Tag: social engineering tactics
-
The Register: Crypto klepto North Korea stole $659M over just 5 heists last year
Source URL: https://www.theregister.com/2025/01/15/north_korea_crypto_heists/ Source: The Register Title: Crypto klepto North Korea stole $659M over just 5 heists last year Feedly Summary: US, Japan, South Korea vow to intensify counter efforts North Korean blockchain bandits stole more than half a billion dollars in cryptocurrency in 2024 alone, the US, Japan, and South Korea say.… AI Summary…
-
The Register: Microsoft fixes under-attack privilege-escalation holes in Hyper-V
Source URL: https://www.theregister.com/2025/01/15/patch_tuesday_january_2025/ Source: The Register Title: Microsoft fixes under-attack privilege-escalation holes in Hyper-V Feedly Summary: Plus: Excel hell, angst for Adobe fans, and life’s too Snort for Cisco Patch Tuesday The first Patch Tuesday of 2025 has seen Microsoft address three under-attack privilege-escalation flaws in its Hyper-V hypervisor, plus plenty more problems that deserve…
-
The Register: Japanese Police claim China ran five-year cyberattack campaign
Source URL: https://www.theregister.com/2025/01/09/japan_mirrorface_china_attack/ Source: The Register Title: Japanese Police claim China ran five-year cyberattack campaign Feedly Summary: ‘MirrorFace’ group found ways to run malware in the Windows sandbox, which is worrying Japan’s National Police Agency and Center of Incident Readiness and Strategy for Cybersecurity have confirmed third party reports of attacks on local orgs by…
-
Hacker News: How to Lose a Fortune with Just One Bad Click
Source URL: https://krebsonsecurity.com/2024/12/how-to-lose-a-fortune-with-just-one-bad-click/ Source: Hacker News Title: How to Lose a Fortune with Just One Bad Click Feedly Summary: Comments AI Summary and Description: Yes **Summary:** The text highlights the alarming rise of sophisticated phishing scams utilizing social engineering tactics, particularly targets involving Google accounts and cryptocurrency wallets. This case study demonstrates the vulnerabilities inherent…
-
The Register: Don’t fall for a mail asking for rapid Docusign action – it may be an Azure account hijack phish
Source URL: https://www.theregister.com/2024/12/19/docusign_lure_azure_account_takeover/ Source: The Register Title: Don’t fall for a mail asking for rapid Docusign action – it may be an Azure account hijack phish Feedly Summary: Recent campaign targeted 20,000 folk across UK and Europe with this tactic, Unit 42 warns Unknown criminals went on a phishing expedition that targeted about 20,000 users…
-
CSA: Why Are Cyberattacks on Transportation Surging?
Source URL: https://abnormalsecurity.com/blog/transportation-industry-email-attack-trends Source: CSA Title: Why Are Cyberattacks on Transportation Surging? Feedly Summary: AI Summary and Description: Yes Summary: The text addresses the rising cyber threats targeting the transportation industry, emphasizing the increase in various forms of cyberattacks, including phishing, business email compromise (BEC), and vendor email compromise (VEC). It highlights the critical vulnerabilities…
-
The Register: The only thing worse than being fired is scammers fooling you into thinking you’re fired
Source URL: https://www.theregister.com/2024/11/28/fired_phishing_campaign_cloudflare/ Source: The Register Title: The only thing worse than being fired is scammers fooling you into thinking you’re fired Feedly Summary: Scumbags play on victims’ worst fears in phishing campaign referencing UK Employment Tribunal A current phishing campaign scares recipients into believing they’ve been sacked, when in reality they’ve been hacked –…
-
Krebs on Security: Feds Charge Five Men in ‘Scattered Spider’ Roundup
Source URL: https://krebsonsecurity.com/2024/11/feds-charge-five-men-in-scattered-spider-roundup/ Source: Krebs on Security Title: Feds Charge Five Men in ‘Scattered Spider’ Roundup Feedly Summary: Federal prosecutors in Los Angeles this week unsealed criminal charges against five men alleged to be members of a hacking group responsible for dozens of cyber intrusions at major U.S. technology companies between 2021 and 2023, including…
-
The Register: FBI issues warning as crooks ramp up emergency data request scams
Source URL: https://www.theregister.com/2024/11/11/fraudulent_edr_emails/ Source: The Register Title: FBI issues warning as crooks ramp up emergency data request scams Feedly Summary: Just because it’s .gov doesn’t mean that email is trustworthy Cybercrooks abusing emergency data requests in the US isn’t new, but the FBI says it’s becoming a more pronounced issue as the year draws to…
-
The Register: Alleged Snowflake attacker gets busted by Canadians – politely, we assume
Source URL: https://www.theregister.com/2024/11/11/infosec_in_brief/ Source: The Register Title: Alleged Snowflake attacker gets busted by Canadians – politely, we assume Feedly Summary: Also: Crypto hacks will continue; CoD hacker gets thousands banned, and more in brief One of the suspected masterminds behind the widespread Snowflake breach has been arrested in Canada – but the saga isn’t over,…