If you’re holding important data, Iran is probably trying spearphish it

September 30, 2024 at 09:37AM US and UK security agencies are warning about ongoing Iranian spearphishing campaigns targeting high-value individuals, including government officials and journalists. The attackers use social engineering to harvest credentials and access sensitive data. The advisory provides indicators of compromise and urges vigilance against unsolicited offers. Recent indictments also highlight Iranian cyber … Read more

Healthcare IT Help Desk Employees Targeted in Payment-Hijacking Attacks

April 8, 2024 at 09:54AM Healthcare and public health (HPH) organizations are being targeted by threat actors aiming to infiltrate corporate networks and divert payments. The US Department of Health warns of a recent attack in which an IT help desk employee was impersonated over the phone to gain network access and initiate unauthorized payment … Read more

Cyberattackers Target Nuclear Waste Company via LinkedIn

January 2, 2024 at 03:58PM Hackers recently targeted UK-based Radioactive Waste Management (RWM) using social engineering and LinkedIn. The company, now part of Nuclear Waste Services (NWS), has seen attempts to exploit business changes after a recent merger. The attackers were blocked through “multi-layered defenses,” but LinkedIn’s guidance recommends caution to avoid falling prey to … Read more