Phishing - Information Management Today

Storm-2372 used the device code phishing technique since August 2024

Security Affairs

FEBRUARY 16, 2025

Russia-linked group Storm-2372 used the device code phishing technique since Aug 2024 to steal login tokens from governments, NGOs, and industries. ” Device code phishing attacks exploit authentication flows to steal tokens, granting attackers access to accounts and data. ” continues the report.

Phishing

Phishing Authentication Access Government

FBI, Dutch Police Disrupt ‘Manipulaters’ Phishing Gang

Krebs on Security

JANUARY 31, 2025

Department of Justice refers to the cybercrime group as Saim Raza , after a pseudonym The Manipulaters communally used to promote their spam, malware and phishing services on social media. ” Manipulaters advertisement for Office 365 Private Page with Antibot phishing kit sold via Heartsender. Image: DomainTools. ” U.S.

Phishing

Phishing e-Delivery Sales Passwords

Microsoft seized 240 sites used by the ONNX phishing service

Security Affairs

NOVEMBER 23, 2024

Microsoft disrupted the ONNX phishing service, seizing 240 sites and naming an Egyptian man as the operator behind the operation. Microsoft announced the disruption of the ONNX phishing service, another success against cybercrime which led to the seizure of 240 sites. Microsoft has tracked Nady, linked to phishing services since 2017.

Phishing

Phishing Financial Services Risk Access

Webinars

How to Achieve High-Accuracy Results When Using LLMs

MORE WEBINARS

Why Phishers Love New TLDs Like.shop,top and.xyz

Krebs on Security

DECEMBER 3, 2024

Phishing attacks increased nearly 40 percent in the year ending August 2024, with much of that growth concentrated at a small number of new generic top-level domains (gTLDs) — such as.shop ,top ,xyz — that attract scammers with rock-bottom prices and no meaningful registration requirements, new research finds. ”

Phishing

Phishing Marketing IT

The Business Cost of Phishing

Phishing is a problem that's plagued organizations for years. IT and Security teams will tell you that they’re spending too much time and money on phishing, but what does that mean? This report quantifies the financial impacts of phishing.

Phishing

A crafty phishing campaign targets Microsoft OneDrive users

Security Affairs

JULY 30, 2024

Researchers detected a sophisticated phishing campaign targeting Microsoft OneDrive users to trick them into executing a PowerShell script. Over the past few weeks, the Trellix Advanced Research Center observed a sophisticated phishing campaign targeting Microsoft OneDrive users.

Phishing

Phishing File names Archiving Access

Phish-Friendly Domain Registry “.top” Put on Notice

Krebs on Security

JULY 23, 2024

The Chinese company in charge of handing out domain names ending in “ top ” has been given until mid-August 2024 to show that it has put in place systems for managing phishing reports and suspending abusive domains, or else forfeit its license to sell domains. ” Image: Shutterstock. Interisle said.top has roughly 2.76

Phishing

Phishing Compliance IT

OP KAERB: Europol dismantled phishing scheme targeting mobile users

Security Affairs

SEPTEMBER 21, 2024

A joint international law enforcement operation led by Europol dismantled a major phishing scheme targeting mobile users. Europol supported European and Latin American law enforcement agencies in dismantling an international criminal network that unlocks stolen or lost mobile phones using a phishing platform.

Phishing

Phishing Computer and Electronics Marketing Access

Phishing attacks target mobile users via progressive web applications (PWA)

Security Affairs

AUGUST 23, 2024

ESET researchers detailed a phishing campaign against mobile users that uses Progressive Web Applications (PWAs). The technique allows the installation of a phishing application from a third-party website without requiring the user to enable third-party app installations. ” reads the report published by ESET.

Phishing

Phishing IT Security Information Security

Police seized BulletProftLink phishing-as-a-service (PhaaS) platform

Security Affairs

NOVEMBER 11, 2023

The Royal Malaysian Police announced the seizure of the notorious BulletProftLink phishing-as-a-service (PhaaS) platform. The Royal Malaysian Police announced to have dismantled the notorious BulletProftLink phishing-as-a-service (PhaaS) platform. The operation was first documented on OSINT Fans by Gabor Szathmari in October 2020.

