Tag: social-engineering
-
Why every company needs a travel security program
Tags: access, advisory, awareness, business, china, conference, corporate, credentials, cyber, encryption, government, Hardware, infrastructure, intelligence, international, iran, mfa, middle-east, network, password, resilience, risk, risk-assessment, russia, service, social-engineering, strategy, threat, ukraine, vpnGeopolitical flashpoints are multiplying: The war in Ukraine continues to destabilize Europe’s eastern edge. In the Middle East, recent US airstrikes on Iranian nuclear facilities have escalated tensions involving Iran, Israel, and the United States, triggering a worldwide caution advisory and rerouting international air traffic. Demonstrations targeting Western business interests are growing in scale and…
-
Scattered Spider crime spree takes flight as focus turns to aviation sector
Time ticking for defenders as social engineering pros weave wider web First seen on theregister.com Jump to article: www.theregister.com/2025/06/30/scattered_spider_aviation/
-
Scattered Spider nimmt Luftfahrtbranche ins Visier
Tags: cyberattack, cybersecurity, finance, hacker, mandiant, mfa, network, password, phishing, ransomware, service, social-engineering, tool, vulnerabilityScattered Spider nutzt Social Engineering statt Brute Force um sich Zugang zu verschaffen.Die Cybersecurity-Anbieter Mandiant und Palo Alto Networks sowie das FBI warnen vor zunehmenden Cyberangriffen der Hackergruppe ‘Scattered Spider” auf den Luftfahrtsektor. Einen Name machte sich die Bande bereits unter anderem durch Angriffe auf die großen britischen Einzelhändler Marks&Spencer, Harrods sowie Co-op. Das FBI…
-
Scattered Spider shifts focus to airlines with strikes on Hawaiian and WestJet
Tags: attack, authentication, breach, business, cisa, corporate, credentials, cybersecurity, data, data-breach, government, group, hacker, identity, india, mfa, microsoft, network, password, phone, ransom, ransomware, social-engineering, supply-chain, tactics, unauthorized, vulnerabilitySophisticated help desk deception campaigns: The group has perfected calling corporate help desks and impersonating employees to trick support staff into resetting passwords and adding unauthorized devices to multi-factor authentication systems.Cybercrime syndicates like Scattered Spider operate as compartmentalized organizations, with distinct teams specializing in different attack phases, said Sunil Varkey, advisor at Beagle Security. “One…
-
Scattered Spider Targets Tech Companies with Phishing Frameworks like Evilginx and Social Engineering Tactics
Tags: credentials, cyber, finance, framework, group, hacking, phishing, social-engineering, tactics, technology, threatThe notorious hacking collective Scattered Spider, also known as UNC3944 or Octo Tempest, has emerged as a formidable threat to high-value industries, with a particular focus on technology, finance, and retail sectors. Recent research reveals that 81% of the group’s registered domains impersonate technology vendors, aiming to harvest credentials from high-value targets such as system…
-
Cybercriminals take malicious AI to the next level
Tags: ai, automation, breach, chatgpt, cisco, control, credit-card, cybercrime, cybersecurity, dark-web, data, deep-fake, defense, finance, fraud, group, hacking, intelligence, LLM, malicious, marketplace, monitoring, phishing, service, social-engineering, strategy, tactics, threat, tool, vulnerabilityCustom face generation for dating scamsAudio spoofing for voice verification fraudOn-demand video avatars that lip-sync based on customer-submitted scriptsThese services are increasingly offered with add-ons such as pre-loaded backstories,matching fake documents, and automated scheduling for calls. Prompt engineering as a service: Underground communities have also emerged around the art of crafting jailbreak prompts.These “bypass builders”…
-
The FBI warns that Scattered Spider is now targeting the airline sector
The FBI warns that Scattered Spider is now targeting the airline sector. Feds are working with aviation partners to combat the threat and assist affected victims. The FBI reports that the cybercrime group Scattered Spider is now targeting the airline sector. The cybercriminals are using social engineering techniques to gain access to target organizations by…
-
FBI Warns of Scattered Spider’s Expanding Attacks on Airlines Using Social Engineering
The U.S. Federal Bureau of Investigation (FBI) has revealed that it has observed the notorious cybercrime group Scattered Spider broadening its targeting footprint to strike the airline sector.To that end, the agency said it’s actively working with aviation and industry partners to combat the activity and help victims.”These actors rely on social engineering techniques, often…
-
Beware of Trending TikTok Videos Promoting Pirated Apps That Deliver Stealer Malware
Tags: ai, attack, cyber, malicious, malware, microsoft, powershell, social-engineering, software, windowsA sophisticated social engineering campaign has surfaced on TikTok, leveraging the platform’s massive user base and algorithmic reach to distribute information-stealing malware, specifically Vidar and StealC. Identified by Trend Research, this attack uses potentially AI-generated videos to deceive users into executing malicious PowerShell commands under the guise of activating pirated software like Windows OS, Microsoft…
-
ClickFix Attacks Soar by 500%: Hackers Intensify Use of This Manipulative Technique to Deceive Users
A novel social engineering technique dubbed >>ClickFix
-
Money mule networks evolve into hierarchical, business-like criminal enterprises
In this Help Net Security interview, Michal Tresner, CEO of ThreatMark, discusses how cybercriminals are weaponizing AI, automation, and social engineering to industrialize … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/06/27/michal-tresner-threatmark-money-mule-networks/
-
Why Are CISOs Prioritizing Snowflake Security? The Breach Playbook Has Changed.
