on coronavirus-themed attacks observed by the PhishLabs team. This post and others are meant to help the security community stay up-to-date on how threat actors are exploiting the pandemic.
that search publicly known credential dumps for account information. This scam is dependent on the victim being unaware of that, and as a result, paying for information that is easily accessible online or paying to receive no results at all.
high profile organizations
was exposed online by activists exploiting the pandemic. While credential dumps are not new, attributing a breach – whether real or not – to the crisis is yet another way the bad guys are altering their attack infrastructure to feed off fear and uncertainty.
For more intelligence on COVID-19 threats,
see our ongoing coverage
*** This is a Security Bloggers Network syndicated blog from The PhishLabs Blog authored by Jessica Ellis. Read the original post at: https://info.phishlabs.com/blog/covid-19-phishing-update-threat-actors-on-twitter-want-you-to-pay-for-your-stolen-passwords