Malicious actors have a history of trying to compromise users’ Office 365 accounts. By doing so, they can tunnel into a network and use their access to steal sensitive information.…
Browsing CategoryPhishing Attack
How to Avoid Smishing Attacks Targeting Subscription Service Users
If you’re anything like me, you used delivery more during the pandemic than before. Both getting food brought to my door and meal kit boxes mean people don’t have to…
Why a Phishing Attack Is Still Profitable — And How To Stop One
As the business world continues to grapple with an expanding definition of new normal, the phishing attack remains a common tactic for attackers. Why are phishing attacks still happening? How…
Educating the Educators: Protecting Student Data
I found my 17-year-old son happily playing video games last year when he was supposed to be in virtual school. But after a few questions, I learned he wasn’t skipping…
Hackers Launch Cyberattack via U.S. Aid Agency Email Accounts
Microsoft announced a Russian threat group (ITG05, aka Nobellium, APT28) also thought to be behind the SolarWinds attack conducted an email campaign masquerading as the U.S. Agency for International Development.…
An Update: The COVID-19 Vaccine’s Global Cold Chain Continues to Be a Target
In December 2020, IBM Security X-Force released a research blog disclosing that the COVID-19 cold chain — an integral part of delivering and storing COVID-19 vaccines at safe temperatures —…
Beware of Zoom Phishing Campaign that Threatens Employees Contracts will be Suspended or Terminated
A new zoom phishing campaign observed asking recipients to join a zoom meeting that threatens employees that their contracts will be either suspended or terminated. The recipients are presented with…
16Shop – Malware-as-a-service Phishing Toolkit Attack PayPal Users With Anti-Detection Techniques
A prolific phishing kit distribution network dubbed “16Shop” believed to be active since 2018 and developed by a hacking group called the “Indonesian Cyber Army.” It’s a huge first attack…
Over 100,000 Phishing Sites With Valid TLS Certificate to Attack Online Shoppers
Cybercriminals registered more than 100,000 look-alike domains that closely mimic the legitimate websites of popular retail websites. As the growth of e-commerce increases year after year attackers tend to register…
Cyber Police Seized Bot Farm that used to Send Large Scale Spam Emails
Cyber police seized a huge bot farm that used to send large scale spam through various services such as email and social media. The investigation was carried out by Ukraine…