In recent conversations with prospective customers, one request keeps rising to the top: “Can you monitor Snowflake?” At first, it felt like a coincidence. But over multiple engagements, that urgency isn’t random it reflects a deeper industry concern. Security leaders are increasingly prioritizing Snowflake as a high-risk, high-value SaaS application. And they’re right to. The…
-
New FileFix Method Emerges as a Threat Following 517% Rise in ClickFix Attacks
The ClickFix social engineering tactic as an initial access vector using fake CAPTCHA verifications increased by 517% between the second half of 2024 and the first half of this year, according to data from ESET.”The list of threats that ClickFix attacks lead to is growing by the day, including infostealers, ransomware, remote access trojans, cryptominers,…
-
ClickFix Attacks Surge 517% in 2025
The ClickFix social engineering technique has become the second most common attack vector, behind only phishing, according to ESET research First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/clickfix-attacks-surge-2025/
-
New FileFix Exploit Uses Windows File Explorer to Run Malicious Commands
A newly discovered exploit, dubbed >>FileFix,
-
New FileFix attack weaponizes Windows File Explorer for stealthy commands
A cybersecurity researcher has developed FileFix, a variant of the ClickFix social engineering attack that tricks users into executing malicious commands via the File Explorer address bar in Windows. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/filefix-attack-weaponizes-windows-file-explorer-for-stealthy-powershell-commands/
-
FileFix attack weaponizes Windows File Explorer for stealthy commands
A cybersecurity researcher has developed FileFix, a variant of the ClickFix social engineering attack that tricks users into executing malicious commands via the File Explorer address bar in Windows. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/filefix-attack-weaponizes-windows-file-explorer-for-stealthy-powershell-commands/
-
Aflac-Datenleck: Versicherungsbranche im Visier von Hackern
Hinter dem Angriff auf Aflac könnte die berüchtigte Cyberbande Scattered Spider stecken. Experten zufolge hat sie es inzwischen vermehrt auf Versicherungsunternehmen abgesehen.Der US-Versicherungsanbieter Aflac entdeckte am 12. Juni verdächtige Aktivitäten in seinem Netzwerk. Auch wenn der Angriff nach eigenen Angaben innerhalb weniger Stunden gestoppt werden konnte, sind dadurch potenziell Kundendaten gefährdet.So könnten die Täter an…
-
Social engineering and Signal chats led to new Russian malware attacks, Ukraine says
Tags: attack, blizzard, cybersecurity, government, group, malware, russia, social-engineering, ukraineUkraine’s cybersecurity agency said the Russian group tracked as APT28, Fancy Bear or Forest Blizzard was responsible for targeting new malware strains at government officials. First seen on therecord.media Jump to article: therecord.media/ukraine-new-russian-malware-social-engineering-signal-chats
-
North Korean Hackers Use Malicious Zoom Apps to Execute System-Takeover Attacks
Tags: attack, cyber, cybersecurity, hacker, malicious, north-korea, scam, social-engineering, threatCybersecurity researchers and targeted individuals have reported a highly sophisticated scam orchestrated by suspected North Korean hackers. This attack, disguised as a legitimate Zoom meeting, leverages advanced social engineering techniques to trick professionals into compromising their systems. The campaign, which surfaced recently, highlights the growing audacity and technical prowess of state-sponsored threat actors aiming to…
-
OpenAI Used Globally for Attacks FireTail Blog
Jun 23, 2025 – – In 2025, virtually no one is a stranger to OpenAI’s ChatGPT. It is one of the most popular AI applications on the Internet, and almost everyone is using it from your boss, to your neighbor, to the passive-aggressive friend sending you oddly phrased text messages.But since it is relatively new,…
-
BlueNoroff Hackers Exploit Zoom App to Deploy Infostealer Malware in Targeted Attacks
