Phishing News, Articles and Updates

Phishing or Ransomware? Experts dispute which is biggest cyber-threat

Cyber-security executives and business decision makers question whether phishing emails or ransomware attacks are the most potent threats faced, but are businesses equipped to implement all-round risk mitigation strategies?

Phishing Madness? Ohio State University phishes students to teach security

Although it couldn't manage to outscore Gonzaga in the NCAA March Madness Tournament, Ohio State looked to gain brownie points teaching cybersecurity.

MuddyWater APT campaign flowing again

The MuddyWater APT campaign appears to be rising to the surface again with researchers finding similarities between this older cyberespionage attack and a new one targeting Turkey, Pakistan and Tajikistan.

Cybercriminals trained up for March Madness

Like any other major sporting event that draws millions of viewers, March Madness will attract bad actors trying steal money and wreak havoc.

ComboJack malware steals digital payments, cryptocurrency, by modifying info saved to clipboards

Researchers have discovered a new malware that steals cryptocurrency and other electronic funds by surreptitiously modifying wallet or payment information whenever victims copy it to their devices' clipboards.

FS-ISAC hit with phishing attacks

A Financial Services Information Sharing and Analysis Center (FS-ISAC) employee feel victim to a phishing attack that compromised their login credentials.

Attacks against Kaspersky Lab anti-phishing system jumped 59 percent in 2017

Spammers took advantage of the bitcoin surge at the end of the year by fooling unsuspecting recipients with get-rich-quick offers to steal their money or personal information.

Colorado DOT, Allentown, Pa. in recovery mode after costly cyberattacks

The Colorado Department of Transportation (CDOT) and the city of Allentown, Pa., are in the process of digging themselves out from two separate cyberattacks that hit in the last few weeks.

Savannah still suffering effects from cyberattack

Savannah, Ga., is still in the process of recovering from a malware attack that took place last week that forced the city to shut down part of its computer system in an attempt to limit damage.

Researcher: Microsoft Word feature can be exploited to display videos that mine cryptocurrency

Malicious actors can abuse Microsoft Word's Online Video feature to deliver videos that secretly exhaust their viewers' computer processing power in order to mine cryptocurrencies, according to Israeli cybersecurity firm Votiro.

North Korea's APT37 hacking group expands its reach and ups its game, warns researchers

Reputed North Korean APT group TEMP.Reaper, the alleged culprit behind a zero-day ROKRAT malware campaign leveraging Adobe Flash Player vulnerability CVE-2018-4878, has been expanding its global target list despite remaining largely under the radar, according to a new FireEye research report.

Edward Snowden returns to U.S.! Oops, nope, it's a phishing scam

No, NSA whistleblower and U.S. fugitive Edward Snowden did not just purchase a 2 terabyte storage plan for iCloud, nor has he moved back to the States.

Olympic torch lights the way for cybercrimminals

The potential for cyberattacks being launched against those attending the games, and even those watching from afar, is so strong that U.S. CERT has issued cybersecuirty guidelines for visitors.

Waldo County, Maine, phishing attack results in data breach

A phishing attack compromised the information of Waldo County employees in Maine.

Evolving Hancitor downloader remains alive and well, relying on malicious hosted servers

Despite its relatively small pool of viable targets, the malicious Windows-based downloader Hancitor continues to surface in malspam campaigns that recently have relied heavily on distribution servers set up via fraudulent hosting provider accounts, a new blog post report states.

Cybercriminals exploiting traditional trust measures for compromises, study

Cybercriminals are exploiting traditional measures of trust to gain a foothold on users systems by compromising trusted sites.

Michigan police warn of Netflix phishing scams

Grand Rapids, Mich.'s Police Department are warning people about a Netflix scam looking to dupe users out of their payment information.

Phishing scam exposes W-2 forms of Keokuk, Iowa employees and officials

The small Iowan city of Keokuk has disclosed that a cybercriminal used a phishing scam to fraudulently obtain an electronic file containing the 2017 W-2 tax forms of current and former employees and elected officials.

Phishing emails impersonate FBI's Internet Crime Complaint Center

The FBI has issued a warning that scammers are crafting phishing emails that impersonate the agency's Internet Crime Complaint Center, claiming recipients were recently defrauded, and in some cases offering restitution if the individuals provide personal information.

BeeToken customers duped out of $1 million worth of Ethereum in phishing scam

BeeToken customers were duped out of more than $1 million worth of Ethereum in a phishing scam targeting BeeToken's initial coin offering (ICO).

U.S. CERT posts cybersecurity suggestions for Pyeongchang Winter Olympic attendees

With the torch lighting for the Winter Olympics in Pyeongchang just over a week away U.S. CERT has issued cybersecuirty guidelines for those visiting the games, tips that can also be used in any public environment.

Millions of Fortune 500 email credentials found on the dark web

About 10 percent of the email credentials of all those employed at Fortune 500 companies have been leaked on the dark web, according to a new study.

Two-year-old malware campaign plagues Ukrainians with Vermin, Quasar RATs

Researchers have uncovered a two-year-old cyber espionage campaign that's been infecting Ukrainians with either a newly discovered remote access tool called Vermin or the more established Quasar RAT.