Tag: social-engineering
-
Microsoft Warns of ClickFix Phishing Campaign Targeting Hospitality Sector via Fake Booking[.]com Emails
Microsoft has shed light on an ongoing phishing campaign that targeted the hospitality sector by impersonating online travel agency Booking.com using an increasingly popular social engineering technique called ClickFix to deliver credential-stealing malware.The activity, the tech giant said, started in December 2024 and operates with the end goal of conducting financial fraud and theft. It’s…
-
ClickFix attack delivers infostealers, RATs in fake Booking.com emails
Microsoft is warning that an ongoing phishing campaign impersonating Booking.com is using ClickFix social engineering attacks to infect hospitality workers with various malware, including infostealers and RATs. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/clickfix-attack-delivers-infostealers-rats-in-fake-bookingcom-emails/
-
New OBSCURE#BAT Malware Targets Users with Fake Captchas
OBSCURE#BAT malware campaign exploits social engineering & fake software downloads to evade detection, steal data and persist on… First seen on hackread.com Jump to article: hackread.com/new-obscurebat-malware-targets-users-fake-captchas/
-
New OBSCURE#BAT Exploit Windows Alters System Processes Registry for Evasion
Cybersecurity researchers at Securonix have identified an advanced malware campaign that employs social engineering tactics and heavily obfuscated code to deploy rootkits capable of cloaking malicious activities on compromised systems. Dubbed OBSCURE#BAT, the campaign targets English-speaking users through various deception techniques, ultimately installing a user-mode rootkit that can hide files, registry entries, and processes from…
-
82% of K-12 schools recently experienced a cyber incident
Cybercriminals are increasingly targeting school networks through phishing and social engineering, a cybersecurity nonprofit reported. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/k-12-schools-cyber-incident-cis/742045/
-
Lumma Stealer Using Fake Google Meet Windows Update Sites to Launch “Click Fix” Style Attack
Tags: attack, cyber, cybersecurity, google, malicious, malware, powershell, social-engineering, tactics, update, windowsCybersecurity researchers continue to track sophisticated >>Click Fix
-
Trustmi Uses AI to Target Social Engineering Fraud Attacks
First seen on scworld.com Jump to article: www.scworld.com/news/trustmi-uses-ai-to-target-social-engineering-fraud-attacks
-
YouTube Alerts Creators About Phishing Emails Targeting Login Credentials
YouTube has issued a critical security advisory following a widespread phishing campaign exploiting private video sharing to distribute AI-generated deepfakes of CEO Neal Mohan. The fraudulent videos falsely claim changes to the platform’s monetization policies, urging creators to click malicious links. This sophisticated attack vector combines social engineering tactics with advanced generative AI tools, targeting…
-
Phantom Goblin Uses Social Engineering Tactics to Deploy Stealer Malware
Tags: access, cyber, cybersecurity, data, malicious, malware, social-engineering, tactics, unauthorizedA sophisticated malware operation, dubbed >>Phantom Goblin,
-
11 ruinöse Ransomware-Bedrohungen
Tags: ai, apt, cloud, cyberattack, cybercrime, encryption, exploit, extortion, fortinet, healthcare, kritis, leak, linux, lockbit, malware, moveIT, phishing, ransomware, service, social-engineering, supply-chain, usa, vmware, vpn, vulnerability, windows, zero-dayFür Unternehmen ist Ransomware weiterhin eine existenzielle Bedrohung, für Kriminelle ein immer einträglicheres (Service)geschäft.Ransomware bleibt branchenübergreifend auf dem Vormarsch und entwickelt sich beständig weiter vereinzelten behördlichen Erfolgen zum Trotz. Das ist unter anderem auch folgenden Trends zuzuschreiben:Ransomware-as-a-Service (RaaS)-Angebote senken die Zugangsbarrieren.Neue Erpressungstaktiken versprechen noch mehr kriminelle Gewinne.Künstliche Intelligenz (KI) wird bei Cyberkriminellen immer beliebter.Davon abgesehen,…
-
How Social Engineering Sparked a Billion-Dollar Supply Chain Cryptocurrency Heist
The $1.4 billion ByBit cryptocurrency heist combined social engineering, stolen AWS session tokens, MFA bypasses and a rigged JavaScript file. The post How Social Engineering Sparked a Billion-Dollar Supply Chain Cryptocurrency Heist appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/how-social-engineering-sparked-a-billion-dollar-supply-chain-cryptocurrency-heist/
-
How OSINT awareness can mitigate social-engineering attacks
First seen on scworld.com Jump to article: www.scworld.com/perspective/how-osint-awareness-can-mitigate-social-engineering-attacks
-
Hackers Deploy Advanced Social Engineering Tactics in Phishing Attacks
Cybercriminals are evolving their phishing methods, employing more sophisticated social engineering tactics to deceive their targets. Recent findings from ESET’s APT Activity Report highlight a concerning trend where threat actors are establishing relationships with potential victims before deploying malicious content. This shift in strategy makes it increasingly challenging for employees to identify and avoid phishing…
-
We’re losing”Š”, “Šbut it can’t get any worse, right?
