July 25, 2024 at 04:56PM Cybercriminals are using last week’s CrowdStrike outage to launch social engineering attacks on the security vendor’s customers. These targeted phishing activities are more copious and focused than typical news-related attacks. The attackers masquerade as the company itself, technical support, or rival companies to gain access to affected organizations. They also … Read more
July 22, 2024 at 06:42AM Threat actors are exploiting the CrowdStrike incident, causing disruptions across various industries. Malicious activities include phishing, malware delivery, and scams. Organizations are urged to remain vigilant and employ caution when dealing with suspicious emails or links. Numerous domains referencing CrowdStrike have been registered, potentially used for nefarious purposes. Government agencies … Read more
July 20, 2024 at 12:22PM Global IT outage caused by CrowdStrike on July 19, 2024, affected various industries, leading to Windows computers malfunctioning. Trend Micro acknowledges the situation and advises vigilance in monitoring non-Windows environments against potential adversary exploitation. They emphasize the need for rapid bug mitigation and software deployment evolution. Trend shares resilience strategies … Read more
July 18, 2024 at 02:23PM Three novel attack techniques chaining vulnerabilities found in email-hosting platforms allow spoofing of emails from over 20 million trusted organization domains. Researchers at PayPal discovered flaws that bypass SPF, DKIM, and DMARC protocols, affecting large email service providers. They plan to disclose these vulnerabilities in an upcoming conference. The attacks … Read more
July 16, 2024 at 05:13PM The gang utilizes diverse attack methods including phishing, SIM swapping, and MFA fatigue. It seems like the main takeaways from this meeting are that the gang is using a variety of tools in its attacks, including phishing, SIM swapping, and exploiting multi-factor authentication fatigue. These are important points to consider … Read more
July 16, 2024 at 12:05PM The “ShadowRoot” ransomware strain targets Turkish businesses through phishing emails containing a disguised PDF invoice with embedded malicious links. When interacted with, the email triggers a download of a malicious file that further drops encrypted files and utilizes higher memory consumption. The researchers recommend user awareness and blocking specific email … Read more
July 15, 2024 at 09:47AM Security researchers claim a series of DNS hijackings in web3 businesses are linked to Squarespace’s acquisition of Google Domains. Issue arose from Squarespace’s migration method, allowing cybercriminals to guess admin email addresses and register them. Attacks aimed to change DNS records, rerouting visitors to phishing sites. Firms impacted include Compound … Read more
July 15, 2024 at 04:27AM In Singapore, retail banks must eliminate one-time passwords (OTPs) for online authentication within three months to combat phishing. The Monetary Authority of Singapore and The Association of Banks in Singapore made the decision. With a rise in scams, customers are urged to activate digital tokens to protect against unauthorized account … Read more
July 11, 2024 at 01:09PM A new phishing toolkit called FishXProxy is being promoted as the ultimate powerful tool for cybercriminals to launch successful email attacks. It features advanced evasion techniques like unique links and dynamic attachments to bypass security systems, as well as Cloudflare integration for enterprise-grade infrastructure. Experts stress the urgent need for … Read more
July 4, 2024 at 05:14AM The Mekotio banking trojan is a significant threat to financial systems in Latin America, targeting countries such as Brazil, Chile, Mexico, Spain, and Peru. It infiltrates systems through phishing emails, aiming to steal sensitive information, particularly banking credentials. Users can protect themselves by being cautious with emails, avoiding clicking on … Read more