Phishing

60% of enterprises were victims of social engineering attacks in 2016

60% of enterprises were victims of social engineering attacks in 2016

By

Sixty five percent of these social engineering attacks compromised employee credentials and 17 percent of these attacks breached financial accounts.

YouTubers sell phishing kits in plain view

YouTubers sell phishing kits in plain view

By

YouTube appears to be the latest host of cybercrime advertising, as researchers unveil that they've found criminals advertising phishing kits on the video hosting site.

More than 75% of Europeans click on links or open malicious attachments

More than 75% of Europeans click on links or open malicious attachments

By

More than 54 million Europeans have been victimised by online crime in the past year as hackers take advantage of consumer complacency.

UK iPhone users hit by large scale smishing campaign

UK iPhone users hit by large scale smishing campaign

By

As a new wave of smishing - phishing by text message - hits, security experts are urging mobile phone users to report incidents to their communication service providers.

Adult friend finder hacked, 412 million users compromised

Adult friend finder hacked, 412 million users compromised

By

Personal details of more than 412 million subscribers to Adult Friend Finder and other hookup sites was breached.

Study finds malware lurking in Amazon, Google and Groupon cloud services

Study finds malware lurking in Amazon, Google and Groupon cloud services

By

A recent study detected more than 600 cloud repositories hosting malware and other malicious activities on major cloud platforms.

LinkedIn users getting phished to steal IDs

LinkedIn users getting phished to steal IDs

By

A new social engineering campaign is sending out emails purporting to come from LinkedIn in an attempt to dupe recipients into giving up personal information.

CloudFanta campaign suspected of stealing 26K email credentials

By

Researchers spotted a variant of malware campaign dubbed "CloudFanta" which may have been used to steal 26,000 email credentials

ICYMI: NSA, Microsoft, Phishing and FastPOS

ICYMI: NSA, Microsoft, Phishing and FastPOS

By

This week: NSA webcam exploits, Microsoft Exchange, top 5 phishing lures and FastPOS malware

Researchers spot uptick in phishing cyber-attacks leveraging WSF files

By

Symantec researchers noted an uptick in phishing email attacks using malicious WSF attachments to infect users with ransomware.

Top five email phishing attack lures revealed and how to prevent them

By

Phishing remains one of the top threats seen by organisations today. Threat actors use various social engineering tricks to convince users that their requests for information or money transfers are legitimate.

New RAA ransomware variant performs own encryption, attacks businesses

New RAA ransomware variant performs own encryption, attacks businesses

By

The ransomware RAA, which incorporates the information-stealing trojan Pony, has evolved to more effectively target companies, encrypting victims' files and stealing their data, most likely to infect their business contacts via spear-phishing.

Help wanted: Copy editors to clean up French phishing emails

By

A help wanted ad spotted on the French dark web may be an indicator that cyber-criminals are tired of having their phishing scams spoiled due to poor spelling and grammar.

Pokémon Go scammers turn to social media and imitation apps

Pokémon Go scammers turn to social media and imitation apps

By

The popularity of Pokémon Go is continuing to attract scammers looking to exploit users in search of a leg up in the game.

Latest Locky version on the loose

Latest Locky version on the loose

By

A new version of Locky ransomware has been spotted sporting an improved delivery mechanism, better obfuscation which combined make it more difficult for anti-malware scanners to spot.

Brazilians targeted in free Olympic ticket giveaway phishing scam

By

The 2016 Olympics may be winding down, but cyber-criminals are not slacking off in their efforts to use the sporting event as a way to lure victims.

Operation Ghoul attacks terrorise industrial and engineering orgs

By

Kaspersky researchers spotted a wave of attacks that has affected more than 130 organisations in at least 30 countries.

Black Hat Las Vegas: MasterCard workers go "phishing" for malware

Black Hat Las Vegas: MasterCard workers go "phishing" for malware

By

At Black Hat, MasterCard CSO Ron Green touted his company's latest effort to fight malware.

PhishMe codifies ransomware as a formal business model

PhishMe codifies ransomware as a formal business model

By

Steganographic subterfuge: ransomware was already 'a thing', now it's a mature and established business model

Phishing: What makes people click?

Phishing: What makes people click?

Dr Jules Pagna Disso explains why phishing remains one of the most successful forms of attack, and why staff education is key to tackling the problem.

Phishing scam targets Brexit anxiety

By

A cyber-scam has been unfolding in the wake of the Brexit vote.

Liar, liar, email on fire: the security value of lie detecting algorithms

Liar, liar, email on fire: the security value of lie detecting algorithms

By

Researchers have developed a method of identifying linguistic clues in electronic communications that could point to possible cases of deception. Could lie-detecting algorithms reduce the impact of phishing emails?

Bitcoin phishing is easy, nearly risk free and on the rise

Bitcoin phishing is easy, nearly risk free and on the rise

By

Phishing attacks lead to rogue "bulletproof" hosting firm which has a history of hosting malware and other illegal content, researchers claim.

FireEye researchers warn of 'Apple-like phishing domains' aimed at UK users

FireEye researchers warn of 'Apple-like phishing domains' aimed at UK users

By

FireEye researchers observed phony Apple domains registered during the first quarter of 2016 used to execute phishing attacks against Apple iCloud users located in China and the UK.

InfoSec 2016: Mimecast says organisations unsure about cyber insurance

InfoSec 2016: Mimecast says organisations unsure about cyber insurance

By

Mimecast warns organisations relying on cyber insurance: your policies may not be fully up-to-date in covering new social engineering email attacks.

New Locky ransomware campaign sets sights on Amazon customers

By

Amazon customers are the target of a wide-ranging phishing email scam intended to fool recipients into opening up a malicious attachment that results in the downloading of Locky ransomware.

Fraud costs UK £193bn per year, rise in phishing attacks seen

By

Annual fraud losses in the UK could amount to £193 billion, much higher than the government estimate of £50 billion.

ICYMI: Buffer overflow; AI crime-fighter; Banking Trojan; SS7 Flaws; PayPal Phishing

ICYMI: Buffer overflow; AI crime-fighter; Banking Trojan; SS7 Flaws; PayPal Phishing

By

The latest In Case You Missed It (ICYMI) looks at Symantec vulnerability; AI crime-fighter; Banking under threat; Flaws in SS7; PayPal phishing scam

SC Webcasts UK

Sign up to our newsletters

FOLLOW US