Tag: phishing
-
Signal Phishing Campaign Targets German Officials in Suspected Russian Operation
Suspected Russian phishing via Signal targeted German officials, exploiting trust to access accounts and sensitive political communications. A new wave of cyber operations targeting European political leadership is once again highlighting how modern espionage increasingly relies on deception rather than technical exploits. Recent investigations by German authorities point to a large-scale phishing campaign conducted via…
-
Signal Phishing Campaign Targets German Officials in Suspected Russian Operation
Suspected Russian phishing via Signal targeted German officials, exploiting trust to access accounts and sensitive political communications. A new wave of cyber operations targeting European political leadership is once again highlighting how modern espionage increasingly relies on deception rather than technical exploits. Recent investigations by German authorities point to a large-scale phishing campaign conducted via…
-
Signal Phishing Campaign Targets German Officials in Suspected Russian Operation
Suspected Russian phishing via Signal targeted German officials, exploiting trust to access accounts and sensitive political communications. A new wave of cyber operations targeting European political leadership is once again highlighting how modern espionage increasingly relies on deception rather than technical exploits. Recent investigations by German authorities point to a large-scale phishing campaign conducted via…
-
Critical Cursor bug could turn routine Git into RCE
Tags: ai, attack, cvss, flaw, malicious, nvd, penetration-testing, phishing, rce, remote-code-executionExpanded attack surface with agentic IDEs: Novee warned that while traditional IDEs are passive, doing what developers explicitly tell them to do, Cursor’s AI agent interprets intent and autonomously decides which commands to run, which includes Git operations. And that’s where the problem lies.”In traditional pentesting, ‘client-side’ attacks targeting developer machines have always been a…
-
Chinese-Backed Smishing Rings Scale Credential Theft via SMS and OTT Apps
Chinese-language phishing-as-a-service (PhaaS) platforms are rapidly expanding their global reach by leveraging SMS and over-the-top (OTT) messaging channels such as iMessage and Rich Communication Services (RCS). Over the past several months, researchers have conducted large-scale analysis to identify and track some of the most active Chinese-backed phishing ecosystems. Their findings reveal highly organized operations that…
-
What CISOs need to get right as identity enters the agentic era
Tags: access, ai, ciso, conference, control, credentials, cybersecurity, defense, governance, identity, jobs, least-privilege, malicious, mfa, monitoring, phishing, risk, technology, toolWilcox and Adams are speaking at the CSO Cybersecurity Awards & Conference, May 1113. Reserve your place.As a result, Adams says CISOs will increasingly need to adopt an identity-centric security architecture and there are several key tenets to consider.Build a strong foundation before layering on complexity. The instinct when modernizing an identity program, says Adams, is…
-
Stopping AiTM attacks: The defenses that actually work after authentication succeeds
Tags: 2fa, access, attack, authentication, awareness, breach, communications, compliance, control, credentials, data, defense, detection, email, finance, framework, identity, incident response, login, mfa, microsoft, monitoring, nist, passkey, phishing, risk, service, threat, tool, trainingThe 3 controls that close the gap: Control #1: Bind sessions to managed devices The most impactful single control for session security is requiring managed, compliant devices as a condition of accessing sensitive resources. When access policies, such as Microsoft Entra Conditional Access, require that the device presenting a session token is enrolled, managed and…
-
Sandworm Uses SSH-over-Tor Tunnel for Stealthy Long-Term Persistence
A significant evolution in Sandworm (APT-C-13) tradecraft, revealing the group’s use of SSH-over-Tor tunneling to achieve long-term, covert persistence inside targeted networks. Sandworm, also known as FROZENBARENTS, is a state-sponsored threat group active since 2014. It has consistently targeted government bodies, energy firms, and research institutions, focusing on intelligence collection. The attack begins with spear-phishing…
