phishing

"You have a bonus! Open the file for more details." Cofense, a company specializing in electronic security, reports an increase in cases of cyber attacks aimed at stealing the credentials of employees of companies. Attackers use New Year's Eve messages about changes in pension accounts, salary...

Hackers have been quietly infiltrating vulnerable systems for several months now. The hacker group, known as UAC-0050, actively uses phishing attacks to distribute malicious software Remcos RAT. This software is designed for remote surveillance and management, and plays a key role in the...

Hacker arrested for stealing funds from charitable organizations. A Nigerian citizen has been arrested in Ghana for fraud involving the Business Email Compromise (BEC) attack, which resulted in the loss of more than $7.5 million to a charity in the United States. Olusegun Samson Adejorin was...

A vulnerability in BMW's systems allows phishing campaigns to be conducted against the company's customers. Cybernews specialists identified two subdomains of BMW that were affected by a vulnerability that allowed attackers to redirect users to malicious sites. The vulnerability, called SAP...

Two-factor authentication doesn't help if the user doesn't recognize the threat themselves. Researchers from Trustwave have identified another phishing campaign aimed at Instagram users*. This time, scammers are trying to get backup two-factor authentication codes to hack accounts. It all...

How not to fall for the bait of cybercriminals using popular advertising platforms. Representatives of Kinsta, a hosting provider for WordPress sites, recently discovered that phishing sites are actively distributed through Google Ads, which aims to steal the credentials of MyKinsta, a key...

"Did you sign up for a Netflix subscription? The first write-off is already tomorrow. The scammers behind the BazaCall phishing attacks have started using Google Forms to give their actions the illusion of legitimacy. According to Abnormal Security, this step on the part of hackers is aimed at...

Hackers are adept at exploiting the ignorance of German users by infecting their devices with malware. Security researchers at Fortinet have discovered a new phishing campaign targeting users from Germany that is massively distributing the MrAnon Stealer malware. Kara Lin, a researcher at...

Another wave of cyber attacks affects the country's state institutions. A new cyberattack on Ukrainian government agencies was carried out using Remcos, a remote access tool that is painfully familiar in research circles. Remcos, developed by the German company Breaking Security, is a powerful...

The cyber police of Kharkiv region exposed intruders who sent phishing links on online trading platforms and embezzled money from citizens accounts. The indictment against five members of the group was sent to the court. The defendants face up to twelve years in prison. The participants of the...

Scammers, to deceive a rich heir in Yakutia, created a phishing site — on November 2, the Yakutsk police accepted a statement from a 39-year-old man about stealing 13,391,000 rubles from him. It should be noted that the applicant went to the police at the insistence of a close relative who was...

Malaysian police announced the liquidation of a large PHAAS platform BulletProftLink, which existed since 2015, and the arrest of eight suspects, including the alleged chief administrator of the service. BulletProftLink (also known as BPL or Anthrax) was launched in 2015 and worked under the...

BitSight detected an army of proxies that were victims of large-scale infections. BitSight specialists have discovered a new large botnet network called Socks5Systemz, which has already managed to infect about 10,000 devices using malicious uploaders PrivateLoader and Amadey. The infections...

Zero-transfer phishing is a relatively new cryptoscam scheme that relies on accessing the victim's transaction history on the Tron network. Usually, everything works as follows: the victim sends a large amount of USDT from the crypto wallet, after which he immediately receives a zero amount from...

The LinkedIn tool has once again become an unwitting accomplice of hackers. Hackers have once again started abusing the Smart Links feature of the LinkedIn service by sending phishing emails. Their goal is to steal credentials from Microsoft accounts. Smart Links is a paid tool that allows you...

An international phishing campaign causes problems for victims from different countries. In recent weeks, the number of phishing attacks targeting customers of the U.S. Postal Service (USPS) has increased significantly. An investigation by KrebsOnSecurity revealed that the attackers organized...

Only one message leads to the theft of confidential information of companies. Researchers at Menlo Security have discovered a new phishing campaign targeting the Microsoft 365 accounts of key CEOs of organizations in the United States. As part of the campaign, cybercriminals are abusing Open...

On September 7, the user was subjected to a phishing attack, as a result of which he lost 9579 stETH (~$15.6 million) and 4850 rETH (~$8.5 million). This is likely the largest single-person wallet hack using privacy tracking software in history. The victim granted approval to the scammer by...

The new spyware software is available to hackers of all stripes for a subscription starting from $1000 per day. Security researchers have discovered a new malicious phishing campaign (MalSpam), in which victims ' devices are infected with malware called DarkGate. According to Telekom Security...

Your favorite URL shortening tool may be used against you. Cybersecurity experts from the nao-sec discovered a large-scale cyberattack campaign targeting Taiwanese government organizations. The attacks are reportedly being carried out by a Chinese hacking group, which is being tracked by...