe.
A 32-year-old Chicago man is reportedly facing a maximum five years in prison after agreeing to plead guilty to hacking celebrities' Gmail and iCloud accounts in order to obtain their nude photos and videos.
The Department of Homeland Security (DHS) and the FBI issued a joint alert concerning an advanced persistent threat targeting the government and organizations in the energy, nuclear, water and manufacturing sectors.
The U.S. Department of Education issued a belated warning to the nation's school districts concerning cyberattacks that use threats of violence against students in an attempt to extort money from the district.
Microsoft's already battered Office 365 is once again being targeted, this time by KnockKnock, a botnet attack designed to specifically victimize the office productivity software suite.
Domino's Pizza Australia has disclosed that a data breach at one of its third-party suppliers may have resulted in a spam campaign aimed at customers of the restaurant and food delivery chain.
DHS Acting Secretary Elaine Duke, will release a binding order requiring agencies to comply with DMARC plan within 30 days and https within 120 days.
The cybergang behind the Trickbot banking trojan appears to have set its sights on Latin American as it continues to expands its list of global targets.
A spear phishing campaign impersonating the SEC was recently discovered attempting to infect victims with DNSMessenger malware, using malicious Word attachments that abuse Microsoft Windows' Dynamic Data Exchange (DDE) protocol.
FireEye called the attempt "early-stage reconnaissance" and believes North Korean operatives don't have the capability to disrupt the power supply.
With phishing and business email compromise-style attacks the primary methods used by cybercriminals to gain access to an organization, it is imperative that employees be taught what to look out for when going through their email. So SC Media asked some top cybersecurity executives for their best training tips.
Freelance writers were the targets of a phishing scam when they received emails purportedly from editors at The Atlantic offering non-existent jobs.
Federal investigators have warned the Atlanta Public School system that all 6,000 of its employees may have had their personal information compromised due to a phishing scam.
A Lannister always pays his debts. And you, too, may have to pay up if you become infected with Locky ransomware, delivered in an email distribution campaign that uses Game of Thrones references in its scripting variables.
A recent study on election spam found spammers use candidates with the strongest brands in their lures.
The OurMine hacking collective broke into the servers of music video hosting service Vevo and posted approximately 3.12 terabytes of stolen documents, in an unusually aggressive attack by the group.
LinkedIn and Wells Fargo have found themselves once again at the center of a cyber issue, but this time hackers are using the business-oriented social media site to send phishing InMails posing as a Wells Fargo messages.
Trend Micro researchers spotted the return of the EMOTET trojan, this time spreading via Spam bots.
A large malspam campaign using spoofed email addresses has attempted to infect recipients with ransomware in roughly 20 million detected attacks since Tuesday, researchers from Barracuda Networks have reported.