spearphishing – Computer Security Articles

From QR to compromise: The growing “quishing” threat

October 16, 2024 admin phishing, QR code, quishing, sophos x-ops, spam, spearphishing, threat research, x-ops

Credit to Author: Andrew Brandt| Date: Wed, 16 Oct 2024 13:01:41 +0000

Attackers leverage QR codes in PDF email attachments to spearphish corporate credentials from mobile devices

The Stark Truth Behind the Resurgence of Russia’s Fin7

July 10, 2024 admin 7-zip, advanced ip scanner, aimp, anydesk, AutoDesk, bastion secure, bitwarden, Blackberry, combi security, esentire, FIN7, Malwarebytes, microsoft, Ne'er-Do-Well News, node.js, notepad++, pgadmin, prodaft, protectedpdfviewer, putty, python, ransomware, rest proxy, russia's war on ukraine, silent push, spearphishing, stark industries solutions, sublime text, typosquatting, Web Fraud 2.0, zach edwards

Credit to Author: BrianKrebs| Date: Wed, 10 Jul 2024 16:22:59 +0000

The Russia-based cybercrime group dubbed “Fin7,” known for phishing and malware attacks that have cost victim organizations an estimated $3 billion in losses since 2013, was declared dead last year by U.S. authorities. But experts say Fin7 has roared back to life in 2024 — setting up thousands of websites mimicking a range of media and technology companies — with the help of Stark Industries Solutions, a sprawling hosting provider is a persistent source of cyberattacks against enemies of Russia.

Security Sophos

Detection Tools and Human Analysis Lead to a Security Non-Event

November 30, 2022 admin mdr, sophos mdr, sophos x-ops, spearphishing, threat research

Credit to Author: Angela Gunn| Date: Wed, 30 Nov 2022 12:00:13 +0000

A look at how MDR turned a targeted attack into a non-event, in which no high-value credentials are compromised and several dozen employees are not tricked into letting a bad guy get boots on the ground

MalwareBytes Security

North Korean Lazarus APT group targets blockchain tech companies

April 19, 2022 admin AppleJeus, APT, apt38, BlockChain, crypto, Lazarus, NORTH KOREA, patch management, Social engineering, spearphishing

Credit to Author: Pieter Arntz| Date: Tue, 19 Apr 2022 13:56:55 +0000

The Lazarus Group is targeting companies involved in blockchain technology.

The post North Korean Lazarus APT group targets blockchain tech companies appeared first on Malwarebytes Labs.

Security Sophos

Gezielte Phishing-Attacken auf dem Vormarsch – diese Tipps schieben den Riegel vor

January 28, 2020 admin Corporate, phishing, spearphishing

Credit to Author: Jörg Schindler| Date: Mon, 27 Jan 2020 12:19:11 +0000

Aktuelle Phishingwellen beweisen es – die Cyberkriminellen sind kreativ. Nun muss man sich zum Beispiel auch vor Phishing-SMS-Nachrichten in Acht nehmen: im Namen von DHL werden aktuell Kurznachrichten verschickt mit dem Hinweis, dass ein Paket im Verteilerzentrum liege und für zwei Euro dieses seinen Weg weiterführen könne. Über einen Link soll der Empfänger dann diesen […]<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/WNDU5Sh4zvs” height=”1″ width=”1″ alt=””/>

Security Sophos

Spearphishers tool up for attack targeting builders

July 26, 2018 admin attachment, Boulder, Colorado, malspam, PDF, phishing, SophosLabs, SophosLabs Uncut, spearphishing

Credit to Author: Andrew Brandt| Date: Fri, 27 Jul 2018 06:01:24 +0000

A sophisticated spearphishing attack targets construction contractors in Boulder County, Colorado in the latest iteration of a months-long campaign.<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/jUtfsWaE0Zc” height=”1″ width=”1″ alt=””/>

MalwareBytes Security