May 14, 2024 at 07:15AM Cybersecurity researchers have discovered an ongoing social engineering campaign targeting enterprises with spam emails to gain initial access and exploit their systems. The threat actors overwhelm users with junk emails and phone calls, trick them into installing remote desktop software, and leverage remote access for further malicious activities. Additionally, there … Read more
May 13, 2024 at 05:18PM Summary: Despite a history of targeted attacks, the Black Basta cybercriminal group has adopted a new strategy of bombarding victims with spam emails and offering fake customer support to trick them into downloading malware. Rapid7 researchers warn organizations to be vigilant and take measures to block unauthorized remote monitoring and … Read more
January 12, 2024 at 06:32AM HelloFresh faces a £140,000 fine from Britain’s data privacy watchdog for sending 79 million spam emails and 1 million texts in seven months. The company misled customers about opt-in statements for marketing messages, failing to provide clear information or an easy opt-out process. The ICO issued the fine for breaching … Read more
December 18, 2023 at 05:52AM A new wave of QakBot malware phishing targeting the hospitality industry was discovered by Microsoft. The phishing campaign began on December 11, 2023, distributing a PDF with a URL leading to an MSI file. Cisco Talos had previously noted QakBot affiliates using phishing to distribute ransomware and other malware. The … Read more