Spoofing News, Articles and Updates

The how and the why: carrying out a comprehensive DNS audit

Using a piecemeal "set and forget" approach to maintaining your DNS security puts your business at risk of cyber-attack. It is akin to closing the vault door, but not checking that it has actually been locked!

Reddit site spoofed by cyber-criminals to steal credentials of users

Cyber-criminals set up a malicious website that spoofed the original Reddit site and stole login credentials of unsuspecting visitors, yet managed to obtain a valid SSL certificate from a domain registry.

2018 Winter Olympics being used as phishing attack bait

The opening ceremony for the Pyeongchang Winter Olympics in South Korea is still a month away, but cyber-criminals have already started using it as part of their social engineering plans in several phishing attacks.

Mobile credential-stealer uses deep link to mimic Uber app

A credentials-stealing malware program disguised as an Android app was recently found spoofing an Uber user interface, and even leveraging a deep link uniform resource identifier from the ride-sharing app to appear legitimate.

Criminals spoof scanners and printers by the millions to spread malware

Cyber-criminals are spoofing scanners by the millions to launch attacks containing malicious attachments that appear to be coming from the network printer.

Why is the US government lagging behind the UK on DMARC anti-spoofing?

The US government has been criticised by a senator for failing to implement DMARC, a proven tool for curtailing the abuse of email domains by spammers and spoofers.

ICYMI: £77m phish; Czech win; ATM theft; Netflix ransom; Bank squat

In Case You Missed It: Google & Facebook phished; Czechs win exercise; ATM theft; Netflix ransom snub; Bank domains spoofed

Hackers turn to brand-spoofing to trick users into giving up data

Study finds that four in five FTSE 100 companies has potentially malicious domain registrations against them due to brand-spoofing by hackers.

Met Police arrest nine suspects in high-tech banking scam

Detectives were investigating organised crime group said to be responsible for defrauding bank customers across the UK out of £60 million.

Hackers revive Word macro malware in AutoIT RAT attack

Hackers have launched phishing attacks on organisations using legitimate automated management tools, according to Cisco.

Spoofed cellular towers spotted at casino and military base

Femtocells: handy for calls, providing you know who is handling them,,,

Half the internet lacks DNS security extensions

Failure to use domain name system security extensions opens up those TLD users to spoofing