QR codes in email phishing
Scammers are camouflaging phishing links with QR codes and distributing them through email.
phishing
Xenomorph Android Banking Trojan Targeting Users in US, Canada
The Xenomorph Android banking trojan can now mimic financial institutions in the US and Canada and is also targeting crypto wallets.
The post Xenomorph Android Banking Trojan Targeting Users in US, Canada appeared first on SecurityWeek.
New Wave of Hospitality Phishing Attacks: Compromise User Credentials, Then Go Phish
The hospitality sector is seeing a new wave of phishing attacks.
These new attacks are more plausible because they begin with compromised credentials and move to fraudulent emails sent from within a trusted network. The compromised systems ar…
[NEW RELEASE]: Unleash the Power of Cybersecurity Education with KnowBe4’s ‘Hack-A-Cat’ on Roblox
What do cheese, fish and cybersecurity training have in common? Each of these comes together to help keep kids informed about cyber threats and cybersecurity best practices with KnowBe4’s first ever entry into the Roblox gaming platform…
Cybercriminals Use Google Looker Studio to Host Crypto Scam to Steal Money and Credentials
Security researchers at Check Point have discovered yet another attack that leverages legitimate web applications to host attacks in order to bypass security scanners.
MFA Defenses Fall Victim to New Phishing-As-A-Service Offerings
ZeroFox warns that phishing-as-a-service (PhaaS) offerings are increasingly including features to bypass multi-factor authentication.
Tools From Cybercrime Software Vendor W3LL Found to be Behind the Compromise of 56K Microsoft 365 Accounts
A new report uncovers the scope and sophistication found in just one cybercrime vendor’s business that has aided credential harvesting and impersonation attacks for the last 6 years.
Balancing cybersecurity with convenience and progress
Changing approaches to cybersecurity have led to slow but steady progress in defense and protection. Still, competing interests create a growing challenge for cybersecurity decision makers and practitioners, according to CompTIA. The state of cybersecu…
Current ransomware defenses efforts are not working
Despite some positive developments, the impact of ransomware attacks remains high, according to SpyCloud. Infostealer infections preceded 22% of ransomware events for North American and European ransomware victim companies in 2023 – with common infoste…
Vanishing Act: The Secret Weapon Cybercriminals Use in Your Inbox
Researchers at Barracuda describe how attackers use legitimate email inbox rules to control compromised accounts and evade detection.