Researchers unpack massive email scam targeting dozens of companies
When researchers at the cybersecurity firm Sygnia responded earlier this year to a compromised email account at an unnamed company, they stumbled upon a sprawling campaign of business email compromise...
View ArticleResearchers identify high-grade phishing kits attacking nearly 60,000...
A cybercrime group developed and sold phishing software that attackers deployed over the past 10 months in attempts to compromise an estimated 56,000 Microsoft 365 accounts, researchers with Group-IB...
View ArticleLow-level cybercriminals are pouncing on CrowdStrike-connected outage
Five days after a faulty update to CrowdStrike’s Falcon security software hobbled millions of Windows computers around the world, cybercriminals and hacktivist personas are taking advantage of the...
View ArticleIran increases phishing attempts on U.S., Israeli targets
Hackers linked to Iran’s Islamic Revolutionary Guard Corps targeted the Trump and Biden presidential campaigns amid increased phishing attacks against U.S. and Israeli officials and institutions,...
View ArticleMeta deep-sixes WhatsApp accounts tied to Iranian hacking group
Meta security teams blocked “a small cluster” of WhatsApp accounts associated with APT42, an Iranian government-backed group accused by U.S. officials of hacking into the Trump campaign’s email...
View ArticleNigerian man sentenced to 5 years for role in BEC operation
A Nigerian man who pleaded guilty to participating in multiple business email compromise schemes over several years was sentenced to five years in prison Tuesday and ordered to pay nearly $5 million...
View ArticleEuropean, Latin American authorities arrest 17 in crackdown on phishing...
European and Latin American law enforcement arrested 17 suspects in a bust aimed at a criminal phishing network that has claimed nearly half a million victims, Europol said Thursday. Among those...
View ArticleHere’s how attackers are getting around phishing defenses
Hackers are evading natural language processing detection capabilities used to filter out phishing attacks by adding benign text and links, according to data from Egress’ threat intelligence unit...
View ArticleThreat awareness, cloud security, quantum computing among chief agency cyber...
Top federal security and IT officials recently met to discuss 2025 cyber policy priorities, setting an emphasis on sustaining zero trust, building up awareness of threats against agency systems,...
View ArticleMicrosoft seizes websites tied to Egypt-based DIY phishing kit-maker
Microsoft obtained a court order allowing it to seize 240 websites it says are linked to an Egypt-based seller of do-it-yourself phishing kits used to break into the tech giant’s user accounts, the...
View Article