Mind your header! There’s nothing refreshing about phishers’ latest tactic

September 12, 2024 at 05:24AM Palo Alto’s Unit 42 threat intel team warns of a rising tactic used by phishers to steal victims’ credentials. They identified over 2,000 large-scale phishing campaigns abusing HTTP header refresh entries to redirect visitors to malicious websites. The phishing attacks primarily target business and economy sectors, highlighting the need for … Read more

Russian Hackers Using Fake Brand Sites to Spread DanaBot and StealC Malware

August 16, 2024 at 09:33AM Cybersecurity researchers have identified a complex information theft campaign, “Tusk,” conducted by Russian-speaking cybercriminals. The campaign leverages legitimate brands to distribute malware like DanaBot and StealC through phishing tactics and social engineering. The sophisticated threat actors mimic well-known projects, employing multistage malware delivery methods, highlighting their advanced capabilities in deceiving … Read more

Google: Iran’s Charming Kitten Targets US Presidential Elections, Israeli Military

August 15, 2024 at 01:29PM A threat group linked to Iran’s IRGC has launched cyberattacks against US election-related email accounts and Israeli military and political targets. Google’s TAG detected and blocked attempts by the Iran-backed APT42, known as Charming Kitten, targeting individuals affiliated with US government and the presidential campaigns. The attacks are in retaliation … Read more

Russian-Linked Hackers Target Eastern European NGOs and Media

August 15, 2024 at 08:57AM Russian and Belarusian NGOs, media, and international organizations in Eastern Europe are targeted by spear-phishing campaigns linked to Russian government interests. One campaign, River of Phish, is attributed to a collective with ties to Russia’s Federal Security Service, while the second, COLDWASTREL, uses similar tactics. The attacks employ personalized social … Read more

How Red Team Exercises Increases Your Cyber Health

April 11, 2024 at 04:41PM Red team exercises play a vital role in enhancing organizational security through simulated cyberattacks, including tactics like phishing and lateral movement within networks. Regular testing and improvement are needed to counter evolving threats effectively. Different types of exercises such as external red teaming, assumed breach, and purple teaming have distinct … Read more

As if working at Helldesk weren’t bad enough, IT helpers now targeted by cybercrims

March 15, 2024 at 03:09PM IT helpdesk workers are increasingly targeted by cybercriminals, a trend noted in Red Canary’s latest threat report as notable. Phishing tactics are being used to gain access to organizational accounts, with attackers pretending to be employees and requesting changes to identity and access management controls. Red Canary recommends enhanced security … Read more

U.S. Cybersecurity Agencies Warn of Scattered Spider’s Gen Z Cybercrime Ecosystem

November 17, 2023 at 02:54AM U.S. cybersecurity and intelligence agencies have issued a joint advisory about a cybercriminal group called Scattered Spider, known for using sophisticated phishing tactics. The group engages in data theft for extortion and has recently used BlackCat/ALPHV ransomware. Scattered Spider relies on social engineering techniques and has connections to the Gen … Read more