IT Sec News updates – Phishing Attacks

September 28, 2023
NEWS

Novel ZeroFont phishing technique detailed | SC Media

Threat actors have leveraged the ZeroFont phishing attack technique, which initially involved the insertion of hidden characters or words in …

Facebook Twitter

New twist on ZeroFont phishing technique spotted in the wild – Help Net Security

Cybercriminals are leveraging the ZeroFont technique to trick users into trusting phishing emails, SANS ISC handler Jan Kopriva has found.

Facebook Twitter

Hackers Trick Outlook into Showing Fake AV Scans – Dark Reading

Researchers spot attackers using an existing phishing obfuscation tactic in order to better ensure recipients fall for their scam.

Facebook Twitter

Security researcher warns of chilling effect after feds search phone at airport | TechCrunch

phishing campaign,” searched his unlocked phone, and served him with a grand jury subpoena to testify in New York the week after. According to a …

Facebook Twitter

New phishing campaign targets Ukrainian military | SC Media

Threat actors have targeted Ukrainian military organizations with a new STARK#VORTEX phishing campaign deploying the Merlin post-exploitation …

Facebook Twitter

How do you spook cyber criminals? – Panda Security

They hide your information when necessary; they help you stay untraced while browsing online; they prevent phishing emails from reaching you and block …

Facebook Twitter

Kingston Police warn of top-level domain phishing attacks – Kingstonist News

In the release, dated Tuesday, Sept. 26, 2023, police warned that cybercriminals have been using over 20,000 .us top-level domains in phishing attacks …

Facebook Twitter

Why root causes matter in cybersecurity – Fast Company

From an external perspective, phishing was reported as the most pervasive threat vector among scores of security research reports in 2022: Secureworks …

Facebook Twitter

Red Cross-Themed Phishing Attacks Distributing DangerAds and AtlasAgent Backdoors

NSFOCUS Security Labs described the adversary as having a “high technical level and cautious attack attitude,” adding that “the phishing attack …

Facebook Twitter

Why You Should Be Concerned About the MGM 'Vishing' Attack – IT Jungle

The adversary primarily uses phishing pages to capture authentication credentials for Okta, Microsoft Office 365/Azure, VPNs…,” the cybersecurity firm …

Facebook Twitter