Social engineering

MalwareBytes Security 

100 channels and nothing on, except TV Licensing phishes

September 25, 2018 admin 0 Comments cybercrime, email, fake, fraud, phish, phishing, SCAM, Social engineering, tv license

Credit to Author: Christopher Boyd| Date: Tue, 25 Sep 2018 09:00:00 +0000

A recent bout of TV Licensing phishing emails promise British users a refund once they log in to a phony TV License website and provide payment details. Read on to see if you’ve been impacted. Categories: Cybercrime Social engineering Tags: emailfakefraudphishphishingscamSocial Engineeringtv license (Read more…)

The post 100 channels and nothing on, except TV Licensing phishes appeared first on Malwarebytes Labs.

Read more

MalwareBytes Security 

Mass WordPress compromises redirect to tech support scams

September 20, 2018 admin 0 Comments bitcoin, Bitcoin Code, browlock, Indicators of compromise, injections, JavaScript, Social engineering, tech support scams, Threat analysis, TSS, wordpress, Zues

Credit to Author: Jérôme Segura| Date: Thu, 20 Sep 2018 17:42:47 +0000

Thousands of WordPress sites have been injected with the same malicious redirection. We review the infection details and the malicious traffic leading to browser lockers. Categories: Social engineering Threat analysis Tags: bitcoinBitcoin CodebrowlockIndicators of compromiseinjectionsJavaScripttech support scamsTSSwordpressZues (Read more…)

The post Mass WordPress compromises redirect to tech support scams appeared first on Malwarebytes Labs.

Read more

MalwareBytes Security 

6 sure signs someone is phishing you—besides email

September 20, 2018 admin 0 Comments 101, FYI, iOS phishing, phishing, phishing scam, smishing, sms phishing, Social engineering, vishing

Credit to Author: Kayla Matthews| Date: Thu, 20 Sep 2018 16:00:00 +0000

Beyond the medium used to reach you (which is most often email), what are some of the common signs and behaviors of phishing? Conversations that focus on the inbox only leave users with an inadequate understanding of how to protect against this ubiquitous threat. Categories: 101 FYI Tags: iOS phishingphishingphishing scamsmishingsms phishingSocial Engineeringvishing (Read more…)

The post 6 sure signs someone is phishing you—besides email appeared first on Malwarebytes Labs.

Read more

MalwareBytes Security 

HMRC phish swipes email login, payment details

September 14, 2018 admin cybercrime, fraud, fraud site, HMRC, hmrc fraud, Outlook, phish, phishing, SCAM, Social engineering, Tax, tax fraud, tax season, UK fraud

Credit to Author: Christopher Boyd| Date: Fri, 14 Sep 2018 16:00:00 +0000

It isn’t tax season for UK (or US) residents, but that hasn’t deterred scammers from sending out an HMRC phish double whammy with a tight deadline attached. Categories: Cybercrime Social engineering Tags: fraudfraud siteHMRChmrc fraudOutlookphishphishingscamSocial Engineeringtaxtax fraudtax seasonUK fraud (Read more…)

The post HMRC phish swipes email login, payment details appeared first on Malwarebytes Labs.

Read more

MalwareBytes Security 

Is two-factor authentication (2FA) as secure as it seems?

September 14, 2018 admin 101, 2fa, biometrics, brute force, Facebook, fake login, FYI, mfa, multi-factor authentication, Password reset, phishing, Social engineering, third-party login, totp, two-factor authentication

Credit to Author: Pieter Arntz| Date: Fri, 14 Sep 2018 15:00:00 +0000

Two factor authentication (2fa) was introduced to enhance login security, but does it always work as advertised? Or can it be bypassed? Categories: 101 FYI Tags: 2fabiometricsbrute forcefacebookfake loginmfamulti-factor authenticationpassword resetphishingSocial Engineeringthird-party logintotptwo-factor authentication (Read more…)

The post Is two-factor authentication (2FA) as secure as it seems? appeared first on Malwarebytes Labs.

