Tag: social-engineering
-
Russian APT29 Exploits Gmail App Passwords to Bypass 2FA in Targeted Phishing Campaign
Threat actors with suspected ties to Russia have been observed taking advantage of a Google account feature called application specific passwords (or app passwords) as part of a novel social engineering tactic designed to gain access to victims’ emails.Details of the highly targeted campaign were disclosed by Google Threat Intelligence Group (GTIG) and the Citizen…
-
Scattered Spider Aims at US Insurers After UK Retail Hit, Google Warns
Scattered Spider targets US insurance firms after UK retail attacks, using social engineering to breach help desks and disrupt services, Google warns. First seen on hackread.com Jump to article: hackread.com/scattered-spider-us-insurers-uk-retail-hit-google/
-
What Is Social Engineering? A Guide for K12 School Leaders
Understanding the Human Side of Cyberattacks”, and Why Schools Need Stronger Protection Cybersecurity in schools isn’t just about firewalls and software anymore. One of the most effective”, and dangerous”, threats school districts face today doesn’t start with malware. It starts with a carefully timed and crafted message. It’s called social engineering, and it’s now one…
-
News alert: Arsen launches AI-powered vishing simulation to help combat voice phishing at scale
Paris, Jun. 3, 2025, CyberNewswireArsen, the cybersecurity startup known for defending organizations against social engineering threats, has announced the release of its new Vishing Simulation module, a cutting-edge tool designed to train employees against one of the fastest-growing… (more”¦) First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/06/news-alert-arsen-launches-ai-powered-vishing-simulation-to-help-combat-voice-phishing-at-scale/
-
Cybersecurity Snapshot: NIST Offers Zero Trust Implementation Advice, While OpenAI Shares ChatGPT Misuse Incidents
Tags: access, ai, attack, best-practice, breach, chatgpt, china, cloud, computer, computing, control, credentials, crime, cyber, cybercrime, cybersecurity, dark-web, data, deep-fake, defense, detection, encryption, endpoint, exploit, finance, fraud, government, guide, Hardware, identity, infrastructure, intelligence, Internet, iot, korea, law, least-privilege, linkedin, malicious, malware, military, ml, mobile, monitoring, network, nist, north-korea, openai, phishing, phone, programming, ransomware, risk, russia, scam, service, social-engineering, software, supply-chain, technology, theft, threat, tool, update, vulnerability, zero-trustCheck out NIST best practices for adopting a zero trust architecture. Plus, learn how OpenAI disrupted various attempts to abuse ChatGPT. In addition, find out what Tenable webinar attendees said about their exposure management experiences. And get the latest on cyber crime trends, a new cybersecurity executive order and more! Dive into six things that…
-
Arsen Launches AI-Powered Vishing Simulation to Help Organizations Combat Voice Phishing at Scale
Arsen, the cybersecurity startup known for defending organizations against social engineering threats, has announced the release of its new Vishing Simulation module, a cutting-edge tool designed to train employees against one of the fastest-growing attack vectors: voice phishing (vishing). This new module usesAI-generated voices and adaptive dialogue systemsto simulate live phone-based social engineering attacks, such as […]…
-
Neue Taktik der 3AMGruppe: Virtuelle Maschine als Tarnkappe
Sophos X-Ops hat eine Ransomware-Angriffswelle analysiert, bei der die Cybercrime-Gruppe ‘3AM” bewährte Social-Engineering-Methoden sowie die Nutzung legitimer Fernwartungstools mit einer technischen Neuerung kombiniert: Den Einsatz einer versteckten virtuellen Maschine, um verdeckt Zugriff auf das Unternehmensnetzwerk zu erlangen unter Umgehung klassischer Endpunktschutzlösungen. Im ersten Quartal 2025 betreute das Sophos X-Ops-Team ein Unternehmen, das einen solchen Angriff First…
-
KnowBe4 warnt vor neuer Welle des Credential Harvesting
Die Angreifer setzen auf täuschend echt gestaltete E-Mails und manipulierte Webseiten, um an vertrauliche Zugangsdaten zu gelangen. Hinter den Angriffen steckt ausgeklügeltes Social Engineering also der Versuch, Menschen psychologisch zu beeinflussen und zu überlisten, um an sensible Informationen zu kommen. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/knowbe4-warnt-vor-neuer-welle-des-credential-harvesting/a41125/
-
Virtuelle Tarnkappe: Ransomware unter dem Radar
Eine virtuelle Maschine als Einfallstor, Social Engineering am Telefon und legitime Fernwartungstools: Die Cybercrime-Gruppe 3AM hat ihre Methoden weiterentwickelt. In der neuen Angriffswelle trifft technische Raffinesse auf psychologische Manipulation mit erschreckendem Erfolg. First seen on itsicherheit-online.com Jump to article: www.itsicherheit-online.com/news/security-management/virtuelle-tarnkappe-ransomware-unter-dem-radar/
-
Why Threat Agents Must be Included in Cybersecurity Risk Assessments
