Cisco admits corporate network compromised by gang with links to Lapsus$ Voice-phished their way in, but Switchzilla claims no damage done Security11 Aug 2022 | 7
Cloudflare: Someone tried to pull the Twilio phishing tactic on us too Attack was foiled by content delivery network's hardware security keys Security10 Aug 2022 | 10
Twilio customer data exposed after its staffers got phished Comms giant says several other firms targeted in 'sophisticated attack' Cyber-crime08 Aug 2022 | 13
Decentralized IPFS networks forming the 'hotbed of phishing' P2P file system makes it more difficult to detect and take down malicious content Security29 Jul 2022 | 23
Cyber-mercenaries for hire represent shifting criminal business model Emerging threat group offers a broad range of attack services Security25 Jul 2022 | 9
This big phish can swim around MFA, says Microsoft Security Slippery AiTM attacks targeted more than 10,000 orgs over the past nine months CSO13 Jul 2022 | 2
Is this you in this explicit snap? No, it's just Discord phishing Unless you're Hunter Biden, that compromising pic isn't real Personal Tech12 Jul 2022 | 14
AstraLocker ransomware reportedly closes doors to pursue cryptojacking Why go through the hassle of demands and decryption when quietly mining is so much easier? Cyber-crime06 Jul 2022 | 2
Carnival Cruises torpedoed by US states, agrees to pay $6m after wave of cyberattacks Now those are some phishing boats Cyber-crime28 Jun 2022 | 17
Europol arrests nine suspected of stealing 'several million' euros via phishing Victims lured into handing over online banking logins, police say Cyber-crime23 Jun 2022 | 7
Zscaler bulks up AI, cloud, IoT in its zero-trust systems Focus emerges on workload security during its Zenith 2022 shindig Networks22 Jun 2022 |
Voicemail phishing emails steal Microsoft credentials As always, check that O365 login page is actually O365 CSO21 Jun 2022 | 20
Interpol anti-fraud operation busts call centers behind business email scams 1,770 premises raided, 2,000 arrested, $50m seized Security17 Jun 2022 | 25
Heineken says there’s no free beer, warns of phishing scam WhatsApp messages possibly the worst Father's Day present in the world Security15 Jun 2022 | 27
Emotet malware gang re-emerges with Chrome-based credit card heistware Crimeware groups are re-inventing themselves Research10 Jun 2022 | 5
Facebook phishing campaign nets millions in IDs and cash Hundreds of millions of stolen credentials and a cool $59 million Cyber-crime09 Jun 2022 | 8
Now Windows Follina zero-day exploited to infect PCs with Qbot Data-stealing malware also paired with Black Basta ransomware gang Research09 Jun 2022 | 4
Microsoft seizes 41 domains tied to 'Iranian phishing ring' Windows giant gets court order to take over dot-coms and more Cyber-crime07 Jun 2022 | 4
Costa Rican government held up by ransomware … again In brief Also US warns of voting machine flaws and Google pays out $100 million to Illinois Security06 Jun 2022 | 8
Watch out for phishing emails that inject spyware trio You wait for one infection and then three come along at once Research01 Jun 2022 | 13
Ransomware attack sends US county back to 1977 In brief Also: Uni details its malware-catching AI, signs of China poking the Russian cyber-bear, and more Patches29 May 2022 | 8
Suspected phishing email crime boss cuffed in Nigeria Interpol, cops swoop with intel from cybersecurity bods Cyber-crime26 May 2022 | 7
It's 2022 and there are still malware-laden PDFs in emails exploiting bugs from 2017 Crafty file names, encrypted malicious code, Office flaws – ah, it's like the Before Times Research24 May 2022 | 23
Hot glare of the spotlight doesn’t slow BlackByte ransomware gang Crew's raids continue worldwide, Talos team warns Research19 May 2022 | 4
Facebook rated least safe e-commerce option in government rankings Singapore's safety scheme measures scam-combatting capability Cyber-crime17 May 2022 | 2
Shopping for malware: $260 gets you a password stealer. $90 for a crypto-miner... We take a look at low, low subscription prices – not that we want to give anyone any ideas Research14 May 2022 | 6
Anatomy of a campaign to inject JavaScript into compromised WordPress sites Reverse-engineered code redirects visitors to dodgy corners of the internet Research13 May 2022 | 8
Phishing operation hits NHS email accounts to harvest Microsoft credentials You've won $2m! Now just send me a small fee Security05 May 2022 | 44
Intuit sued over alleged cryptocurrency thefts via Mailchimp intrusion Financial software giant slammed for 'poor security practices' Cyber-crime25 Apr 2022 | 13
Russian-linked Shuckworm crew ramps up Ukraine attacks Cyber-espionage gang using multiple variants of its custom backdoor to ensure persistence, Symantec warns Security20 Apr 2022 | 4
Criminals adopting new methods to bypass improved defenses, says Zscaler PhaaS, SMiShing, and remote work drive increase in phishing attacks Research20 Apr 2022 | 5
US warns North Korean Lazarus gang rising against cryptocurrency outfits Malware-laced recruitment emails are more Kim job ill than Kim Jong-un Security20 Apr 2022 | 5