Read more

MalwareBytes Security 

Partnerstroka: Large tech support scam operation features latest browser locker

September 13, 2018 admin Blogger redirects, browlock, browlocks, browser locker, browser lockers, cybercrime, Decoy sites, GoDaddy, HTTP authentication, Indicators of compromise, IOC, IOCs, malicious pop-ups, malvertising, Malwarebytes Browser Extension, Malwarebytes Browser Extensions, Partnerstroka, rogue tech support ads, Social engineering, stroka, tech support, tech support scams, TSS

Credit to Author: Jérôme Segura| Date: Thu, 13 Sep 2018 15:00:00 +0000

Tech support scammers belonging to the Partnerstroka group are once again abusing browsers, this time with a new browlock feature to reel in more victims, in one of the biggest campaigns we’ve ever tracked. Categories: Cybercrime Social engineering Tags: Blogger redirectsbrowlockbrowlocksbrowser lockerbrowser lockersDecoy sitesGoDaddyHTTP authenticationIndicators of compromiseIOCIOCsmalicious pop-upsmalvertisingMalwarebytes Browser ExtensionMalwarebytes Browser ExtensionsPartnerstrokarogue tech support adsstrokatech supporttech support scamsTSS (Read more…)

The post Partnerstroka: Large tech support scam operation features latest browser locker appeared first on Malwarebytes Labs.

Read more

MalwareBytes Security 

Green card scams: preying on the desperate

August 24, 2018 admin cybercrime, fraud, green card scam, immigrant, scams, Social engineering

Credit to Author: William Tsing| Date: Fri, 24 Aug 2018 15:00:00 +0000

Most online scams depend on two things: a legitimate entity that has a complicated or broken process, and a desperate target population. With immigration, you get both, which results in an environment ripe for green card scams. Categories: Cybercrime Social engineering Tags: fraudgreen card scamimmigrantscams (Read more…)

The post Green card scams: preying on the desperate appeared first on Malwarebytes Labs.

Read more

Kaspersky Security 

How Instagram accounts get hijacked

August 24, 2018 admin Hijacking, instagram, Social engineering, Threats, Tips

Credit to Author: Nadezhda Demidova| Date: Fri, 24 Aug 2018 13:00:07 +0000

Instagram hacking has been on the rise lately. Here’s what you need to know to avoid losing your precious account

Read more

MalwareBytes Security 

Liar, liar, pants on fire! Barclays phish claims cards explode

August 17, 2018 admin barclays, credit card, cybercrime, fail, fake, LOL, phish, quality control, SCAM, snail mail, snail mail phish, Social engineering

Credit to Author: Adam McNeil| Date: Fri, 17 Aug 2018 16:00:02 +0000

We feel compelled to relay the dire warning from this Barclays snail-mail letter, which we acquired through social media, therefore it must be true. Categories: Cybercrime Social engineering Tags: barclayscredit cardfailfakeLOLphishquality controlscamsnail mailsnail mail phish (Read more…)

The post Liar, liar, pants on fire! Barclays phish claims cards explode appeared first on Malwarebytes Labs.

Read more

MalwareBytes Security 

Under the hoodie: why money, power, and ego drive hackers to cybercrime

August 15, 2018 admin criminal profile, cybercrime, cybercriminals, hackers, psychological profile, Social engineering

Credit to Author: Wendy Zamora| Date: Wed, 15 Aug 2018 14:00:00 +0000

We know what cybercriminals do. We know how they do it. Now we ask: why? This in-depth profile examines what makes hackers turn to cybercrime, and what could change their minds. Categories: Cybercrime Social engineering Tags: criminal profilecybercrimecybercriminalshackerspsychological profile (Read more…)

The post Under the hoodie: why money, power, and ego drive hackers to cybercrime appeared first on Malwarebytes Labs.

Read more

MalwareBytes Security 

A week in security (July 30 – August 5)

August 6, 2018 admin Big Data, breach, cryptomining, Facebook, malware, recap, Reddit, Security world, Social engineering, spam, steam cryptominer, Week in security, weekly blog roundup

Credit to Author: Malwarebytes Labs| Date: Mon, 06 Aug 2018 16:07:39 +0000

A roundup of the security news from July 30 – August 5, including cryptomining, big data, social engineering, and more. Categories: Security world Week in security Tags: big databreachcryptominingfacebookmalwarerecapredditSocial Engineeringspamsteam cryptominerweekly blog roundup (Read more…)

The post A week in security (July 30 – August 5) appeared first on Malwarebytes Labs.

Read more