May 21, 2024 at 04:57PM Researchers at Avast report that YouTube has become a target for malicious activities, including phishing, malware distribution, and fake investment schemes. They highlight the rise of deepfake videos and various exploitation methods. Avast’s scanning capabilities have protected millions of users, and security experts emphasize the importance of educating and preparing … Read more
April 19, 2024 at 02:09PM A sophisticated phishing campaign targeting LastPass users successfully stole master passwords using a hands-on approach. The attackers posed as customer service representatives, guiding victims to a fake website to reset their account access. LastPass has taken action to protect its customers and is urging awareness and caution against spoofed communication … Read more
March 19, 2024 at 01:27AM Moldovan national Sandu Boris Diaconu has been sentenced to 42 months in a US prison for operating the illicit E-Root Marketplace, offering hundreds of thousands of compromised credentials. The DoJ seized the infrastructure associated with E-Root and Perfect Money and said it’s recovering $2.3 million worth of cryptocurrency linked to … Read more
March 11, 2024 at 05:26PM The practice of typosquatting involves using look-alike websites and domain names to deceive users, often relying on human errors to capture victims. Attackers are continuously improving their tactics, making it difficult to detect these fraudulent domains and messages. Various industries have fallen victim to typosquatting, prompting experts to emphasize the … Read more
February 29, 2024 at 10:59AM AI service Cutout.Pro experienced a data breach exposing personal data of 20 million members, including email addresses, passwords, and other sensitive information. The breach was shared by a hacker on a hacking forum and data monitoring service Have I Been Pwned confirmed the leaked dataset. Cutout.Pro has not officially acknowledged … Read more
January 25, 2024 at 01:14PM Abu Dhabi-based investment firm National Investor alerts about fraudulent use of its name, logo, and employee names in online scams promoting fake investment opportunities and tenders. Scams involve soliciting personal, business, financial information. The firm’s warning comes after similar phishing messages impersonating official entities and manipulated search engine results related … Read more
January 11, 2024 at 02:35PM A surge in phishing scams in the UAE has prompted warnings from authorities and businesses, particularly concerning fake websites posing as official entities. These counterfeit sites are being promoted through search engine manipulation and tactics such as ‘Black Hat’ SEO Poisoning. Reports also highlight an increase in phishing emails impersonating … Read more
November 30, 2023 at 05:56PM Okta updated the impact of its September hack from less than 1% to all customers, revealing the potential for heightened phishing risks due to leaked user data. Despite this, Okta reported a 20% revenue increase and remains optimistic about its identity platforms. However, some are observing a market shift away … Read more
November 30, 2023 at 06:06AM A mobile security firm discovered a malicious campaign using over 285 Android apps to steal bank credentials and credit card information from Iranian users. The malware, targeting at least 12 banking apps, uses phishing and evasion techniques, with plans to expand to cryptocurrency wallets. Attackers use Telegram and GitHub for … Read more
November 24, 2023 at 11:12AM A malicious bot called Telekopye is being used by threat actors for large-scale phishing scams. The bot can create phishing websites, emails, SMS messages, and more. The threat actors, known as Neanderthals, operate as a legitimate company and recruit members through underground forums. Their main goal is to carry out … Read more