You’ve done your due diligence, practice good security hygiene and have the best security tools available. Now, your security posture is strong. But, your plan is only as good as…
Browsing CategoryPhishing
S3 Ep12: A chat with social engineering hacker Rachel Tobac [Podcast]
Lastest episode – listen now! (And please leave us a review if you like what you hear.)
Does a friend “need money urgently”? Check your facts before paying out…
Don’t get scammed by fake online requests to help a friend online. Check your facts first – here’s why.
Naked Security Live – Watch out for Messenger scams
Here’s the latest Naked Security video talk – watch now! (And please share with your friends…)
IBM Uncovers Global Phishing Campaign Targeting the COVID-19 Vaccine Cold Chain
At the onset of the COVID-19 pandemic, IBM Security X-Force created a threat intelligence task force dedicated to tracking down COVID-19 cyber threats against organizations that are keeping the vaccine supply…
Attackers Using Image Inversion Technique to Bypass Office 365 Filtering Mechanism
A creative Office 365 phishing campaign was discovered by WMC Global Analysis researchers that a legitimate login page of a Microsoft Account, but uses color inversion to avoid matching patterns from image recognition software, according to Kim Komando. “As image recognition software is improving and becoming more accurate, this new technique aims to mislead scanning engines […]
The post Attackers Using Image Inversion Technique to Bypass Office 365 Filtering Mechanism appeared first on GBHackers On Security.
Monday review – catch up on our latest articles and videos
Our recent articles and videos, all in one place.
Outlook “mail issues” phishing – don’t fall for this scam!
We deconstruct an email phishing scam in detail so you don’t have to!
Water Nue Phishing Campaign Targets C-Suite’s Office 365 Accounts
A series of ongoing business email compromise (BEC) campaigns that uses spear-phishing schemes on Office 365 accounts has been seen targeting business executives of over 1,000 companies across the world since March 2020. The recent campaigns target senior positions in the United States and Canada.
The fraudsters, whom we named “Water Nue,” primarily target accounts of financial executives to obtain credentials for further financial fraud. The phishing emails redirect users to fake Office 365 login pages. Once the credentials are obtained and accounts are successfully compromised, emails containing invoice documents with tampered banking information are sent to subordinates in an attempt to siphon money through fund transfer requests.
The post Water Nue Phishing Campaign Targets C-Suite’s Office 365 Accounts appeared first on .
6 Ransomware Trends You Should Watch for in 2020
A ransomware infection can have a significant financial impact on an organization. American digital security and data backup firm Datto found that ransomware is costing businesses more than $75 billion…