Don’t Let Zombie Zoom Links Drag You Down

Credit to Author: BrianKrebs| Date: Mon, 02 Oct 2023 15:43:34 +0000

Many organizations — including quite a few Fortune 500 firms — have exposed web links that allow anyone to initiate a Zoom video conference meeting as a valid employee. These company-specific Zoom links, which include a permanent user ID number and an embedded passcode, can work indefinitely and expose an organization’s employees, customers or partners to phishing and other social engineering attacks.

Read more

Teach a Man to Phish and He’s Set for Life

Credit to Author: BrianKrebs| Date: Fri, 04 Aug 2023 13:49:15 +0000

One frustrating aspect of email phishing is the frequency with which scammers fall back on tried-and-true methods that really have no business working these days. Like attaching a phishing email to a traditional, clean email message, or leveraging link redirects on LinkedIn, or abusing an encoding method that makes it easy to disguise booby-trapped Microsoft Windows files as relatively harmless documents.

Read more

Russian Cybersecurity Executive Arrested for Alleged Role in 2012 Megahacks

Credit to Author: BrianKrebs| Date: Thu, 29 Jun 2023 18:30:08 +0000

Nikita Kislitsin, formerly the head of network security for one of Russia’s top cybersecurity firms, was arrested last week in Kazakhstan in response to 10-year-old hacking charges from the U.S. Department of Justice. Experts say Kislitsin’s prosecution could soon put the Kazakhstan government in a sticky diplomatic position, as the Kremlin is already signaling that it intends to block his extradition to the United States.

Read more

Fake Amazon Prime email abuses LinkedIn’s URL shortener

Categories: News

Categories: Scams

Tags: LinkedIn

Tags: Slinks

Tags: phish

Tags: phishing

Tags: email

Tags: payment details

Tags: amazon

Tags: gmail

Tags: outlook

Tags: hotmail

Tags: scam

Tags: scammers

The email claims if you not update your card information in the next 24 hours, your membership benefits will be cancelled.

(Read more…)

The post Fake Amazon Prime email abuses LinkedIn’s URL shortener appeared first on Malwarebytes Labs.

Read more

LinkedIn introduces new security features to combat fake accounts

Categories: News

Tags: fake accounts

Tags: social media platform

Tags: LinkedIn

Tags: AI

Tags: deep learning

Tags: reporting

After a deluge of fake or bot accounts these past few months, LinkedIn says it is starting to roll out some new security features.

(Read more…)

The post LinkedIn introduces new security features to combat fake accounts appeared first on Malwarebytes Labs.

Read more

Battle with Bots Prompts Mass Purge of Amazon, Apple Employee Accounts on LinkedIn

Credit to Author: BrianKrebs| Date: Thu, 20 Oct 2022 17:07:34 +0000

On October 10, 2022, there were 576,562 LinkedIn accounts that listed their current employer as Apple Inc. The next day, half of those profiles no longer existed. A similarly dramatic drop in the number of LinkedIn profiles claiming employment at Amazon comes as LinkedIn is struggling to combat a significant uptick in the creation of fake employee accounts that pair AI-generated profile photos with text lifted from legitimate users.

Read more

Bogus job offers hide trojanised open-source software

Categories: News

Tags: malware

Tags: ZINC

Tags: microsoft

Tags: infection

Tags: C&C

Tags: open source

Tags: job offer

Tags: fake

Tags: LinkedIn

A North Korean ZINC group is accused of creating compromised versions of KiTTY, PuTTY, TightVNC, and other popular open-source software apps

(Read more…)

The post Bogus job offers hide trojanised open-source software appeared first on Malwarebytes Labs.

Read more