May 5th, 2021 by hankshelp
“Phishers targeting Microsoft Office 365 users increasingly are turning to specialized links that take users to their organization’s own email login page. After a user logs in, the link prompts them to install a malicious but innocuously-named app that gives the attacker persistent, password-free access to any of the user’s emails and files, both of which are then plundered to launch malware and phishing scams against others.”
Posted in Identity Theft, Malware, Phishing | No Comments »
January 19th, 2021 by hankshelp
Joker’s Stash Carding Market to Call it Quits
Joker’s Stash, by some accounts the largest underground shop for selling stolen credit card and identity data, says it’s closing up shop effective mid-February 2021. The announcement came on the heels of a turbulent year for the major cybercrime store, and just weeks after U.S. and European authorities seized a number of its servers.
Posted in Identity Theft, Phishing, Ransomware | No Comments »
April 3rd, 2020 by hankshelp
“A spear-phishing attack this week hooked a customer service employee at GoDaddy.com, the world’s largest domain name registrar, KrebsOnSecurity has learned. The incident gave the phisher the ability to view and modify key customer records, access that was used to change domain settings for a half-dozen GoDaddy customers, including transaction brokering site escrow.com.”
Posted in Phishing, Security Breeches | No Comments »
January 8th, 2020 by hankshelp
“Late last year saw the re-emergence of a nasty phishing tactic that allows the attacker to gain full access to a user’s data stored in the cloud without actually stealing the account password. The phishing lure starts with a link that leads to the real login page for a cloud email and/or file storage service. Anyone who takes the bait will inadvertently forward a digital token to the attackers that gives them indefinite access to the victim’s email, files and contacts — even after the victim has changed their password.”
Posted in Malware, Phishing | No Comments »
October 28th, 2019 by hankshelp
“An open cloud database sets the stage for phishing attacks for users of the subscription service.”
Posted in Identity Theft, Phishing, Security Breeches | No Comments »
May 30th, 2019 by hankshelp
‘A new phishing campaign is underway that pretends to be from the “Office 365 Team” warning recipients that there has been unusual amount of file deletions occurring on their account.’
Posted in Phishing | No Comments »
March 5th, 2019 by hankshelp
“Phishing attacks have seen an impressive 250% increase between January and December 2018, with attackers moving to multiple points of attacks during the same campaign, switching between URLs, domains, and servers when sending e-mails and hosting phishing forms.”
Posted in Identity Theft, Malware, Phishing | No Comments »
December 19th, 2018 by hankshelp
“Extortion emails are getting wilder and wilder. First we had sextortion scams that threatened to reveal victims doing dirty deeds on video, then bomb threats, which brought the worlwide attention of law enforcement, and now we have threats that a hitman is targeting the recipient unless they pay $4,000 in bitcoin.”
Posted in Identity Theft, Phishing | No Comments »
December 17th, 2018 by hankshelp
“A phishing campaign has been discovered that pretends to be a non-delivery notifications from Office 365 that leads you to a page attempting to steal your login credentails.
This new campaign was discovered by ISC Handler Xavier Mertens and states that “Microsoft found Several Undelivered Messages”. It then prompts you to click on the “Send Again” link in order to try sending the emails again. “
Posted in Malware, Phishing, Scams | No Comments »