Skip to Content

2FA-bypass phishing campaign

Updated on 2022-11-23 A crypto-stealing phishing campaign is abusing Microsoft Azure Web Apps service to evade MFA and steal cryptocurrencies from Coinbase, KuCoin, Metamask, and Crypto.com accounts. Read more: Attackers bypass Coinbase and MetaMask 2FA via TeamViewer, fake support chat Overview: 2FA-bypass phishing campaign PIXM researchers said they are tracking a sophisticated phishing campaign that …

Read More about 2FA-bypass phishing campaign

Luna Moth aka Silent Ransom Group

Updated on 2022-11-23 Unit 42 connected the Luna Moth/Silent Ransom Group with multiple callback phishing extortion campaigns targeting businesses in various sectors, including retail and legal. Read more: Threat Assessment: Luna Moth Callback Phishing Campaign Updated on 2022-11-22 Unit42 researchers have a report out on Luna Moth (aka Silent Ransom Group), a threat actor that …

Read More about Luna Moth aka Silent Ransom Group

Dropbox phishing attack exposed some GitHub-stored code

Updated on 2022-11-06: Dropbox phishing attack exposed some GitHub-stored code Cloud giant Dropbox confirmed a data breach this week affecting its development environment. Dropbox said in a post-mortem that no customer data, content, passwords or payment info was taken. While limited in nature and contained, the disclosure explains what went wrong and why. (Yes, even …

Read More about Dropbox phishing attack exposed some GitHub-stored code

Caffeine PhaaS

Updated on 2022-10-17 There’s a new phishing framework called Caffeine that includes tons of professional features, including a nice UI, enterprise campaigns, self-service for tooling swaps, redirect page management, dynamically generated URLs, and campaign click metrics. Read more: CAFFEINE: A ‘READILY ACCESSIBLE’ PHISHING-AS-A-SERVICE PLATFORM Updated on 2022-10-11 Mandiant researchers have published a report documenting the …

Read More about Caffeine PhaaS

GitHub and CircleCI phishing campaign

Updated on 2022-09-23: Phishing Campaign Targets GitHub and CircleCI Users A phishing campaign is targeting customers of GitHub and the CircleCI continuous integration and delivery platform in an attempt to harvest account credentials. Both companies have notified their customers bout the malicious emails. Note It appears that there has been a significant increase in phishing …

Read More about GitHub and CircleCI phishing campaign