Tags: access, attack, business, compliance, control, cyber, cybercrime, cybersecurity, data, defense, detection, espionage, finance, group, incident, intelligence, risk, risk-assessment, risk-management, social-engineering, strategy, tactics, theft, threat, tool, update, vulnerabilityIn the ever-evolving landscape of cybersecurity, organizations face a constant struggle: how to best allocate limited resources to maximize their defensive posture. No one has enough budget, personnel, or tools to defend against every conceivable threat. When effort is misapplied to low-risk areas, higher-risk areas are left exposed. This inefficiency can prove disastrous. Risk management…
-
Microsoft’s June 2025 Patch Tuesday Addresses 65 CVEs (CVE-2025-33053)
Tags: access, advisory, apt, attack, authentication, best-practice, business, control, cve, espionage, exploit, group, malicious, microsoft, office, rce, remote-code-execution, service, social-engineering, update, vulnerability, windows, zero-day9Critical 56Important 0Moderate 0Low Microsoft addresses 65 CVEs, including two zero-day vulnerabilities, with one being exploited in the wild. Microsoft addresses 65 CVEs in its June 2025 Patch Tuesday release, with nine rated critical, and 56 rated as important. Our counts omitted one vulnerability reported by CERT CC. This month’s update includes patches for: .NET…
-
FIN6 hackers pose as job seekers to backdoor recruiters’ devices
In a twist on typical hiring-related social engineering attacks, the FIN6 hacking group impersonates job seekers to target recruiters, using convincing resumes and phishing sites to deliver malware. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/fin6-hackers-pose-as-job-seekers-to-backdoor-recruiters-devices/
-
Why Traditional Email Filters Aren’t Enough to Stop Phishing in K12
How to stop phishing in K-12 using artificial intelligence Phishing is one of the most common”, and most damaging”, cybersecurity threats facing K12 schools today. And yet, many districts still rely on basic, built-in email filters as their primary line of defense. These tools simply aren’t built to handle the sophisticated, social engineering threats schools…
-
OpenAI Bans ChatGPT Accounts Linked to Nation-State Threat Actors
The AI company’s investigative team found that many accounts were using the program to engage in malicious activity around the world, such as employment schemes, social engineering, and cyber espionage. First seen on darkreading.com Jump to article: www.darkreading.com/threat-intelligence/openai-bans-chatgpt-accounts-nation-state-threat-actors
-
Scattered Spider targeting MSPs, IT vendors in social engineering campaigns
The same group is believed to be behind a wave of attacks against retailers in the UK, the US and elsewhere. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/scattered-spider-msps-it-vendors-social-engineering/750172/
-
HelloTDS Malware Spread via FakeCaptcha Infrastructure Infects Millions of Devices
In a Gen Threat Labs, a complex Traffic Direction System (TDS) dubbed >>HelloTDS
-
Report on the Malicious Uses of AI
OpenAI just published its annual report on malicious uses of AI. By using AI as a force multiplier for our expert investigative teams, in the three months since our last report we’ve been able to detect, disrupt and expose abusive activity including social engineering, cyber espionage, deceptive employment schemes, covert influence operations and scams. These…
-
New Atomic macOS Stealer Campaign Exploits ClickFix to Target Apple Users
Cybersecurity researchers are alerting to a new malware campaign that employs the ClickFix social engineering tactic to trick users into downloading an information stealer malware known as Atomic macOS Stealer (AMOS) on Apple macOS systems.The campaign, according to CloudSEK, has been found to leverage typosquat domains mimicking U.S.-based telecom provider Spectrum.”macOS users are served a…
-
Hackers Leverage New ClickFix Tactic to Exploit Human Error with Deceptive Prompts
Tags: cyber, cybercrime, cybersecurity, defense, exploit, group, hacker, iran, malicious, russia, social-engineering, threatA sophisticated social engineering technique known as ClickFix baiting has gained traction among cybercriminals, ranging from individual hackers to state-sponsored Advanced Persistent Threat (APT) groups like Russia-linked APT28 and Iran-affiliated MuddyWater. This method targets human end users as the weakest link in cybersecurity defenses, tricking them into executing malicious commands through seemingly benign prompts. A…
-
ClickFix Attack Uses Fake Cloudflare Verification to Silently Deploy Malware
Tags: attack, captcha, cyber, exploit, malicious, malware, phishing, powershell, social-engineering, threatA newly identified social engineering attack dubbed >>ClickFix
-
ClickFix Attack Uses Fake Cloudflare Verification to Silently Deploy Malware
Tags: attack, captcha, cyber, exploit, malicious, malware, phishing, powershell, social-engineering, threatA newly identified social engineering attack dubbed >>ClickFix