Phishing

Phishing Ransomware IT Access

“My Slice”, an Italian adaptive phishing campaign

Security Affairs

JANUARY 22, 2024

Adaptive phishing campaigns are emerging as an increasingly sophisticated threat in the cybersecurity landscape. The phenomenon This phenomenon represents an evolution of traditional phishing tactics, as attackers seek to overcome defenses using more personalized and targeted approaches.

Phishing

Phishing Education Cybersecurity Data breaches

Phishing, the campaigns that are targeting Italy

Security Affairs

OCTOBER 12, 2023

This post analyzed the numerous phishing campaigns targeting users and organizations in Italy. Phishing is a ploy to trick users into revealing personal or financial information through an e-mail, Web site, and even through instant messaging. Phishing can also be used as a precursor attack to drop malware. Just to name a few.

Phishing

Phishing Education Passwords Security

Law enforcement operation dismantled phishing-as-a-service platform LabHost

Security Affairs

APRIL 18, 2024

An international law enforcement operation led to the disruption of the prominent phishing-as-a-service platform LabHost. An international law enforcement operation, codenamed Nebulae and coordinated by Europol, led to the disruption of LabHost, which is one of the world’s largest phishing-as-a-service platforms.

Phishing

Phishing Passwords Authentication IT

Chinese man charged for spear-phishing against NASA and US Government

Security Affairs

SEPTEMBER 17, 2024

US DoJ charged a Chinese national who used spear-phishing emails to obtain sensitive info from NASA, the U.S. DoJ charged a Chinese national, Song Wu (39), who used spear-phishing emails to target employees of NASA, the U.S. Air Force, Navy, Army, and the FAA. Air Force, Navy, Army, and the FAA.” “According to U.S.

Phishing

Phishing Government Military Security

Phishing campaigns target SMBs in Poland, Romania, and Italy with multiple malware families

Security Affairs

JULY 31, 2024

Phishing campaigns target small and medium-sized businesses (SMBs) in Poland to deliver malware families such as Agent Tesla, Formbook, and Remcos RAT. ESET researchers observed multiple phishing campaigns targeting SMBs in Poland in May 2024, distributing various malware families like Agent Tesla , Formbook , and Remcos RAT.

Phishing

Phishing Archiving Information Security IT

Phishing campaign targeted US executives exploiting a flaw in Indeed job search platform

Security Affairs

OCTOBER 4, 2023

Threat actors exploited an open redirection vulnerability in the job search platform Indeed to carry out phishing attacks. Researchers from the cybersecurity firm Menlo Security reported that threat actors exploited an open redirection vulnerability in the job search platform Indeed in phishing attacks. ” continues the report.

Phishing

Phishing Insurance Manufacturing Authentication

News alert: Arsen’s rolls out AI-powered phishing tests to improve social engineering resilience

The Last Watchdog

MARCH 24, 2025

24, 2025, CyberNewswire — Arsen , a leading cybersecurity company specializing in social engineering defense, today announced the full release of Conversational Phishing, a groundbreaking feature embedded in its phishing simulation platform. To learn more about Conversational Phishing, users can visit [link].

Phishing

Phishing Security awareness Cybersecurity Marketing

CERT-UA warns of a phishing campaign targeting government entities

Security Affairs

AUGUST 13, 2024

CERT-UA warned that Russia-linked actor is impersonating the Security Service of Ukraine (SSU) in a new phishing campaign to distribute malware. The Computer Emergency Response Team of Ukraine (CERT-UA) has warned of a new phishing campaign targeting organizations in the country, including government entities.

Phishing

Phishing Government File names Access

What is vishing? Voice phishing is surging - expert tips on how to spot it and stop it

Collaboration 2.0

MARCH 4, 2025

Phishing isn't limited to your inbox anymore.

Phishing

Phishing IT

Phorpiex botnet sent millions of phishing emails to deliver LockBit Black ransomware

Security Affairs

MAY 13, 2024

Experts reported that since April, the Phorpiex botnet sent millions of phishing emails to spread LockBit Black ransomware. Phishing Reporting : Report phishing emails and other malicious cyber activities to relevant authorities like the FBI’s IC3 and the NJCCIC.

Phishing

Phishing Ransomware Security awareness Authentication

Booking.com Phishers May Leave You With Reservations

Krebs on Security

NOVEMBER 1, 2024

This story examines a recent spear-phishing campaign that ensued when a California hotel had its booking.com credentials stolen. KrebsOnSecurity last week heard from a reader whose close friend received a targeted phishing message within the Booking mobile app just minutes after making a reservation at a California.