Tags: access, ai, antivirus, api, attack, chatgpt, cloud, control, crowdstrike, cybersecurity, defense, detection, edr, encryption, github, infection, injection, korea, LLM, malicious, malware, mandiant, ml, monitoring, network, north-korea, openai, phishing, powershell, service, social-engineering, threat, toolWe’re losing”Š”, “Šbut it can’t get any worse, right? LLMs are being used in many ways by attackers; how blind are you? We’re spending hundreds of billions and losing trillions in cybersecurity. The industry structure is partially to blame. AI is here to help, right? Well, as others have pointed out, AI is being adopted more rapidly…
-
The dirty dozen: 12 worst ransomware groups active today
Tags: access, ai, alphv, apt, attack, backup, breach, cloud, cyber, cybercrime, dark-web, data, detection, email, encryption, endpoint, exploit, extortion, finance, government, group, healthcare, infrastructure, intelligence, korea, law, leak, linux, lockbit, malicious, malware, moveIT, network, north-korea, organized, phishing, ransom, ransomware, russia, service, social-engineering, software, strategy, threat, tool, usa, vmware, vulnerability, windows, zero-dayBlack Basta: History: Black Basta appeared on the ransomware scene in early 2022 and is believed to be a spin-off from Conti, a group notorious for attacking major organizations.How it works: Black Basta usually deploys malware through exploitation of known vulnerabilities and social engineering campaigns. “Employees in the target environment are email bombed and then…
-
Chinese cyber espionage growing across all industry sectors
Tags: access, attack, authentication, botnet, breach, china, cisco, credentials, crowdstrike, cyber, cyberespionage, defense, espionage, exploit, finance, flaw, government, group, identity, Internet, iot, law, malware, mfa, network, service, social-engineering, technology, threat, update, vulnerabilityNew cyber operations in key sectors: Historically, Chinese cyberespionage groups have predominantly targeted organizations from the government, technology, and telecommunications sectors and that continued in 2024. Government orgs were a target for China-linked threat actors in virtually all regions of the world, and Salt Typhoon, a cyber unit tied to China’s MSS, made headlines in…
-
Polyglot files used to spread new backdoor
the attackers first compromised the email account of an Indian electronics company, then used that access to send email messages with malicious links;the link led to a ZIP file that includes polyglot files to obfuscate payload content.According to Proofpoint, the use by threat actors of polyglot files, which are files that can be interpreted by…
-
Microsoft Teams tactics, malware connect Black Basta, Cactus ransomware
Tags: access, attack, corporate, exploit, group, malware, microsoft, ransomware, social-engineering, tacticsNew research has uncovered further links between the Black Basta and Cactus ransomware gangs, with members of both groups utilizing the same social engineering attacks and the BackConnect proxy malware for post-exploitation access to corporate networks. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/microsoft-teams-tactics-malware-connect-black-basta-cactus-ransomware/
-
Russian-Speaking Hackers Goad Users into Installing Havoc
e=4>A newly discovered phishing campaign is using social engineering to dupe victims into copying, pasting, and running the Havoc command-and-control framework on their computers, warn researchers from Fortinet. ClickFix, displays a fake error message and instructions for its supposed resolution. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/russian-speaking-hackers-goad-users-into-installing-havoc-a-27639
-
Google expands Android AI scam detection to more Pixel devices
Google has announced an increased rollout of new AI-powered scam detection features on Android to help protect users from increasingly sophisticated phone and text social engineering scams. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/google-expands-android-ai-scam-detection-to-more-pixel-devices/
-
CISOs should address identity management ‘as fast as they can’ says CrowdStrike exec