-
Scattered Spider Hackers Target Tech Company Help-Desk Administrators
Tags: breach, corporate, cyber, cyberattack, exploit, group, hacker, hacking, social-engineering, technology, threat, vulnerabilityA newly identified wave of cyberattacks by the notorious Scattered Spider hacking group has zeroed in on help-desk administrators at major technology companies, leveraging advanced social engineering techniques to breach corporate defenses. Known for their adept use of psychological manipulation, these threat actors have demonstrated a chilling ability to exploit human vulnerabilities as effectively as…
-
Microsoft startet neues europäisches Sicherheitsprogramm
Tags: ai, china, crime, crimes, cyber, cyberattack, cybercrime, cyberespionage, cyersecurity, deep-fake, governance, government, guide, infrastructure, intelligence, iran, LLM, microsoft, north-korea, open-source, ransomware, resilience, service, social-engineering, supply-chain, threat, ukraine, update, usa, vulnerabilityMicrosoft will die Cybersicherheit in Europa stärken.Microsoft warnt davor, dass sich Ransomware-Gruppen und staatlich geförderte Akteure aus Russland, China, dem Iran und Nordkorea in Umfang und Raffinesse stetig weiterentwickeln. Europa dürfe daher nicht zögern, seine Verteidigungsmechanismen zu stärken. Der Tech-Konzern will deshalb mit einer neuen Initiative bestehende Schutzprogramme erweitern und gezielt auf europäische Bedürfnisse eingehen.Das…
-
#Infosec2025: Top Six Cyber Trends CISOs Need to Know
Experts at Infosecurity Europe 2025 highlighted a range of major industry trends, from advanced social engineering techniques to vulnerability exploits First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/cyber-trends-cisos-know/
-
3AM-Ransomware: Sophos warnt vor neuer Angriffstaktik mit virtuellen Maschinen
Die Cyberkriminellen kombinieren klassische Social-Engineering-Tricks wie Vishing (Telefonbetrug) und E-Mail-Bombing mit einem technischen Kniff dem Einsatz einer versteckten virtuellen Maschine (VM), um sich unbemerkt im Netzwerk eines Unternehmens einzunisten. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/3am-ransomware-sophos-warnt-vor-neuer-angriffstaktik-mit-virtuellen-maschinen/a41062/
-
Cybersecurity Needs Satellite Navigation, Not Paper Maps
Tags: access, ai, attack, automation, best-practice, breach, business, ceo, cloud, communications, computer, computing, cryptography, cyber, cyberattack, cybersecurity, data, data-breach, deep-fake, defense, encryption, endpoint, exploit, finance, firewall, framework, government, Hardware, healthcare, infrastructure, intelligence, Internet, leak, least-privilege, malicious, military, network, phishing, privacy, resilience, risk, saas, service, social-engineering, software, strategy, technology, threat, tool, vpn, vulnerability, zero-trust -
Hacker erbeuten Salesforce-Daten mit Vishing
Tags: access, authentication, cloud, cyberattack, data, google, group, hacker, infrastructure, intelligence, malware, mfa, phishing, ransomware, social-engineering, threat, vulnerabilitySalesforce-User in mehreren Branchen wurden Opfer einer gezielten Vishing-Attacke.Eine neue Welle von Cyberangriffen auf Salesforce-Kunden erfasst aktuell Unternehmen verschiedener Branchen, darunter Gastgewerbe, Einzelhandel und Bildungswesen. Die Google Threat Intelligence Group (GTIG) hat die Angreifer, die sich auf Voice-Phishing (Vishing) spezialisiert haben, als UNC6040 identifiziert. Berichten zufolge geben sich Vertreter der Gruppe am Telefon als IT-Support-Mitarbeitende…
-
Cyberkriminelle nutzen virtuelle Maschine als Tarnkappe
Sophos X-Ops hat eine Ransomware-Angriffswelle analysiert, bei der die Cybercrime-Gruppe ‘3AM” bewährte Social-Engineering-Methoden sowie die Nutzung legitimer Fernwartungstools mit einer technischen Neuerung kombiniert: Den Einsatz einer versteckten virtuellen Maschine, um verdeckt Zugriff auf das Unternehmensnetzwerk zu erlangen unter Umgehung klassischer Endpunktschutzlösungen. Im ersten Quartal 2025 betreute das Sophos-X-Ops-Team ein Unternehmen, das einen solchen Angriff […]…
-
Salesforce customers duped by series of social-engineering attacks
Google Threat Intelligence Group said about 20 organizations have been hit by a cybercrime group it tracks as UNC6040. First seen on cyberscoop.com Jump to article: cyberscoop.com/google-unc6040-salesforce-attacks/
-
Exploiting Clickfix: AMOS macOS Stealer Evades Security to Deploy Malicious Code
A newly uncovered campaign involving an Atomic macOS Stealer (AMOS) variant has emerged, showcasing the evolving sophistication of multi-platform social engineering attacks. This campaign, discovered during routine attacker infrastructure analysis, leverages typo-squatted domains mimicking Spectrum, a prominent U.S.-based telecommunications provider offering cable television, internet, and managed services. By employing the Clickfix method, attackers deliver tailored…