Cybercriminals do their homework for latest banking scam What could be safer than sending money to yourself through your own bank? Cyber-crime15 Apr 2022 | 31
Attackers exploit Spring4Shell flaw to let loose the Mirai botnet Trend Micro says vulnerable systems in Singapore have been compromised Security11 Apr 2022 | 3
Broader investment in cybersecurity beginning to pay dividends Improved defenses give organizations more room to negotiate but won't protect from lawsuits, says law firm Security07 Apr 2022 |
Bank had no firewall license, intrusion or phishing protection – guess the rest Crooks used RAT to hijack superusers at India's Mahesh Bank, stole millions Security05 Apr 2022 | 96
Mailchimp: Crook stole cryptocurrency clients' mailing-list subscriber info Staff socially engineered into handing over internal system credentials Security05 Apr 2022 | 13
Google: Russian credential thieves target NATO, Eastern European military Also: Belarusian miscreants pivot to browser-in-the-browser attacks Security01 Apr 2022 | 12
Ukraine security agency shutters Russian disinformation bot farms Operators used social media to distort status of fighting, instill panic in residents Security29 Mar 2022 | 17
Cybercrooks target students with fake job opportunities Legit employers don't normally send a check before you've started – or ask you to send money to a Bitcoin address Security29 Mar 2022 | 21
IcedID malware, in the hijacked email thread, with the insecure Exchange servers Windows backdoor shows off some interesting techniques Security29 Mar 2022 | 3
China APT group using Russia invasion, COVID-19 in phishing attacks Mustang Panda deploys variant of Korplug malware to target European officials and ISPs Security28 Mar 2022 |
We blocked North Korea's Chrome exploit, says Google Fake Oracle and Disney job ads to lure victims is certainly an interesting choice Security25 Mar 2022 | 14
How CAPTCHAs can cloak phishing URLs in emails Select all images of you being duped into providing your credentials Security17 Mar 2022 | 45
The Windows malware on Ukraine CERT's radar Government agencies impersonated, fake antivirus, another wiper, backdoors Security16 Mar 2022 |
Cloudflare buys anti-phishing business Area 1 for $162m Bolstering email defences to keep cybercrooks at bay Security24 Feb 2022 | 3
Microsoft offers defense against 'ice phishing' crypto scammers All right stop, collaborate and listen, 'soft is back with some theft protection Security18 Feb 2022 | 17
Singapore introduces potent anti-scam measures Plans to block more scam sites, share liability between banks and customers Security16 Feb 2022 | 10
Phishing kits' use of man-in-the-middle reverse proxies is growing, warns Proofpoint Spoof site looks real because it is... but you're not talking to who you think Security03 Feb 2022 | 10
Singapore gives banks two-week deadline to fix SMS security Edict follows widespread bank phishing scam claiming well over $6.3 million Security20 Jan 2022 | 11
Singapore monetary authority threatens action on bank over widespread phishing scam Updated Scam has claimed 469 victims in December alone, of which OCBC has issued goodwill payments to 30 Security18 Jan 2022 | 11
European Cybercrime Centre confident it's kicked credit card crims – again Poised to reveal similar haul to 2020's €40M loss prevention total Security02 Dec 2021 | 4
Google advises passwords are good, spear phishing is bad, and free clouds get attacked Ad giant's first stab at providing the 'world's premier security advisory' starts with the obvious Security25 Nov 2021 | 11
Centre for Computing History apologises to customers for 'embarrassing' breach Updated Website patched following phishing scam, no financial data exposed Security20 Oct 2021 | 12
Unpatched flaw 'weaponises' Apple AirTags to turn them into the phisherman's friend XSS vulnerability allows miscreants to hijack phone number field on website Security29 Sep 2021 | 28
Mafia works remotely, too, it seems: 100+ people suspected of phishing, SIM swapping, email fraud cuffed Dare we say, these Euro cops ran mobprobe Security21 Sep 2021 | 10
Aviation-themed phishing campaign pushed off-the-shelf RATs into inboxes for 5 years Not all promises of international flight itineraries are real, warns Cisco Talos Security16 Sep 2021 | 2
Brits open doors for tech-enabled fraudsters because they 'don't want to seem rude' Impersonation scams and smishing rocket, say UK Finance and Which? Security14 Sep 2021 | 24
Spam is Chipotle's secret ingredient: Marketing email hijacked to dish up malware Updated More than 120 messages caught trying to filch credentials from customers of USAA Bank, Microsoft Security29 Jul 2021 | 3
Russian gang behind SolarWinds hack returns with phishing attack disguised as mail from US aid agency Microsoft says Nobelium scored access to Constant Contact email marketing tool Security28 May 2021 | 27
Train operator phlunks phishing test by teasing employees with non-existent COVID bonus Someone at West Midlands Trains approved nasty cybersecurity drill Security11 May 2021 | 153
Scammers tried slurping folks' login details through 70,000 coronavirus-themed phishing URLs during 2020 Palo Alto Networks lays bare a year of dastardly digital doings Security24 Mar 2021 | 3