-
Open-source IPFire DNS Firewall blocks malware and phishing at the resolver
The IPFire project shipped Core Update 201 for its 2.29 release line, bringing DNS-layer domain blocking into the open-source firewall distribution. The update replaces two … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/04/28/open-source-ipfire-dns-firewall/
-
Open-source IPFire DNS Firewall blocks malware and phishing at the resolver
The IPFire project shipped Core Update 201 for its 2.29 release line, bringing DNS-layer domain blocking into the open-source firewall distribution. The update replaces two … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/04/28/open-source-ipfire-dns-firewall/
-
North Korean Hackers Target Crypto Firms with ClickFix and AI-Made Zoom Lures
Arctic Wolf attributed this large-scale spear-phishing campaign to BlueNoroff, a financially motivated subgroup of the Lazarus Group First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/bluenoroff-dprk-hackers-target/
-
Messenger: Signal plant Schutzfunktionen gegen Phishing-Angriffe
Obwohl Signal für die Phishing-Angriffe keine Schuld trifft, soll der Schutz vor solchen Attacken verbessert werden. Es gibt eine Empfehlung. First seen on golem.de Jump to article: www.golem.de/news/messenger-signal-plant-schutzfunktionen-gegen-phishing-angriffe-2604-208072.html
-
Nach Signal-Phishing: Bundestag forciert Umstieg auf Wire
Tags: phishingSeit 2020 testen Bundesbehörden den Messenger Wire. Nun könnte der Deutsche Bundestag diesen nutzen und Dienste wie Signal untersagen. First seen on golem.de Jump to article: www.golem.de/news/nach-signal-phishing-bundestag-forciert-umstieg-auf-wire-2604-208070.html
-
Robinhood account creation flaw abused to send phishing emails
Online trading platform Robinhood’s account creation process was exploited by threat actors to inject phishing messages into legitimate emails, tricking users into believing their accounts had suspicious activity. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/robinhood-account-creation-flaw-abused-to-send-phishing-emails/
-
Canada arrests three for operating “SMS blaster” device in Toronto
Tags: phishingCanadian authorities have arrested three men for operating an “SMS blaster” device that pretends to be a cellular tower to send phishing texts to nearby phones. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/canada-arrests-three-for-operating-sms-blaster-device-in-toronto/
-
Cyber crooks got Robinhood to send phishing emails to its own users
An email phishing campaign is currently targeting a subset of users of the Robinhood brokerage / investment platform and, judging by the comments on Reddit, some have fallen … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/04/27/robinhood-phishing-email-campaign/
-
Signal-Phishing: Bundesregierung vermutet Russland hinter Spähkampagne
Die Regierung gibt bislang wenig Details zu den Phishing-Angriffen auf Spitzenpolitiker bekannt. Mit Kryptohandys wäre das nicht möglich. First seen on golem.de Jump to article: www.golem.de/news/signal-phishing-bundesregierung-vermutet-russland-hinter-spaehkampagne-2604-208059.html
-
Chinese spy posed as researcher in spear-phishing campaign targeting NASA to steal defense software
A Chinese national posed as a U.S. researcher, tricking NASA staff in a phishing campaign to steal sensitive data tied to defense software and exports. A Chinese national ran a spear-phishing campaign by posing as a U.S. researcher and tricked NASA employees into sharing sensitive information. The NASA Office of Inspector General (OIG) and federal…
-
New Malware Hides Behind Obfuscation and Staged Payloads
A newly identified malware campaign is leveraging advanced obfuscation techniques and multi-stage payload delivery to bypass traditional security defenses, according to recent analysis from Joe Sandbox. The attack begins with a highly targeted spear-phishing email sent to employees of the Punjab Safe Cities Authority (PSCA) and PPIC3 in Pakistan. The email impersonates an internal consultant…
-
Fake Income Tax Notices Used to Spread Malware