Phishing

Phishing Artificial Intelligence Authentication Cloud

FIN7 targeted a large U.S. carmaker phishing attacks

Security Affairs

APRIL 18, 2024

carmaker with spear-phishing attacks. In late 2023, BlackBerry researchers spotted the threat actor FIN7 targeting a large US automotive manufacturer with a spear-phishing campaign. BlackBerry reported that the financially motivated group FIN7 targeted the IT department of a large U.S.

Phishing

Phishing Manufacturing Libraries IT

This Windows PowerShell Phish Has Scary Potential

Krebs on Security

SEPTEMBER 19, 2024

Many GitHub users this week received a novel phishing email warning of critical security holes in their code. Those who clicked the link for details were asked to distinguish themselves from bots by pressing a combination of keyboard keys that causes Microsoft Windows to download password-stealing malware.

Phishing

Phishing Passwords Security IT

Dropbox Used in Latest Exploit for Phishing Attacks

Data Breach Today

MARCH 11, 2024

Darktrace Warns of Malware Hidden in PDF Stored in Dropbox Phishing attacks continue to adapt to exploit popular apps. While many phishing campaigns have focused on mobile banking and payment sites, attackers are also targeting widely used but lower-profile, cloud-based utilities such as the ubiquitous Dropbox storage platform.

Phishing

Phishing Cloud

US, Microsoft Seize Domains Used in Russian Spear-Phishing

Data Breach Today

OCTOBER 3, 2024

Department of Justice and Microsoft seized more than 100 websites allegedly used by a Russian intelligence cyberespionage operation with a fondness for spear phishing. FSB Hackers Stripped of 107 Domains Used to Steal Credentials The U.S.

Phishing

Phishing Security

A generative artificial intelligence malware used in phishing attacks

Security Affairs

SEPTEMBER 24, 2024

The AI-generated malware was discovered in June 2024, the phishing message used an invoice-themed lure and an encrypted HTML attachment, utilizing HTML smuggling to avoid detection. ” Threat actors have been using generative AI to craft phishing lures, but its use in creating malicious code has been rare.

Artificial Intelligence

Artificial Intelligence Phishing Encryption IT

Phishers abuse CrowdStrike brand targeting job seekers with cryptominer

Security Affairs

JANUARY 10, 2025

CrowdStrike warns of a phishing campaign that uses its recruitment branding to trick recipients into downloading a fake application, which finally installs the XMRig cryptominer. ” The attack begins with a phishing email impersonating CrowdStrike recruitment, directing recipients to a malicious website.”

Phishing

Phishing Mining Authentication Communications

OAuth apps used in cryptocurrency mining, phishing campaigns, and BEC attacks

Security Affairs

DECEMBER 13, 2023

Microsoft warns that threat actors are using OAuth applications cryptocurrency mining campaigns and phishing attacks. Microsoft observed a differed threat actor using compromised user accounts and creating OAuth applications to maintain persistence and to launch phishing attacks. ” states Microsoft.

Mining

Mining Phishing Passwords Access

Fake Websites, Phishing Appear in Wake of CrowdStrike Outage

Data Breach Today

JULY 22, 2024

Authorities Warn About Domains Targeting Victims Seeking to Restore Windows Devices Cybercriminals are exploiting the chaos created by the CrowdStrike outage by launching fake websites and phishing campaigns to trick victims into downloading malware or divulging sensitive information, according to the U.S.

Phishing

Phishing Cybersecurity Security

Interpol: Operation HAECHI-V led to more than 5,500 suspects arrested

Security Affairs

DECEMBER 2, 2024

Operation HAECHI V (July-Nov 2024) targeted cyber frauds like phishing, romance scams, sextortion, investment fraud, online gambling, BEC, and e-commerce fraud. Korean and Chinese authorities dismantled a voice phishing syndicate that caused $1.1B in losses to 1,900+ victims. The operation led to 27 arrests and 19 indictments.

Phishing

Phishing Ransomware Access IT

Malicious Pixels: Criminals Revamp QR Code Phishing Attacks

Data Breach Today

OCTOBER 9, 2024

Attackers Use ASCII Characters to Create Tough-to-Spot QR Codes, Barracuda Warns Attackers are moving beyond using QR code images added to phishing emails to trick victims into visiting malicious sites, and using ASCII "full block" characters to build working QR codes designed to evade optical character recognition defenses, warns cybersecurity firm (..)

