Business email compromise campaign targets wide range of orgs with gift card scam

Credit to Author: Eric Avena| Date: Thu, 06 May 2021 16:00:15 +0000

Read our investigation of a BEC campaign that used attacker-created email infrastructure to facilitate gift card theft targeting the consumer goods, process manufacturing and agriculture, real estate, discrete manufacturing, and professional services sectors.

The post Business email compromise campaign targets wide range of orgs with gift card scam appeared first on Microsoft Security.

Read more

Malicious Office 365 Apps Are the Ultimate Insiders

Credit to Author: BrianKrebs| Date: Wed, 05 May 2021 12:27:50 +0000

Phishers targeting Microsoft Office 365 users increasingly are turning to specialized links that take users to their organization’s own email login page. After a user logs in, the link prompts them to install a malicious but innocuously-named app that gives the attacker persistent, password-free access to any of the user’s emails and files, both of which are then plundered to launch malware and phishing scams against others.

Read more

Has Facebook leaked your phone number?

Credit to Author: Pieter Arntz| Date: Tue, 06 Apr 2021 12:07:22 +0000

A giant collection of personal information from an old Facebook data leak has emerged. Find out why it matters and what you can do about it.

Categories: PrivacySocial engineering

Tags:

(Read more…)

The post Has Facebook leaked your phone number? appeared first on Malwarebytes Labs.

Read more

A week in security (March 1 – 7)

Credit to Author: Malwarebytes Labs| Date: Mon, 08 Mar 2021 13:04:31 +0000

A roundup of cybersecurity news from March 1 – 7, including Ryuk going worm, Exchange servers under attack, stolen VPN data, and more.

Categories: A week in security

Tags:

(Read more…)

The post A week in security (March 1 – 7) appeared first on Malwarebytes Labs.

Read more

A week in security (January 18 – January 24)

Credit to Author: Malwarebytes Labs| Date: Mon, 25 Jan 2021 13:12:38 +0000

An action-packed week on Malwarebytes Labs with ZeroLogon, DNSPooq, WhatsApp privacy, Tiktok settings, Zoom watermarking, and more.

Categories: A week in securityMalwarebytes news

Tags:

(Read more…)

The post A week in security (January 18 – January 24) appeared first on Malwarebytes Labs.

Read more

Cybercriminals want your cloud services accounts, CISA warns

Credit to Author: Pieter Arntz| Date: Thu, 14 Jan 2021 20:29:03 +0000

CISA has issued a warning about several recent successful cyberattacks against various organizations’ cloud services

Categories: Awareness

Tags:

(Read more…)

The post Cybercriminals want your cloud services accounts, CISA warns appeared first on Malwarebytes Labs.

Read more