Xeon Sender Tool Exploits Cloud APIs for Large-Scale SMS Phishing Attacks

August 19, 2024 at 06:45AM The Xeon Sender tool is being used for large-scale SMS phishing and spam campaigns through abusing legitimate cloud services. It exploits APIs of services like Amazon SNS, Nexmo, and Twilio to send bulk SMS spam attacks without exploiting any weaknesses of the providers. Organizations should monitor for anomalous changes in … Read more

Hackers abused API to verify millions of Authy MFA phone numbers

July 3, 2024 at 12:48PM An unsecured Twilio API endpoint allowed threat actors to access millions of Authy users’ phone numbers, potentially making them vulnerable to smishing and SIM swapping attacks. ShinyHunters leaked a CSV file with 33 million phone numbers. Twilio has secured the API and urged users to update their Authy apps for … Read more

Moroccan Cybercrime Group Steals Up to $100K Daily Through Gift Card Fraud

May 27, 2024 at 09:06AM Microsoft has highlighted a cybercrime group, Storm-0539, responsible for sophisticated email and SMS phishing attacks, primarily aimed at stealing and selling gift cards. The group targets large retailers and utilizes tactics to evade detection, such as using cloud infrastructure and legitimate platforms. Microsoft advises companies to implement additional security measures … Read more

FBI: Smishing Campaign Lures Victims With Unpaid-Toll Notices

April 16, 2024 at 01:58PM The FBI has issued a warning about a widespread smishing campaign targeting people with messages claiming they have unpaid tolls to resolve, aiming to steal credentials and defraud them. The campaign, affecting at least 3 US states and over 2,000 people, prompts users to click a link and enter sensitive … Read more

FBI warns of massive wave of road toll SMS phishing attacks

April 12, 2024 at 03:02PM The FBI issued a warning about a large-scale SMS phishing attack targeting Americans, with scammers posing as road toll collection services. The attacks, ongoing since March 2024, have received over 2,000 complaints. The phishing messages claim recipients owe unpaid tolls and include fake links. Several toll services and law enforcement … Read more

Payoneer accounts in Argentina hacked in 2FA bypass attacks

January 19, 2024 at 03:28PM Many Payoneer users in Argentina woke up to find their 2FA-protected accounts hacked, with funds stolen after receiving SMS OTP codes while sleeping. Suspected hacking methods include a potential Movistar data leak or a breached SMS provider. Payoneer has not provided specific answers but acknowledged the fraud and advised users … Read more

Alert: Chinese-Speaking Hackers Pose as UAE Authority in Latest Smishing Wave

December 20, 2023 at 05:57AM Chinese-speaking threat actors, known as Smishing Triad, have impersonated the UAE Federal Authority for Identity and Citizenship to send malicious SMS messages aimed at gathering sensitive information. They utilize URL-shortening services and fake websites. The group also offers smishing kits for sale and engages in Magecart-style attacks. Another disclosure involves … Read more

Microsoft Warns as Scattered Spider Expands from SIM Swaps to Ransomware

October 26, 2023 at 10:06AM Scattered Spider, a prolific threat actor, is impersonating new employees in targeted firms to infiltrate organizations worldwide. Microsoft describes the group, also known as Octo Tempest, as a dangerous financial criminal group that utilizes SMS phishing, SIM swapping, and help desk fraud to carry out their attacks. Their tactics include … Read more

SpyNote: Beware of This Android Trojan that Records Audio and Phone Calls

October 16, 2023 at 09:15AM The Android banking trojan, SpyNote, has been analyzed, revealing its various information-gathering capabilities. Spread through SMS phishing campaigns, the malware tricks victims into installing it by clicking on embedded links. It hides its presence on the device, seeks accessibility permissions, and can record audio, phone calls, and keystrokes. The malware … Read more