I file Scalable Vector Graphics rappresentano una nuova minaccia di phishing
Credit to Author: Andrew Brandt| Date: Thu, 06 Feb 2025 09:59:16 +0000
Il formato dei file SVG può ospitare codice HTML, script e malware dannosi
Read morephishing
Scalable Vector Graphics files pose a novel phishing threat
Credit to Author: Andrew Brandt| Date: Wed, 05 Feb 2025 17:01:03 +0000
The SVG file format can harbor malicious HTML, scripts, and malware
Read moreMicrosoft advertisers phished via malicious Google ads
Just days after we uncovered a campaign targeting Google Ads accounts, a similar attack has surfaced, this time aimed at Microsoft…
Read moreThe great Google Ads heist: criminals ransack advertiser accounts via fake Google ads
An ongoing malvertising campaign steals Google advertiser accounts via fraudulent ads for Google Ads itself.
Read morePhishing platform Rockstar 2FA trips, and “FlowerStorm” picks up the pieces
Credit to Author: gallagherseanm| Date: Thu, 19 Dec 2024 15:11:48 +0000
A sudden disruption of a major phishing-as-a-service provider leads to the rise of another…that looks very familiar
Read moreWhy Phishers Love New TLDs Like .shop, .top and .xyz
Credit to Author: BrianKrebs| Date: Tue, 03 Dec 2024 13:27:31 +0000
Phishing attacks increased nearly 40 percent in the year ending August 2024, with much of that growth concentrated at a small number of new generic top-level domains (gTLDs) — such as .shop, .top, .xyz — that attract scammers with rock-bottom prices and no meaningful registration requirements, new research finds. Meanwhile, the nonprofit entity that oversees the domain name industry is moving forward with plans to introduce a slew of new gTLDs.
Read moreSophos MDR blocks and tracks activity from probable Iranian state actor “MuddyWater”
Credit to Author: gallagherseanm| Date: Wed, 20 Nov 2024 17:12:12 +0000
Sophos MDR has observed a new campaign that uses targeted phishing to entice the target to download a legitimate remote machine management tool to dump credentials. We believe with moderate confidence that this activity, which we track as STAC 1171, is related to an Iranian threat actor commonly referred to as MuddyWater or TA450. Earlier […]
Read moreCybercrime-Trend im Aufwind: Phishing mit QR-Codes
Credit to Author: Jörg Schindler| Date: Thu, 07 Nov 2024 12:30:42 +0000
In Anlehnung an Albert Einstein ließe sich wohl sagen, dass der kriminelle Einfallsreichtum der Menschen unendlich ist. Der neueste Trend Quishing beweist jedenfalls einmal wieder, dass die Cyberkriminellen keine Möglichkeit auslassen. Die Experten von Sophos X-Ops haben sich den neuesten Hype der Infiltration über QR-Codes genauer angesehen. Wenn Cyberkriminelle ihre Phishing-Methoden mit eigentlich ganz harmlosen […]
Read moreCrooks bank on Microsoft’s search engine to phish customers
If you searched for your bank’s login page via Bing recently, you may have visited a fraudulent website enabling criminals to get your credentials and even your two-factor security code.
Read more