Updated on 2022-12-20: Crypto users claim Gemini email leak occurred much earlier than first reported On 14 Dec, Cointelegraph brought forward revelations about the leak of 5.7 million customer email addresses and partial phone numbers from Gemini crypto exchange. Shortly after, it says multiple users reached out alleging that the leak, which Gemini attributes to …
Phishing
Updated on 2022-12-15 Some threat actors uploaded 144,294 phishing-related packages on open-source repositories, including NuGet (136,258), npm (212), and PyPI (7,894), posing supply chain risks. Read more: HOW 140K NUGET, NPM, AND PYPI PACKAGES WERE USED TO SPREAD PHISHING LINKS Overview: Phishing campaign floods package repositories Checkmarx and Illustria published a joint report on a …
Updated on 2022-12-12: MuddyWater APT Deep Instinct researchers have a report out on a recent spear-phishing campaign carried out by the MuddyWater Iranian APT. This particular campaign was of note because of two things. First, the group used compromised corporate accounts to send out emails to their targets. Second, the final payload was Syncro, a …
Updated on 2022-12-06 A financially-motivated threat actor, tracked as Scattered Spider, has been targeting telcos and BPO firms and reversing defense mitigations, reported Crowdstrike. Read more: Sneaky hackers reverse defense mitigations when detected Overview: New Scattered Spider group targets telcos for SIM swapping attacks Please be aware that due to a certificate rotation on our …
Updated on 2022-11-23 A crypto-stealing phishing campaign is abusing Microsoft Azure Web Apps service to evade MFA and steal cryptocurrencies from Coinbase, KuCoin, Metamask, and Crypto.com accounts. Read more: Attackers bypass Coinbase and MetaMask 2FA via TeamViewer, fake support chat Overview: 2FA-bypass phishing campaign PIXM researchers said they are tracking a sophisticated phishing campaign that …
Updated on 2022-11-23 Unit 42 connected the Luna Moth/Silent Ransom Group with multiple callback phishing extortion campaigns targeting businesses in various sectors, including retail and legal. Read more: Threat Assessment: Luna Moth Callback Phishing Campaign Updated on 2022-11-22 Unit42 researchers have a report out on Luna Moth (aka Silent Ransom Group), a threat actor that …
Updated on 2022-12-22 Trend Micro spotted web3 InterPlanetary File System (IPFS) being used for phishing, which first started on January 18 and spiked on November 7 at over 70,000 phishing URLs. Read more: Web3 IPFS Currently Used For Phishing Updated on 2022-11-13: Bulletproof hosting meets web3 Even malware campaigns are jumping on the web3 train. …
Updated on 2022-11-06: Dropbox phishing attack exposed some GitHub-stored code Cloud giant Dropbox confirmed a data breach this week affecting its development environment. Dropbox said in a post-mortem that no customer data, content, passwords or payment info was taken. While limited in nature and contained, the disclosure explains what went wrong and why. (Yes, even …
Updated on 2022-10-17 There’s a new phishing framework called Caffeine that includes tons of professional features, including a nice UI, enterprise campaigns, self-service for tooling swaps, redirect page management, dynamically generated URLs, and campaign click metrics. Read more: CAFFEINE: A ‘READILY ACCESSIBLE’ PHISHING-AS-A-SERVICE PLATFORM Updated on 2022-10-11 Mandiant researchers have published a report documenting the …
Updated on 2022-10-05 A new phishing technique leverages Chrome’s Application Mode feature to display local login forms that mimic desktop apps to steal credentials. Read more: Web browser app mode can be abused to make desktop phishing pages Overview: Phishing with Chromium’s Application Mode Vulnerability researcher and pen-tester mr.d0x has published technical research showing how …
Updated on 2022-09-30 Managed care company Magellan Health will pay $1.43 million to settle a lawsuit filed in the wake of a 2019 data breach. In May 2019, Magellan subsidiary Magellan Rx Management suffered a phishing attack that led to the compromise of sensitive personal information belonging to 273,000 patients. While Magellan learned about the …
Updated on 2022-09-23: Phishing Campaign Targets GitHub and CircleCI Users A phishing campaign is targeting customers of GitHub and the CircleCI continuous integration and delivery platform in an attempt to harvest account credentials. Both companies have notified their customers bout the malicious emails. Note It appears that there has been a significant increase in phishing …