Phishing

Phishing Cybersecurity

Fake Websites, Phishing Surface in Wake CrowdStrike Outage

Data Breach Today

JULY 20, 2024

Authorities Warn About Domains Targeting Victims Seeking to Restore Windows Devices Cybercriminals are exploiting the chaos created by the CrowdStrike outage by launching fake websites and phishing campaigns to trick victims into downloading malware or divulging sensitive information, according to the U.S.

Phishing

Phishing Cybersecurity Security

SideWinder phishing campaign targets maritime facilities in multiple countries

Security Affairs

JULY 30, 2024

The phishing emails include a malicious document which contains a plain text URL linking to a site controlled by the attacker. ” Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, phishing)

Phishing

Phishing Military Access IT

Mishing Is the New Phishing — And It’s More Dangerous

eSecurity Planet

FEBRUARY 26, 2025

Cybercriminals are shifting their focus from emails to text messages, using mishing a more deceptive form of phishing to target mobile users and infiltrate corporate networks, according to new security research by Zimperium. Vishing: Also known as voice phishing. What is mishing? and 9%in Brazil.

Phishing

Phishing Data breaches Education Risk

Russia-linked APT used a car for sale as a phishing lure to target diplomats with HeadLace malware

Security Affairs

AUGUST 3, 2024

A Russia-linked APT used a car for sale as a phishing lure to deliver a modular Windows backdoor called HeadLace. The campaign began around March 2024, the attackers leveraged phishing tactics that have been effective against diplomats for years, exploiting themes that prompt targets to engage with malicious content.

Sales

Sales Phishing Military Archiving

Turmoil Besets Phishing-as-a-Service Toolkit Rockstar 2FA

Data Breach Today

DECEMBER 23, 2024

Infrastructure Problems Blamed; Users Appear to Move to Similar FlowerStorm Service As the end of the year approaches, it's out with the old and in with the new as researchers report that Rockstar 2FA, which once facilitated prolific phishing-as-a-service hits, has crashed and burned, apparently leading many one-time users to move to rival FlowerStorm. (..)

Phishing

Phishing IT

Black Hat Fireside Chat: User feedback, AI-infused email security are both required to deter phishing

The Last Watchdog

AUGUST 21, 2024

I recently learned all about the state-of-the art of phishing attacks – the hard way. We discussed just how targeted and contextualized advanced phishing attacks, like the one I experienced, can be. Foolishly, I did so all too quickly. For a full drill down, please give the accompanying podcast a listen.

Phishing

Phishing Security IT

US DoJ charges five alleged members of the Scattered Spider cybercrime gang

Security Affairs

NOVEMBER 21, 2024

Between September 2021 and April 2023, the hackers carried out phishing attacks to steal login credentials from employees of 12 companies and individuals. Hackers in their teens and 20s allegedly carried out phishing attacks via fake text messages to steal login credentials from employees of 12 companies and individuals.

Phishing

Phishing Access Passwords Ransomware

Vulnerability Recap 10/28/24 – Phishing, DoS, RCE & a Zero-Day

eSecurity Planet

OCTOBER 28, 2024

We’ll also look at increased phishing attacks, a couple of different Cisco flaws, and a Fortinet vulnerability that took some time to get its own CVE. Netskope Reports Increase in Webflow Phishing Pages Type of attack: Phishing and subsequent credential theft. webflow.io, which indicates a phishing site.

Phishing

Phishing Authentication Security IT

How to protect yourself from phishing attacks in Chrome and Firefox

Collaboration 2.0

JANUARY 8, 2025

Phishing is a form of social engineering where attackers try to get you to reveal your sensitive information through malicious links, SMS, QR codes, and more. Here's how to protect yourself in Chrome and Firefox.

Phishing

How scammers are tricking Apple iMessage users into disabling phishing protection

Collaboration 2.0

JANUARY 15, 2025

People who unwittingly follow the instructions in certain malicious text messages end up bypassing Apple's phishing protection.

