Threat actors are now employing WeTransfer to spread the Lampion malware in bigger quantities as part of their phishing efforts. WeTransfer is a legitimate…
phishing emails
General
Use of Amex and Snapchat websites in Microsoft 365 Phishing Campaigns
In a series of phishing efforts to obtain Microsoft 365 login information, attackers took advantage of open redirection on the American Express and Snapchat…
General
Attackers Employ AiTM Phishing Sites As An Entry Point To Further Financial Fraud, From Cookie Theft To BEC
Even if a user has activated multifactor authentication, a large-scale phishing campaign using adversary-in-the-middle (AiTM) phishing sites managed to steal passwords, take over a…
General
OpenSea reveals data breach; It warns users of phishing attacks
OpenSea, the most significant non-fungible token (NFT) marketplace, revealed a data breach; it warned users of phishing attacks. The NFT marketplace says more than…
General
Evasive phishing employs reverse tunnels and URL shortening services
Researchers are seeing an increase in the use of reverse tunnel services, as well as URL shorteners, for large-scale phishing campaigns, making the malicious…
General
Crypto Phishing Scam carried out as a result of a breach in Mailchimp’s system
On Monday, Mailchimp, an email marketing service, disclosed a data breach that compromised an internal tool, and the tool was used for unauthorised access…
General
LinkedIn phishing scam soars—an increase of 232%—since February
Egress, a cybersecurity firm, reports a rise in Phishing attacks imitating LinkedIn emails, and since February, such attacks have increased 232%. The company stated…
Cybersecurity
Outlook new One-click button eases employees to report the scam emails
For all Outlook using employees across the UK, detailing dubious mails to the National Cyber Security Center (NCSC) has never been simpler. With an…
Cybersecurity
Nobelium Hackers Phishing Campaign Pretended as USAID; Microsoft
In the latest Microsoft research, it has been reported that following the USAID email account hacking incident, nation-backed Russian threat group Nobelium is now…
Cybersecurity
New Downloader Malware “Saint Bot” Is Spreading Via Emails
A new malware downloader has been discovered by researchers that are using phishing attacks to advance credential infiltrators and other malicious payload malware. The…