Social engineering – Page 9 – PossibleThreat Articles

Not us, YOU: vendor email compromise explained

November 7, 2019 0 Comments account takeover, acid, agari, agari cyber intelligence division, ATO, BEC, Business, business cyberattacks, business email compromise, business threats, nigerian scammer, phishing, silent starling, Social engineering, vec, vendor email compromise

Credit to Author: Jovi Umawing| Date: Thu, 07 Nov 2019 21:49:16 +0000

Vendor email compromise (VEC) is a new cybersecurity term for a familiar practice, taken to the thousandth degree. Learn the similarities with business email compromise and how your organization can protect against them both.

Categories:

Business

Tags: account takeover ACID Agari Agari Cyber Intelligence Division ATO bec business cyberattacks Business Email Compromise business threats Nigerian scammer phishing Silent Starling Social Engineering VEC vendor email compromise

(Read more…)

The post Not us, YOU: vendor email compromise explained appeared first on Malwarebytes Labs.

MalwareBytes Security

Help prevent disaster donation scams from causing more misery

October 30, 2019 0 Comments 419, 419 scams, charity, cold call scams, cold calls, disaster, donation scams, natural disaster, natural disaster scam, Natural Disasters, phish, phishing, red cross, scammers, scamming, scams, Social engineering, social engineering attacks

Credit to Author: Christopher Boyd| Date: Wed, 30 Oct 2019 20:36:21 +0000

Scammers will stop at nothing—not even a tragic natural disaster—for a chance to cash in. We offer some helpful tips to avoid disaster donation scams.

Categories:

Social engineering

Tags: 419 419 scams charity cold call scams cold calls disaster donation scams natural disaster natural disaster scam natural disasters phish phishing red cross scammers scamming scams Social Engineering social engineering attacks

MalwareBytes Security

How to protect yourself from doxing

October 25, 2019 0 Comments dox, doxer, doxing, how-tos, ip address, mobile vpns, online privacy, password manager, personal data, personally identifiable information, Privacy, Social engineering, social media, vpn, vpns, whois

Credit to Author: Osama Tahir| Date: Fri, 25 Oct 2019 15:37:31 +0000

Doxing, or collecting and spreading private information about a user online, is a form of cyber harassment, stalking, and even a potential threat to physical safety. Here’s what you can do to protect yourself against it.

Categories:

How-tos

Tags: dox doxer doxing IP address mobile VPNs online privacy password manager personal data personally identifiable information privacy Social Engineering social media vpn VPNs WHOIS

(Read more…)

The post How to protect yourself from doxing appeared first on Malwarebytes Labs.

Security Sophos

Food writer Jack Monroe loses at least £5,000 in SIM-swap fraud

October 16, 2019 0 Comments 2fa, Celebrities, data loss, Hacked, hijacking, jack monroe, Law & order, MFA, Mobile, multi-factor authentication, phishing, security threats, sim swap, SIM swapping, Social engineering, two-factor authentication

Credit to Author: Lisa Vaas| Date: Wed, 16 Oct 2019 10:53:52 +0000

Her accounts were drained in spite of using 2FA, showing that SIM swaps can still circumvent what’s a good security tool.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/QJiDHTqtHDo” height=”1″ width=”1″ alt=””/>

MalwareBytes Security

Instagram clamps down on fake messages with anti-phishing tool

October 15, 2019 0 Comments anti-phishing, anti-phishing tool, email, emails from instagram, Instagram, mail, malicious email, malspam, phishing, phishing scams, safety, scams, Social engineering, social engineering attacks, social media scams

Credit to Author: Christopher Boyd| Date: Tue, 15 Oct 2019 15:51:50 +0000

We take a look at a new anti-phishing feature Instagram hopes will cut down on imitation messages and other social engineering attempts.

Categories:

Social engineering

Tags: anti-phishing anti-phishing tool email emails from instagram Instagram mail malicious email malspam phishing phishing scams safety scams Social Engineering social engineering attacks social media scams

Security Sophos

Fin7 sysadmin pleads guilty to running IT for billion-dollar crime syndicate

September 13, 2019 0 Comments admin, breach, Carbanak Group, Combi Security, data loss, Fedir Hladyr, Fin7, hipchat, Joker Stash, Law & order, malware, Navigator Group, pen testing, penetration testing, phishing, POS systems, Social engineering, sysadmin, systems administrator, wire fraud

Credit to Author: Lisa Vaas| Date: Fri, 13 Sep 2019 10:17:07 +0000

Fedir Oleksiyovich Hladyr is the first member of the infamous cybercrime network to be found guilty of hacking-related crimes in a US court.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/DC2ee9v8THo” height=”1″ width=”1″ alt=””/>

MalwareBytes Security

A week in security (September 2 – 8)

September 9, 2019 0 Comments A week in security, back to school, back to school cybersecurity, Capital One data breach, china, cyber insurance, deepfake, deepfake for voices, facebook, iphone compromise, Paige Thompson, Ransomware, remote workers, romance scam, scammers, Social engineering, spear phishing, targeted attacks, trickbot, Uyghur Muslims

Credit to Author: Malwarebytes Labs| Date: Mon, 09 Sep 2019 16:01:30 +0000

A roundup of the latest cybersecurity news for the week of September 2 – 8, including TrickBot’s new trick, a social engineering toolkit, and how to keep remote workers safe.

Categories:

A week in security

Tags: back to school back to school cybersecurity Capital One data breach china cyber insurance deepfake deepfake for voices facebook iphone compromise Paige Thompson ransomware remote workers romance scam scammers Social Engineering spear phishing targeted attacks trickbot Uyghur Muslims

(Read more…)

The post A week in security (September 2 – 8) appeared first on Malwarebytes Labs.

MalwareBytes Security

New social engineering toolkit draws inspiration from previous web campaigns

September 3, 2019 0 Comments Domen, eitest, FakeUpdates, hoeflertext, NetSupport, rat, SocGholish, Social engineering

Credit to Author: Jérôme Segura| Date: Tue, 03 Sep 2019 15:15:33 +0000

We discovered a web social engineering toolkit that allows crooks to create fake update notification campaigns on both desktop and mobile in up to 30 different languages.

Categories:

Tags: Domen eitest FakeUpdates hoeflertext NetSupport rat SocGholish Social Engineering

Security Sophos

Report: 53% of social media logins are fraudulent

August 28, 2019 0 Comments account hijacking, Botnet, bots, click farms, data loss, data scraping, holiday scams, logins, scripted attacks, security threats, Social engineering, Social networks, Spam

Credit to Author: Lisa Vaas| Date: Wed, 28 Aug 2019 10:16:32 +0000

Most attacks are from botnets. The goals: spreading spam, stealing data, spreading propaganda, and social-engineering consumers for profit.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/GlHMOtyrs8I” height=”1″ width=”1″ alt=””/>