Explore

Trendline Trendline
Social Engineering Attacks Exploit Human Weaknesses Despite MFA Implementation

Social Engineering Attacks Exploit Human Weaknesses Despite MFA Implementation

Social Engineering Attacks Exploit Human Weaknesses Despite MFA Implementation
Trendline Trendline
AI-Driven Phishing-as-a-Service Poses New Threats to Organizations

AI-Driven Phishing-as-a-Service Poses New Threats to Organizations

AI-Driven Phishing-as-a-Service Poses New Threats to Organizations
Trendline Trendline
Endpoint Security Evolves: Integration into Broader Platforms Enhances Cyber Defense

Endpoint Security Evolves: Integration into Broader Platforms Enhances Cyber Defense

Endpoint Security Evolves: Integration into Broader Platforms Enhances Cyber Defense
Rapid Read Rapid Read
BlueNoroff APT Exploits AI Deepfakes and Fake Zoom Malware to Target Crypto Firms

BlueNoroff APT Exploits AI Deepfakes and Fake Zoom Malware to Target Crypto Firms

BlueNoroff, a North Korean state-sponsored threat actor, has launched a sophisticated cyber campaign targeting cryptocurrency and Web3 firms. The group employs AI-generated deepfake avatars and voices to impersonate executives during fake meetings, accessed through manipulated links to Zoom or Microsoft Teams. Victims are tricked into downloading malicious software disguised as Zoom extensions, which then installs a series of malware on macOS systems. This malware ecosystem is designed for persistence, credential harvesting, and lateral movement, targeting browser-based cryptocurrency wallets. The campaign uses over 80 typosquatted domains for command and control, leveraging HTTPS and WebSockets for data exfiltration.
Trendline Trendline
Cyber Threat Literacy and AI Disruption Identified as Top Risks to Workforce

Cyber Threat Literacy and AI Disruption Identified as Top Risks to Workforce

Cyber Threat Literacy and AI Disruption Identified as Top Risks to Workforce
Rapid Read Rapid Read
CrowdStrike Identifies New Extortion Groups Targeting U.S. Sectors

CrowdStrike Identifies New Extortion Groups Targeting U.S. Sectors

CrowdStrike has identified two new threat groups, Cordial Spider and Snarky Spider, that are targeting U.S.-based organizations across various sectors, including academic, aviation, retail, and technology. These groups employ voice-phishing and social engineering tactics to infiltrate identity platforms and SaaS environments. The attackers, composed of native English speakers, are part of a broader network known as The Com, which includes other subsets like SLSH and ShinyHunters. The groups aim to steal data quickly for extortion purposes, using phishing pages to capture credentials and gain access to systems. They then exploit these systems for widespread access, often removing multi-factor authentication devices to avoid detection.
Rapid Read Rapid Read
Sri Lankan Hackers Divert $625,000 Payment Meant for U.S. Postal Service

Sri Lankan Hackers Divert $625,000 Payment Meant for U.S. Postal Service

Sri Lanka has reported a missing payment of approximately $625,000 intended for the U.S. Postal Service, which has been unaccounted for several weeks. This incident follows a recent theft of $2.5 million from Sri Lanka's finance ministry by hackers. The Treasury Secretary, Harshana Suriyapperuma, indicated that these incidents are likely business email compromise attacks, where hackers manipulate bank accounts and routing numbers during invoice payments. Such scams are prevalent among cybercriminals, with the FBI noting that email compromise attacks resulted in billions of dollars in losses last year. The Sri Lankan government is under pressure due to these security breaches, especially as the country is still recovering from an economic crisis that led to a debt default in 2022.
Trendline Trendline
BlueNoroff APT Exploits AI Deepfakes and Malware to Target Crypto and Web3 Firms

BlueNoroff APT Exploits AI Deepfakes and Malware to Target Crypto and Web3 Firms

BlueNoroff APT Exploits AI Deepfakes and Malware to Target Crypto and Web3 Firms
Trendline Trendline
Marsh Report Highlights Cyber Threat Literacy and AI Disruption as Top Organizational Risks

Marsh Report Highlights Cyber Threat Literacy and AI Disruption as Top Organizational Risks

Marsh Report Highlights Cyber Threat Literacy and AI Disruption as Top Organizational Risks
Trendline Trendline
Cyber Insurance Data Provides CISOs with New Tools for Budget Discussions

Cyber Insurance Data Provides CISOs with New Tools for Budget Discussions

Cyber Insurance Data Provides CISOs with New Tools for Budget Discussions
Rapid Read Rapid Read
UNC6692 Employs Email Bombing and Social Engineering to Deploy 'Snow' Malware

UNC6692 Employs Email Bombing and Social Engineering to Deploy 'Snow' Malware

The threat actor UNC6692 has been identified using email bombing and social engineering tactics to deploy the 'Snow' malware. According to the Google Threat Intelligence Group, the attackers overwhelm victims with emails and impersonate IT support to trick them into executing malicious code. The campaign involves a phishing page that mimics a mailbox repair utility, leading to the installation of a JavaScript-based backdoor called Snowbelt. This malware is part of a modular framework that includes Snowglaze and Snowbasin, facilitating unauthorized access and data exfiltration.
Rapid Read Rapid Read
Browser Security Tools Highlight Digital Surveillance Concerns

Browser Security Tools Highlight Digital Surveillance Concerns

A recent article discusses the pervasive nature of digital surveillance and the tools available to combat it. The internet tracks users through various methods such as cookies, web beacons, and fingerprinting, which collect personal data for targeted advertising or sale to data brokers. These tracking methods can also be used for social engineering scams. To counteract this, several browser safety tools are available, including Bitdefender's Browser Guard and Norton's Private Browser, which block trackers and enhance user privacy. These tools are essential for minimizing the amount of personal information collected by websites during everyday internet use.