SpearPhishing

Five Cloud Security Considerations for CISOs

| | byod, Cloud apps, Cloud Security, cyberattacks, Cybersecurity, email security, HTTPS, new normal, Phishing, SaaS, SpearPhishing, VPN, Web security
Discover How You Can Protect Users and the Organization in Today’s New Normal The past six months have been a whirlwind of change. Security teams across the world have scrambled to empower ...
Menlo Security Blog
Phishing Campaign Targets FINRA in Search for Microsoft Office or SharePoint Credentials

Phishing Campaign Targets FINRA in Search for Microsoft Office or SharePoint Credentials

| | FINRA, Industry News, Microsoft Office, passwords, Phishing, sharepoint, SpearPhishing
A new phishing campaign is targeting members of Financial Industry Regulatory Authority (FINRA), with emails purporting to be from FINRA officers. The goal is to obtain the members’ user names and passwords ...
HOTforSecurity
Cybercriminal are using Google reCAPTCHA to hide their phishing attacks

Cybercriminals are using Google reCAPTCHA to hide their phishing attacks

| | google phishing, Google reCAPTCHA, Industry News, reCAPTCHA pishing, reCAPTCHA version 3, SpearPhishing
I doubt any of us would claim to be fans of CAPTCHA – the puzzles that a website asks you to complete to prove if you’re a human being or not. Unscrambling ...
HOTforSecurity
Oil & Gas Spearphishing Campaigns Drop Agent Tesla Spyware in Advance of Historic OPEC+ Deal

Oil & Gas Spearphishing Campaigns Drop Agent Tesla Spyware in Advance of Historic OPEC+ Deal

| | Anti-Malware Research, energy sector, energy spearphishing, oil & gas malware, Oil and Gas, oil&gas, OPEC, SpearPhishing
Bitdefender researchers have recently found spearphishing campaigns, either impersonating a well-known Egyptian engineering contractor or a shipment company, dropping the Agent Tesla spyware Trojan. The impersonated engineering contractor (Enppi – Engineering for ...
Bitdefender Labs
Netflix Phishing Campaign Spikes in Brazil with Account Update/Suspended Tricks

Netflix Phishing Campaign Spikes in Brazil with Account Update/Suspended Tricks

| | Anti-Malware Research, coronavirus threats, COVID-19, netfix scam, netflix spam, netflix spearphishing, SpearPhishing
With many of us stuck at home because of the pandemic, it’s only natural that streaming services will experience a surge in members and traffic. Netflix is clearly among them, and to ...
Bitdefender Labs
New Homograph Phishing Attack Impersonates Bank of Valletta, Leverages Valid TLS Certificate

New Homograph Phishing Attack Impersonates Bank of Valletta, Leverages Valid TLS Certificate

| | Anti-Malware Research, Bank of Valletta, homograph phishing, IDN homograph phishing, Miscellaneous, phishing attack, SpearPhishing
Bitdefender researchers recently uncovered a new IDN (internationalized domain name) homograph phishing attack in which attackers impersonate the Bank of Valletta, Malta. Bitdefender’s Deep Learning technologies, trained specifically to spot this type ...
Bitdefender Labs
China accused of running industrial cyberespionage operation to steal US aviation and technological data

China accused of running industrial cyberespionage operation to steal US aviation and technological data

| | aviation, Chinese Intelligence, domain hijacking, industrial cyberespionage, Industry News, SpearPhishing, technological secrets
Between 2010 and 2015, Chinese operatives together with hackers and company insiders working at a facility in Jiangsu, China, allegedly engaged in a major industrial cyberespionage operation targeting a US – French ...
HOTforSecurity
What is the MITRE ATT&CK™ Framework?

The MITRE ATT&CK Framework: Initial Access

| | cis controls, Featured Articles, MITRE Framework, powershell, SpearPhishing
Although ATT&CK is not laid out in any linear order, Initial Access will be the point at which an attacker gains a foothold in your environment. This tactic is a nice transition ...
The State of Security

Monday, July 16: Dtex, Insider Threat News: Privileged User Dents Apple Self-Driving Car Program; DOJ Says Russia Hacked Clinton Campaign, Issues Indictments Against Spies

| | Apple, Christy Wyatt, DCCC, DNC, Donald Trump, Dtex, FBI, GRU, hillary clinton, indictment, Info Security Magazine, insider threat, Kacy Zurkus, leaver, privileged user, Robert Mueller, Russia, SpearPhishing, United States Department of Justice, Vladimir Putin, Xiaolang Zhang, XMotors
Last week, Apple found out it had an insider threat active in its ranks. It was the type of insider that Dtex and the industry commonly refers to as a “leaver." In ...
Dtex Systems