phishing Archives

Artificial Intelligence

The $64k Question: How Does AI Phishing Stack Up Against Human Social Engineers?

The Rise of AI in Phishing: Will future phishing attacks that leverage artificial intelligence be more dangerous?

Kevin TownsendOctober 24, 2023

Email Security

LinkedIn Smart Links Abused in Phishing Campaign Targeting Microsoft Accounts

A recently observed phishing campaign targeting Microsoft accounts is using LinkedIn smart links to bypass defenses.

Ionut ArghireOctober 12, 2023

Phishing

US Executives Targeted in Phishing Attacks Exploiting Flaw in Indeed Job Platform

An open redirection vulnerability in the popular job search platform Indeed has been exploited in a series of phishing attacks.

Ionut ArghireOctober 3, 2023

Malware & Threats

Xenomorph Android Banking Trojan Targeting Users in US, Canada

The Xenomorph Android banking trojan can now mimic financial institutions in the US and Canada and is also targeting crypto wallets.

Ionut ArghireSeptember 26, 2023

Cybercrime

Google Feature Blamed for Retool Breach That Led to Cryptocurrency Firm Hacks

A recently introduced Google account sync feature has been blamed after sophisticated hackers attacked 27 cryptocurrency firms via Retool.

Eduard KovacsSeptember 15, 2023

Phishing

Associated Press Stylebook Users Targeted in Phishing Attack Following Data Breach

Cybercriminals breached an AP Stylebook website and obtained information on customers who were then targeted in phishing attacks.

Eduard KovacsSeptember 11, 2023

Phishing

New Phishing Campaign Launched via Google Looker Studio

Check Point has observed a wave of phishing attacks launched via Google Looker Studio to steal credentials and funds from intended victims.

Ionut ArghireSeptember 8, 2023

Cybercrime

Malicious QR Codes Used in Phishing Attack Targeting US Energy Company

A widespread phishing campaign utilizing malicious QR codes has hit organizations in various industries, including a major energy company in the US.

Ionut ArghireAugust 17, 2023

Email Security

Salesforce Email Service Zero-Day Exploited in Phishing Campaign

Threat actors have exploited a Salesforce email service zero-day vulnerability and abused Meta features in a sophisticated phishing campaign.

Eduard KovacsAugust 3, 2023

Phishing

Google AMP Abused in Phishing Attacks Aimed at Enterprise Users

Threat actors are using Google AMP URLs in phishing campaigns as a new detection evasion tactic.

Ionut ArghireAugust 2, 2023

Phishing

Security Awareness Training Isn’t Working – How Can We Improve It?

Security awareness training isn’t working to the level it needs to. Social engineering, however, is getting better. Why doesn’t awareness training work, and how...

Kevin TownsendJuly 19, 2023

Cybercrime

Threat Actor Abuses SuperMailer for Large-scale Phishing Campaign

A credential phishing campaign using the legitimate SuperMailer newsletter distribution app has doubled in size each month since January 2023.

Kevin TownsendMay 23, 2023

SECURITYWEEK NETWORK:

ICS:

All posts tagged "phishing"

Artificial Intelligence

The $64k Question: How Does AI Phishing Stack Up Against Human Social Engineers?

Email Security

LinkedIn Smart Links Abused in Phishing Campaign Targeting Microsoft Accounts

Phishing

US Executives Targeted in Phishing Attacks Exploiting Flaw in Indeed Job Platform

Malware & Threats

Xenomorph Android Banking Trojan Targeting Users in US, Canada

Cybercrime

Google Feature Blamed for Retool Breach That Led to Cryptocurrency Firm Hacks

Phishing

Associated Press Stylebook Users Targeted in Phishing Attack Following Data Breach

Phishing

New Phishing Campaign Launched via Google Looker Studio

Cybercrime

Malicious QR Codes Used in Phishing Attack Targeting US Energy Company

Email Security

Salesforce Email Service Zero-Day Exploited in Phishing Campaign

Phishing

Google AMP Abused in Phishing Attacks Aimed at Enterprise Users

Phishing

Security Awareness Training Isn’t Working – How Can We Improve It?

Cybercrime

Threat Actor Abuses SuperMailer for Large-scale Phishing Campaign

Featured

Cyberwarfare

ICS at Multiple US Water Facilities Targeted by Hackers Affiliated With Iranian Government

ICS/OT

Breaches by Iran-Affiliated Hackers Spanned Multiple U.S. States, Federal Agencies Say

Cyberwarfare

US Sanctions North Korean Cyberespionage Group Kimsuky

Endpoint Security

Apple Patches WebKit Flaws Exploited on Older iPhones

Ransomware

Qlik Sense Vulnerabilities Exploited in Ransomware Attacks

Identity & Access

Okta Broadens Scope of Data Breach: All Customer Support Users Affected

Vulnerabilities

Google Patches Seventh Chrome Zero-Day of 2023

Latest News

Cloud Security

Top Guns: Defending Corporate Clouds from Malicious Mavericks

Cybercrime

Russian Pleads Guilty to Role in Developing TrickBot Malware

Cybercrime

North Korean Hackers Have Stolen Over $3 Billion in Cryptocurrency: Report

Incident Response

New Relic Says Hackers Accessed Internal Environment Using Stolen Credentials

ICS/OT

Breaches by Iran-Affiliated Hackers Spanned Multiple U.S. States, Federal Agencies Say

ICS/OT

Congressmen Ask DOJ to Investigate Water Utility Hack, Warning It Could Happen Anywhere

Cybercrime

Staples Confirms ‘Cybersecurity Risk’ Disrupting Online Stores