Intel 471 analysts discovered that at the end of April this year, a competition was announced on an unnamed Russian-speaking hacker forum for the best new hacking methods related to cryptocurrencies. The administration of the resource encouraged everyone to publish articles on unusual ways of stealing private keys and wallets, software for mining cryptocurrencies, smart… Continue reading A competition at a hacker forum: $115,000 paid for new attack methods related to cryptocurrency
Tag: Phishing
Tencent and Chinese police conducted a joint operation against game cheat developers
Chinese police in collaboration with tech giant Tencent have launched a joint operation against cheat developers. 10 developers of 17 different cheating tools in games (including Overwatch and Call of Duty Mobile) were arrested. Law enforcers and Tencent call it the largest anti-cheat operation in history. According to the BBC, a total of 76 million… Continue reading Tencent and Chinese police conducted a joint operation against game cheat developers
Ukrainian cyber police arrested the author of uPanel phishing kit
Ukrainian cyber police have arrested a 39-year-old man who is probably the author of uPanel, one of the most popular phishing kits on the black market. The arrest of the developer of the malicious toolkit was the result of an international investigation. ZDNet’s own sources claim that the phishing toolkit is called uPanel (aka U-Admin).… Continue reading Ukrainian cyber police arrested the author of uPanel phishing kit
LogoKit phishing kit allows creating phishing pages in real time
RiskIQ researchers said that the new LogoKit phishing kit was detected on more than 700 unique domains in the last month alone and on 300 in the last week. Worse, this tool allows hackers to modify logos and text on phishing pages in real-time, tailoring sites for specific purposes. LogoKit relies on sending users phishing… Continue reading LogoKit phishing kit allows creating phishing pages in real time
Hackers majorly use Microsoft and DHL brands in phishing attacks
Hackers majorly use the Microsoft and DHL brands in phishing attacks. In Q4 2020, cybercriminals used more brands from the tech industry, followed by shipping and retail businesses. Information security researchers from the Check Point Software team said that phishers love the Microsoft brand. 43% of all attempts at phishing attacks were associated with it… Continue reading Hackers majorly use Microsoft and DHL brands in phishing attacks
Operators of phishing campaigns increased number of emails allegedly from delivery services
Check Point Research reports that in November, the number of phishing emails written on behalf of delivery services increased by 440% compared to October. The sharpest growth was noted in Europe, with North America and the Asia-Pacific region in second and third places respectively in the number of phishing campaigns. Most often (in 56% of… Continue reading Operators of phishing campaigns increased number of emails allegedly from delivery services
Cybercriminals started using Google services more often in phishing campaigns
Security researchers have reported an increase in cyberattacks using Google services in phishing campaigns, as a tool to bypass security and steal credentials, credit cards, and other personal information. The Armorblox team analysed five phishing campaigns, which they call the “the top of the deep iceberg”. The attacks exploit features of several Google services, including… Continue reading Cybercriminals started using Google services more often in phishing campaigns
Microsoft estimated that ransomware attacks take less than 45 minutes
Microsoft analysts have prepared a traditional Digital Defense report, in which they talked about the main events and trends in the field of cybersecurity and threat analysis over the past year (from July 2019 to June 2020). The company, for example, estimated that some ransomware attacks could be carried out in less than 45 minutes.… Continue reading Microsoft estimated that ransomware attacks take less than 45 minutes
Google cloud services are used for phishing
Attackers, whose main goal is to steal various credentials, are increasingly turning to public cloud services to host decoy files and phishing pages. Even Google services are now being used for phishing. Check Point experts warn that earlier this year they discovered a campaign, which was abusing Google cloud services. The scammers have developed an… Continue reading Google cloud services are used for phishing
GitLab checked its employees: on phishing got every fifth
Recently, the GitLab platform conducted a security audit, analyzing if working from home employees are resistant to phishing attacks. As it turned out, every fifth got on phishing in GitLab: 20% of employees agreed to enter their credentials on a fake login page. A training attack conducted by the GitLab Red Team simulated a real… Continue reading GitLab checked its employees: on phishing got every fifth