The Field Effect Analysis team has uncovered a targeted social engineering campaign orchestrated by the North Korean state-sponsored threat actor BlueNoroff, a financially motivated subgroup of the notorious Lazarus Group. A Canadian online gambling provider fell victim to a meticulously crafted attack involving impersonation of a trusted contact and the Zoom platform. Sophisticated Social Engineering…
-
71% of new hires click on phishing emails within 3 months
New hires are more likely to fall for phishing attacks and social engineering than longer-term employees, especially in their first 90 days, according to Keepnet. Why new … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/06/23/new-hire-phishing-risk/
-
Russian hackers bypass Gmail MFA using stolen app passwords
Russian hackers bypass multi-factor authentication and access Gmail accounts by leveraging app-specific passwords in advanced social engineering attacks that impersonate U.S. Department of State officials. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/russian-hackers-bypass-gmail-mfa-using-stolen-app-passwords/
-
Aflac Discloses Cybersecurity Incident, Customer Data Potentially Exposed Amid Industry-Wide Attacks
Aflac confirms a cyberattack exposed sensitive customer data, citing social engineering tactics amid a wave of breaches targeting US insurers. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/news/aflac-cyber-security-incident-2025/
-
Mocha Manakin Uses PasteRun Technique to Deceive Users into Downloading Malware
A malicious campaign tracked as Mocha Manakin has been identified employing the deceptive >>paste-and-run
-
Cybersecurity Snapshot: Tenable Report Spotlights Cloud Exposures, as Google Catches Pro-Russia Hackers Impersonating Feds
Tags: access, advisory, ai, api, apple, attack, authentication, best-practice, business, cisa, cisco, cloud, conference, container, control, credentials, cve, cyber, cybersecurity, data, data-breach, detection, email, encryption, endpoint, exploit, google, governance, government, group, guide, hacker, Hardware, identity, infrastructure, intelligence, Internet, kubernetes, linux, macOS, microsoft, mitigation, mobile, monitoring, network, oracle, password, phishing, ransomware, risk, russia, service, social-engineering, software, sql, strategy, tactics, technology, threat, tool, update, vmware, vulnerability, windowsCheck out highlights from Tenable’s “2025 Cloud Security Risk Report,” which delves into the critical risk from insecure cloud configurations. Plus, Google reveals a Russia-sponsored social engineering campaign that targeted prominent academics’ Gmail accounts. And get the latest on AI system security, just-in-time access, CIS Benchmarks and more! Dive into six things that are top…
-
Aflac duped by social-engineering attack, marking another hit on insurance industry
Three insurance companies have publicly disclosed cyberattacks in the past week. Scattered Spider, an amorphous band of cybercriminals, has been actively targeting the sector. First seen on cyberscoop.com Jump to article: cyberscoop.com/aflac-cyberattack-insurance-sector-scattered-spider/
-
Hackers Use Social Engineering to Target Expert on Russian Operations
Citizen Lab and Google uncovered a new, sophisticated cyberattack linked to Russian state actors that exploits App-Specific Passwords, bypassing Multi-Factor Authentication. Discover how to protect yourself from these evolving threats. First seen on hackread.com Jump to article: hackread.com/hackers-use-social-engineering-expert-russian-operations/
-
Chain IQ data theft highlights need to oversee third party suppliers
Tags: access, attack, awareness, breach, ceo, ciso, corporate, data, data-breach, detection, extortion, finance, governance, group, intelligence, international, jobs, law, monitoring, phishing, ransomware, risk, risk-management, service, social-engineering, supply-chain, tactics, theft, threatCSO attempted to contact Chain IQ and UBS for comment, but was unable to reach a spokesperson for either by publication time. What should be of note to CSOs is that this is another example of an attack on a third party supplier that impacts its customers.”Chain IQ’s breach serves as yet another reminder that…

