28 Apr 2021

Threat Actors Impersonate Chase Bank

Researchers at Armorblox have discovered two new phishing scams seeking to trick customers of JPMorgan Chase Bank into submitting login credentials. Both of the identified scams utilize social engineering and brand impersonation tactics to deceive targets into believing the messages are legitimate. One scam involved email notifications that appeared to

Read More
23 Apr 2021

Costco Issues Scam Warning

Costo Wholesale Corporation has released a scam warning, advising its customers to be wary of more than a dozen digital scams currently targeting its customer base. Costco posted screenshots of 14 fraudulent emails, texts, and posts, in which cybercriminals are impersonating Costco to scam its customers. It seems as though

Read More
15 Apr 2021

CISA Urges Caution for Security Researchers Targeted in Attack Campaign

The Cybersecurity and Infrastructure Security Agency (CISA) has advised cybersecurity researchers to be aware of a recent phishing campaign that targets professionals within the field. The attacks were first disclosed in January and were found to be targeting researchers working on vulnerability research and development within various organizations. The individuals

Read More
01 Apr 2021

College Students Targeted in Newest IRS Scam

The Internal Revenue Service (IRS) has warned of a scam targeting college students. The scam is a phishing attempt in which the perpetrators are posing as the IRS with subject lines such as “Tax Refund Payment,” according to a warning released by the agency. The IRS sought to alert educators,

Read More
29 Mar 2021

US charges close to 500 individuals for COVID-19 fraud, criminal activity

The US Department of Justice has arrested almost 500 individuals for criminal activity relating to the Covid-19 pandemic. Many cybercriminals have been leveraging the pandemic to launch more convincing cyber campaigns such as phishing attacks, capitalizing on widespread public fear. The US government has observed campaigns pushing fraudulent Covid-19 ‘treatments,’

Read More
10 Mar 2021

Fake Google reCAPTCHA Phishing Attack Swipes Office 365 Passwords

A new phishing attack targeted Microsoft users has emerged, according to researchers. The phishing campaign seeks to steal Office 365 credentials via leveraging a fraudulent Google reCAPTCHA system. The operation appears to be sophisticated due to the reCAPTCHA ploy and top-level domain landing pages featuring logos of the victim’s companies.

Read More
08 Mar 2021

US Warns of Fake Unemployment Benefit Websites

On March 5, the US Justice Department issued a warning informing the public that cyber-criminals have launched a campaign impersonating state workforce agencies in an attempt to lure in unemployed Americans and steal personal data. The Justice Department published the advisory after several reports that threat actors had been creating

Read More
25 Feb 2021

Microsoft Lures Populate Half of Credential-Swiping Phishing Emails

According to a Tuesday report by Cofense, cybercriminals are increasingly using Microsoft services such as Outlook, Teams, and Office to launch themed phishing attacks and steal credentials from their targets. According to Cofense, almost half of phishing attacks in 2020 aimed to steal Microsoft credentials using lures related to the

Read More
23 Feb 2021

10K Microsoft Email Users Hit in FedEx Phishing Attack

Microsoft users are receiving phishing emails fraudulently claiming to be from mail couriers FedEx and DHL Express. However, malicious links within the message steal credentials from victims. The recent attacks targeted at least 10,000 Microsoft users, according to the tech giant. The scams used phishing pages hosted on legitimate domains

Read More
05 Feb 2021

Financial Regulator Hit by 240,000 Malicious Emails in Q4 2020

The UK’s financial regulator, the Financial Conduct Authority (FCA), was hit by nearly 240,000 malicious emails in the first quarter of 2020 alone, the FOI found. This highlights the pressure weighing on high profile organizations to protect their assets and maintain high levels of cybersecurity and awareness. A litigation firm

Read More