Cybercriminals are exploiting India’s tax season by launching sophisticated phishing campaigns that impersonate the Income Tax Department to deliver dangerous malware to unsuspecting taxpayers. The malicious operation uses fake assessment notices and tax compliance warnings to trick victims into downloading malware-laden files that grant attackers persistent access to compromised systems. The phishing campaign, which has…
-
FBI, Indonesian Authorities Team to Take Down Site Ripping Off Users for Millions
Phishing still hooks users around the world and coaxes them to hand over credentials. But on occasion the good guys take them down, like the FBI in collaboration with Indonesian law enforcement did with W3LLStore marketplace. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/04/fbi-indonesian-authorities-team-to-take-down-site-ripping-off-users-for-millions/
-
FBI, Indonesian Authorities Team to Take Down Site Ripping Off Users for Millions
Phishing still hooks users around the world and coaxes them to hand over credentials. But on occasion the good guys take them down, like the FBI in collaboration with Indonesian law enforcement did with W3LLStore marketplace. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/04/fbi-indonesian-authorities-team-to-take-down-site-ripping-off-users-for-millions/
-
ClickFix Attack Swaps PowerShell for Cmdkey, Remote Regsvr32 Payloads
A newly identified ClickFix attack variant is raising concerns among cybersecurity researchers after it was observed replacing traditional PowerShell-based delivery with a stealthier technique leveraging native Windows utilities. The infection begins with a familiar ClickFix tactic: a phishing page disguised as a CAPTCHA verification prompt. Victims are instructed to press Win + R, paste a…
-
ESicherheit: Schutz erhöhen interne IT entlasten
E-Mail-Sicherheit für Unternehmen: Weniger Phishing, weniger interne Tickets, mehr Kontrolle. E-Mails zählen zu den wichtigsten Angriffswegen für Cyberkriminelle. Für IT-Leiter und CIOs steht viel auf dem Spiel: Phishing, Schadsoftware und schädliche Anhänge bedrohen den Betrieb, binden Ressourcen und erhöhen das Risiko für Ausfälle. In vielen Unternehmen zeigt sich dasselbe Bild. Die bestehende E-Mail-Sicherheit ist… First…
-
Multi-Actor Intrusion: Wenn nicht einer, sondern zwei Angreifer im Netzwerk wirken
Tags: phishingEin Phishing-Vorfall, ein kompromittiertes Postfach und plötzlich zwei völlig unabhängige Angreifer mit unterschiedlichen Zielen. Was nach einem Ausnahmefall klingt, könnte ein wachsender Trend sein: Multi-Actor Intrusion-Angriffe. First seen on it-daily.net Jump to article: www.it-daily.net/it-sicherheit/cybercrime/multi-actor-intrusion
-
LLM prägt das Zusammenspiel von Analyse, Automatisierung und Nutzerverhalten neu KIverändert ESicherheit und Awareness
Generative künstliche Intelligenz entwickelt sich rasant zu einem bestimmenden Faktor der Cybersicherheit. Während Angreifer Sprachmodelle nutzen, um täuschend echte Phishing-Nachrichten in großer Zahl zu erzeugen, reagieren Sicherheitsanbieter mit neuen Analyseverfahren, automatisierter Kontextbewertung und verhaltensorientierten Schulungskonzepten. First seen on ap-verlag.de Jump to article: ap-verlag.de/llm-praegt-das-zusammenspiel-von-analyse-automatisierung-und-nutzerverhalten-neu-ki-veraendert-e-mail-sicherheit-und-awareness/104105/
-
Phishing-Bedrohung: Geopolitische Krisen als Aufhänger für Hacker-Attacken
First seen on datensicherheit.de Jump to article: www.datensicherheit.de/phishing-bedrohung-geopolitik-krisen-aufhaenger-hacker-attacken
-
Best of the Worst: Five Attacks That Looked Broken (and Worked)
<div cla I skipped last week’s roundup. Holiday weekend, family stuff, the usual. So this is a two-week-ish view of what we’ve published in the Threat Intelligence series since Edition 03 dropped on April 13. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/04/best-of-the-worst-five-attacks-that-looked-broken-and-worked/
-
Best of the Worst: Five Attacks That Looked Broken (and Worked)
<div cla I skipped last week’s roundup. Holiday weekend, family stuff, the usual. So this is a two-week-ish view of what we’ve published in the Threat Intelligence series since Edition 03 dropped on April 13. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/04/best-of-the-worst-five-attacks-that-looked-broken-and-worked/
-
Wenn das Konto zur Zielscheibe wird: Kartenbetrug und Phishing boomen
Tags: phishingFirst seen on t3n.de Jump to article: t3n.de/news/wenn-das-konto-zur-zielscheibe-wird-kartenbetrug-und-phishing-boomen-1739592/