Phishing

Glove Stealer bypasses Chrome’s App-Bound Encryption to steal cookies

Security Affairs

NOVEMBER 15, 2024

Gen Digital observed phishing campaigns distributing the Glove Stealer. The campaign observed by researchers used a phishing message with an HTML file attachment. Threat actors relies on social engineering tactics like ClickFix and FakeCaptcha to trick users into executing malicious scripts via PowerShell or Run prompts.

Encryption

Encryption File names Phishing Passwords

Phishing attacks use an old Microsoft Office flaw to spread Agent Tesla malware

Security Affairs

DECEMBER 21, 2023

Threat actors are exploiting an old Microsoft Office vulnerability, tracked as CVE-2017-11882 (CVSS score: 7.8), as part of phishing campaigns to spread the Agent Tesla malware. Threat actors are exploiting an old Microsoft Office vulnerability, tracked as CVE-2017-11882, to spread the Agent Tesla malware.

Phishing

Phishing Communications Cybersecurity IT

Banshee macOS stealer supports new evasion mechanisms

Security Affairs

JANUARY 10, 2025

Check Point researchers discovered a new version of the Banshee macOS infostealer which is distributed through phishing websites and fake GitHub repositories, often masqueraded as popular software. Experts found a new version of the Banshee macOS information stealer which was enhanced with new evasion mechanisms.

Archiving

Archiving Phishing Encryption Passwords

Storm-2372 used the device code phishing technique since August 2024

FBI, Dutch Police Disrupt ‘Manipulaters’ Phishing Gang

Webinars

Trending Sources

Microsoft seized 240 sites used by the ONNX phishing service

Webinars

Why Phishers Love New TLDs Like.shop,top and.xyz

The Business Cost of Phishing

A crafty phishing campaign targets Microsoft OneDrive users

Phish-Friendly Domain Registry “.top” Put on Notice

OP KAERB: Europol dismantled phishing scheme targeting mobile users

Phishing attacks target mobile users via progressive web applications (PWA)

Police seized BulletProftLink phishing-as-a-service (PhaaS) platform

“My Slice”, an Italian adaptive phishing campaign

Phishing, the campaigns that are targeting Italy

Law enforcement operation dismantled phishing-as-a-service platform LabHost

Chinese man charged for spear-phishing against NASA and US Government

Phishing campaigns target SMBs in Poland, Romania, and Italy with multiple malware families

Phishing campaign targeted US executives exploiting a flaw in Indeed job search platform

News alert: Arsen’s rolls out AI-powered phishing tests to improve social engineering resilience

CERT-UA warns of a phishing campaign targeting government entities

What is vishing? Voice phishing is surging - expert tips on how to spot it and stop it

Phorpiex botnet sent millions of phishing emails to deliver LockBit Black ransomware

Booking.com Phishers May Leave You With Reservations

FIN7 targeted a large U.S. carmaker phishing attacks

This Windows PowerShell Phish Has Scary Potential

Dropbox Used in Latest Exploit for Phishing Attacks

US, Microsoft Seize Domains Used in Russian Spear-Phishing

A generative artificial intelligence malware used in phishing attacks

Phishers abuse CrowdStrike brand targeting job seekers with cryptominer

OAuth apps used in cryptocurrency mining, phishing campaigns, and BEC attacks

Fake Websites, Phishing Appear in Wake of CrowdStrike Outage

Interpol: Operation HAECHI-V led to more than 5,500 suspects arrested

Malicious Pixels: Criminals Revamp QR Code Phishing Attacks

Fake Websites, Phishing Surface in Wake CrowdStrike Outage

SideWinder phishing campaign targets maritime facilities in multiple countries

Mishing Is the New Phishing — And It’s More Dangerous

Russia-linked APT used a car for sale as a phishing lure to target diplomats with HeadLace malware

Turmoil Besets Phishing-as-a-Service Toolkit Rockstar 2FA

Black Hat Fireside Chat: User feedback, AI-infused email security are both required to deter phishing

US DoJ charges five alleged members of the Scattered Spider cybercrime gang

Vulnerability Recap 10/28/24 – Phishing, DoS, RCE & a Zero-Day

How to protect yourself from phishing attacks in Chrome and Firefox

How scammers are tricking Apple iMessage users into disabling phishing protection

Glove Stealer bypasses Chrome’s App-Bound Encryption to steal cookies

Phishing attacks use an old Microsoft Office flaw to spread Agent Tesla malware

Banshee macOS stealer supports new evasion mechanisms

Stay Connected