Tags: access, ai, attack, authentication, business, china, ciso, crowdstrike, cvss, cyberattack, disinformation, email, exploit, finance, government, identity, iran, jobs, malicious, malware, mfa, microsoft, network, north-korea, password, phishing, phone, powershell, russia, service, social-engineering, spam, switch, tactics, threat, tool, update, vulnerabilityBreakout time, how long it takes for an adversary to start moving laterally across at IT network, reached an all-time low last year. The average fell to 48 minutes, while the fastest breakout time dropped to a mere 51 seconds;Voice phishing (vishing) attacks, where adversaries call victims to amplify their activities with persuasive social engineering…
-
Attackers Leverage Microsoft Teams and Quick Assist for Access
Phishing attack exploits social engineering techniques alongside Microsoft Teams and remote access software to deploy BackConnect malware First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/attackers-exploit-microsoft-teams/
-
Security und GenAI Zwischen Innovation und Sicherheit
Tags: access, ai, attack, awareness, ceo, chatgpt, china, cloud, compliance, crowdstrike, cyberattack, data-breach, deep-fake, fortinet, framework, fraud, germany, governance, intelligence, LLM, mail, mfa, microsoft, network, open-source, phishing, ransomware, risk, social-engineering, spear-phishing, strategy, threat, tool, vulnerabilityExperten sind sich einig, dass KI Vorteile sowohl für Angreifer als auch für Verteidiger mit sich bringt. Während KI die Angriffsmethoden immer raffinierter macht, steigen auch die Anforderungen an die Abwehr. Unternehmen müssen schneller reagieren, Bedrohungen frühzeitig erkennen und ihre Sicherheitsarchitektur kontinuierlich weiterentwickeln. Doch das ist leichter gesagt als getan. Der technologische Fortschritt allein reicht nicht…
-
Interna von Ransomware-Gruppe Black Basta durchgesickert
Über die vergangenen Jahre hat Black Basta mit mehr als 500 Opfern weltweit von sich Reden gemacht. Durchgesickerte Chat-Protokolle enthüllen die innere Funktionsweise und interne Konflikte der Gruppe.Black Basta betrat erstmals im April 2022 die Hackerbühne und nutzte den inzwischen weitgehend verschwundenen QakBot, auch bekannt als QBot. Einem von der US-Regierung im Mai 2024 veröffentlichten…
-
New GitHub Scam Uses Fake “Mods” and “Cracks” to Steal User Data
A sophisticated malware campaign leveraging GitHub repositories disguised as game modifications and cracked software has been uncovered, exposing a dangerous convergence of social engineering tactics and automated credential harvesting. Security researchers identified over 1,100 malicious repositories distributing variants of the Redox stealer, a Python-based malware designed to exfiltrate sensitive data including cryptocurrency wallet keys, browser cookies,…
-
GhostGPT: An Uncensored AI Chatbot Empowering Cybercriminals
GhostGPT is revolutionizing cybercrime by providing hackers with an AI tool that bypasses ethical guardrails found in mainstream models. Available as little as $150, it enables even novice attackers to generate malicious code, craft phishing emails, and automate social engineering at scale. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/02/ghostgpt-an-uncensored-ai-chatbot-empowering-cybercriminals/
-
Poseidon Stealer Targets Mac Users via Fake DeepSeek Website
Cybersecurity researchers uncovered a sophisticated malware campaign targeting macOS users through a fraudulent DeepSeek.ai interface. Dubbed >>Poseidon Stealer,
-
New Zhong Stealer Malware Exploit Zendesk to Attack Fintech and Cryptocurrency
A newly identified malware, dubbed Zhong Stealer, has emerged as a significant threat to the fintech and cryptocurrency sectors. Any.run researchers discovered zhong malware during a phishing campaign between December 20 and 24, 2024, the malware exploits customer support platforms like Zendesk to infiltrate organizations. The attackers masquerade as customers, leveraging social engineering tactics to…
-
Insight Partners Compromised Via Social Engineering Attack
Private Equity Firm Says It’ll Take Several Weeks to Pinpoint Scope of Jan. 16 Hack. An unauthorized third-party accessed certain information systems last month from Insight Partners through a sophisticated social engineering attack. Insight said it’ll take the next several weeks to determine the scope of the Jan. 16 incident with the support of third-party…
-
Insight Partners, VC Giant, Falls to Social Engineering
The startup incubator and PR firm with holdings in more than 70 cybersecurity firms has announced a data breach with as-yet-unknown effects. First seen on darkreading.com Jump to article: www.darkreading.com/cyber-risk/insight-partners-vc-giant-social-engineering

