Iranian Hackers Hit Over 60 Universities to Get Library Access
Between July and August of this year, Iranian state-backed hacking group Cobalt Dickens (aka Silent Librarian) targeted over 60 universities across four continents as part of a phishing campaign designed to obtain unauthorized access to university libraries. Secureworks tracked the campaign and recently revealed all known domains linked to the threat
A look into the frequency and success of phishing attacks on SMBs
In the last 12 months, threat actors targeted 43% of small to mid-sized businesses (SMBs) in the UK with a phishing attack in which they masqueraded as one or more employees, a new CybSafe report found. It is rather worrisome that two-thirds (66%) of targeted SMBs were actually compromised as
Phishing attacks jump by 21% in latest quarter, says Kaspersky
The number of phishing campaigns increased by 21% in the second quarter of 2019 compared to the same period last year, a new Kaspersky report shows. The firm detected a total of 129.9 million phishing emails that impacted 12.3% of Kaspersky users. The most targeted organizations were banks (30.7%), payment
North Korean state hackers target retired diplomats and military officials
New research by IssueMakersLab has identified a unique state-sponsored threat campaign targeting retired South Korean government and military officials. Between July and August of this year, hackers linked to the North Korean regime sent spear phishing emails to the accounts of former officials. The emails contained malicious links that redirected
New Threat Group Targets Middle East
Hackers belonging to a threat group dubbed LYCEUM (aka HEXANE) have been launching attacks on organizations in the oil and gas sector since May of this year, new research by SecureWorks shows. This campaign primarily targets firms located in the Middle East, but LYCEUM has been active since April of
IRS Warns of New Imposter Scam That Spreads Malware
The IRS is warning taxpayers about a phishing campaign in which threat actors are masquerading as IRS agents. The scammers are distributing emails made to look like official IRS messages. Recipients are urged to click on a malicious link in order to download documents with information about their tax refunds.
Instagram Phishing Emails Use Fake Login Warning Baits
Threat actors are targeting Instagram users with a relatively believable phishing scam that warns people about login attempts for their account and urges them to confirm their identity by entering what looks like a two-factor authentication (2FA) code on a sign-in page for which the URL has been provided. If
Microsoft Tops Phishers’ Favorite Brands as Facebook Spikes
Microsoft remains the most impersonated brand in phishing attacks despite a 6.8% decline in unique Microsoft phishing URLs in the second quarter of this year, a new report by Vade Secure shows. PayPal clinched second place and Facebook completed the top three thanks to a 155% surge in campaigns spoofing
Alaska Had the Most Cybercrime Victims Per Capita in 2018
New data by CenturyLinkQuote shows that residents of Alaska are more likely to fall for Internet scams than people in other parts of the country. With 22 cybercrime victims per 10,000 residents, The Last Frontier tops the ranking for the second year in a row. The numbers are based on
Financial Phishing Grows in Volume and Sophistication in First Half of 2019
In the first half of this year, the number of potential phishing domains increased by 14%, while phishing domains with valid certificates doubled to 1,900, a new study[pdf] by Normshield found. Last year, 8.5% of phishing domains used a valid certificate and this number is expected to grow to 15% this