25 Jan 2022

Microsoft warns about this phishing attack that wants to read your emails

Microsoft has warned that Office 365 customers are receiving phishing emails that aim to trick unsuspecting users into giving OAuth permissions to an app that allows attackers to read and write emails. The OAuth phishing emails were delivered to hundreds of Office 365 customers, warned the Microsoft Security Intelligence team.

Read More
20 Jan 2022

Cloned Dept. of Labor Site Hawks Fake Government Contracts

A convincing yet illegitimate government procurement portal is advertising the opportunity to submit a bid for government projects. However, the site harvests credentials from unassuming victims instead. The phishing campaign is targeting aspiring government vendors with an invitation to bid on fake federal projects within the US Department of Labor.

Read More
10 Jan 2022

Indian Patchwork hacking group infects itself with remote access Trojan

A group named Patchwork by Malwarebytes has been exposed after it accidentally infected its own development environment with a remote access Trojan (RAT). The group has been traced back to India and is also known by the names Hangover Group, Dropping Elephant, Chinastrats, and Monsoon. The group has been active

Read More
27 Dec 2021

Hellmann Warns Customers They Could Face Malicious Communications Following Attack

Hellmann Worldwide Logistics, a German logistics provider, has warned its customers of social engineering attacks after a ransomware attack compromised some of the company’s systems earlier this month. As a result of the attack, Hellmann was forced to take its IT systems temporarily offline on December 9. Hellmann has confirmed

Read More
03 Dec 2021

Phishing Scam Targets Military Families

Threat researchers at Lookout are seeking to take down a phishing campaign that has allegedly been targeting members of the US military and their families. The campaign has been operating for a while and impersonates military support organizations and personnel to commit advance fee fraud and steal sensitive personal and

Read More
23 Nov 2021

81% of UK Retailers Leaving Customers at Risk of Email Fraud Ahead of Black Friday

According to a new study by Proofpoint, more than four-fifths (81%) of UK retailers are putting consumers at risk of email fraud. Proofpoint found that an alarmingly high number of companies are not implementing the recommended level of domain-based message authentication, reporting, and conformance protection (DMARC). DMARC is an email

Read More
11 Nov 2021

Tiny Font Size Fools Email Filters in BEC Phishing

According to Microsoft, a new campaign has been observed targeting Microsoft 365 users deploying sophisticated obfuscation tactics to avoid security protections. The campaign is designed to harvest credentials. The business email compromise campaign is tricking natural language processing filters through hiding text in a one-point font size within messages. According

Read More
11 Nov 2021

North Korean hackers target the South’s think tanks through blog posts

A North Korean hacking group has been targeting think tanks in South Korea through blog posts riddled with malware. The new campaign dates back to June 2021 and consists of a state-sponsored advanced persistent threat group attempting to plant surveillance and theft-based malware on South Korean victim machines. Researchers from

Read More
09 Nov 2021

Proofpoint Phish Harvests Microsoft O365, Google Logins

A new campaign impersonating Proofpoint has successfully avoided Microsoft email security. The campaign consists of phishers attempting to fool targets into believing the email comes from Proofpoint, a well-known cybersecurity company, in an attempt to steal Microsoft Office 365 and Google email credentials. According to researchers at Armorblox, one such

Read More
04 Oct 2021

MFA Glitch Leads to 6K+ Coinbase Customers Getting Robbed

At least 6,000 Coinbase customers were robbed after attackers were able to bypass the multi-factor authentication on the cryptocurrency exchange platform. Coinbase suspects phishing allowed the attackers to access personal details, but also blamed a flaw in the multi-factor authentication process. The theft occurred between March and May 20, 2021.

Read More