Credit to Author: Sushmita Kalashikar| Date: Fri, 22 Nov 2019 13:08:42 +0000
The recent news of Pegasus spyware attack via WhatsApp that targeted lawyers, journalists and human rights activists, offers an astonishing revelation on the kind of havoc such spyware can create. We covered the topic extensively, recently. The frequent media buzz about the recent incident of snooping by Pegasus spyware which…
Read moreCredit to Author: Christopher Boyd| Date: Wed, 20 Nov 2019 16:00:00 +0000
 | |
| Don’t discount deepfakes just yet. We may not be fooled by phony Mark Zuckerberg anymore, but the discovery of a fake LinkedIn profile sporting a deepfake avatar shows how social engineering can deceive through the mundane. Categories: Tags: AIcomputer generateddeepfakesfakeskatie jonesLinkedInmuniraSocial Engineeringstratcom |
The post Deepfakes and LinkedIn: malign interference campaigns appeared first on Malwarebytes Labs.
Read moreCredit to Author: Jovi Umawing| Date: Thu, 07 Nov 2019 21:49:16 +0000
 | |
| Vendor email compromise (VEC) is a new cybersecurity term for a familiar practice, taken to the thousandth degree. Learn the similarities with business email compromise and how your organization can protect against them both. Categories: Tags: account takeoverACIDAgariAgari Cyber Intelligence DivisionATObecbusiness cyberattacksBusiness Email Compromisebusiness threatsNigerian scammerphishingSilent StarlingSocial EngineeringVECvendor email compromise |
The post Not us, YOU: vendor email compromise explained appeared first on Malwarebytes Labs.
Read moreCredit to Author: Anjali Raut| Date: Sat, 02 Nov 2019 12:56:15 +0000
Use of Phishing emails is not new for cyber-attack and is still one of the classic strategies to compromise a victim’s machine. Cyber criminals lure victims to open email attachments (mostly Doc and XLS files) by faking them to look like important one using keywords like invoice, payment, finance, order…
Read moreCredit to Author: Christopher Boyd| Date: Wed, 30 Oct 2019 20:36:21 +0000
 | |
| Scammers will stop at nothing—not even a tragic natural disaster—for a chance to cash in. We offer some helpful tips to avoid disaster donation scams. Categories: Tags: 419419 scamscharitycold call scamscold callsdisasterdonation scamsnatural disasternatural disaster scamnatural disastersphishphishingred crossscammersscammingscamsSocial Engineeringsocial engineering attacks |
The post Help prevent disaster donation scams from causing more misery appeared first on Malwarebytes Labs.
Read moreCredit to Author: Osama Tahir| Date: Fri, 25 Oct 2019 15:37:31 +0000
 | |
| Doxing, or collecting and spreading private information about a user online, is a form of cyber harassment, stalking, and even a potential threat to physical safety. Here’s what you can do to protect yourself against it. Categories: Tags: doxdoxerdoxingIP addressmobile VPNsonline privacypassword managerpersonal datapersonally identifiable informationprivacySocial Engineeringsocial mediavpnVPNsWHOIS |
The post How to protect yourself from doxing appeared first on Malwarebytes Labs.
Read more
Credit to Author: Lisa Vaas| Date: Wed, 16 Oct 2019 10:53:52 +0000
Her accounts were drained in spite of using 2FA, showing that SIM swaps can still circumvent what’s a good security tool.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/QJiDHTqtHDo” height=”1″ width=”1″ alt=””/>
Read moreCredit to Author: Christopher Boyd| Date: Tue, 15 Oct 2019 15:51:50 +0000
 | |
| We take a look at a new anti-phishing feature Instagram hopes will cut down on imitation messages and other social engineering attempts. Categories: Tags: anti-phishinganti-phishing toolemailemails from instagramInstagrammailmalicious emailmalspamphishingphishing scamssafetyscamsSocial Engineeringsocial engineering attackssocial media scams |
The post Instagram clamps down on fake messages with anti-phishing tool appeared first on Malwarebytes Labs.
Read more
Credit to Author: Lisa Vaas| Date: Fri, 13 Sep 2019 10:17:07 +0000
Fedir Oleksiyovich Hladyr is the first member of the infamous cybercrime network to be found guilty of hacking-related crimes in a US court.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/DC2ee9v8THo” height=”1″ width=”1″ alt=””/>
Read moreCredit to Author: Malwarebytes Labs| Date: Mon, 09 Sep 2019 16:01:30 +0000
 | |
| A roundup of the latest cybersecurity news for the week of September 2 – 8, including TrickBot’s new trick, a social engineering toolkit, and how to keep remote workers safe. Categories: Tags: back to schoolback to school cybersecurityCapital One data breachchinacyber insurancedeepfakedeepfake for voicesfacebookiphone compromisePaige Thompsonransomwareremote workersromance scamscammersSocial Engineeringspear phishingtargeted attackstrickbotUyghur Muslims |
The post A week in security (September 2 – 8) appeared first on Malwarebytes Labs.
Read more