WhatsApp spear phishing campaign uses QR codes to add device
A cybercriminal campaign linked to Russia is deploying QR codes to access the WhatsApp accounts of high-profile targets like journalists, members…
Read moreHackers Likely Stole FBI Call Logs From AT&T That Could Compromise Informants
Credit to Author: Lily Hay Newman| Date: Fri, 17 Jan 2025 00:14:45 +0000
A breach of AT&T that exposed “nearly all” of the company’s customers may have included records related to confidential FBI sources, potentially explaining the bureau’s new embrace of end-to-end encryption.
Read moreIoT Botnet Linked to Large-scale DDoS Attacks Since the End of 2024
Credit to Author: Trend Micro Research| Date: Fri, 17 Jan 2025 00:00:00 +0000
Since the end of 2024, we have been continuously monitoring large-scale DDoS attacks orchestrated by an IoT botnet exploiting vulnerable IoT devices such as wireless routers and IP cameras.
Read moreNew Star Blizzard spear-phishing campaign targets WhatsApp accounts
Credit to Author: Microsoft Threat Intelligence| Date: Thu, 16 Jan 2025 17:00:00 +0000
In mid-November 2024, Microsoft Threat Intelligence observed the Russian threat actor we track as Star Blizzard sending their typical targets spear-phishing messages, this time offering the supposed opportunity to join a WhatsApp group. This is the first time we have identified a shift in Star Blizzard’s longstanding tactics, techniques, and procedures (TTPs) to leverage a […]
The post New Star Blizzard spear-phishing campaign targets WhatsApp accounts appeared first on Microsoft Security Blog.
Read moreInnovating in line with the European Union’s AI Act
Credit to Author: Natasha Crampton| Date: Wed, 15 Jan 2025 14:10:00 +0000
As our Microsoft AI Tour reached Brussels, Paris, and Berlin recently, we met with European organizations that were energized by the possibilities of our latest AI technologies and engaged in deployment projects. They were also alert to the fact that 2025 is the year that key obligations under the European Union’s AI Act come into effect, opening a new chapter in digital regulation as the world’s first, comprehensive AI law becomes a reality.
The post Innovating in line with the European Union’s AI Act appeared first on Microsoft Security Blog.
Read moreChinese Innovations Spawn Wave of Toll Phishing Via SMS
Credit to Author: BrianKrebs| Date: Thu, 16 Jan 2025 21:18:48 +0000
Residents across the United States are being inundated with text messages purporting to come from toll road operators like E-ZPass, warning that recipients face fines if a delinquent toll fee remains unpaid. Researchers say the surge in SMS spam coincides with new features added to a popular commercial phishing kit sold in China that makes it simple to set up convincing lures spoofing toll road operators in multiple U.S. states.
Read moreGootloader inside out
Credit to Author: Gabor Szappanos| Date: Thu, 16 Jan 2025 17:00:02 +0000
Open-source intelligence reveals the server-side code of this pernicious SEO-driven malware – without needing a lawyer afterward
Read moreSophos ZTNA Updates
Credit to Author: Chris McCormack| Date: Thu, 16 Jan 2025 14:25:20 +0000
New Let’s Encrypt and regional support.
Read moreAvery had credit card skimmer stuck on its site for months
Avery has confirmed its website was compromised by a credit card skimmer that potentially affected over 60,000 customers.
Read moreBiden’s Cyber Ambassador Urges Trump Not to Cede Ground to Russia and China in Global Tech Fight
Credit to Author: Eric Geller| Date: Thu, 16 Jan 2025 11:30:00 +0000
Nathaniel Fick, the ambassador for cyberspace and digital policy, has led US tech diplomacy amid a rising tide of pressure from authoritarian regimes. Will the Trump administration undo that work?
Read more