Security News

Week in review: Trojanized hacking tools, coronavirus scams, (IN)SECURE Magazine special issue
2020-03-15 10:00

Hackers are getting hacked via trojanized hacking toolsSomeone has been trojanizing a wide variety of hacking tools to compromise the machines of hackers who want to use the tools for free, Cybereason researcher Amit Serper has revealed. SECURE Magazine: RSAC 2020 special issue releasedRSA Conference, the world's leading information security conference and exposition, concluded its 29th annual event in San Francisco.

IRS scams during tax season target unsuspecting consumers
2020-03-11 05:30

Scam robocalls and phishing emails disguised as banks continue to trick consumers to put their personal information at risk, and tax season is no exception. These tactics are particularly effective due to tax payers concerns of misfiling their taxes or accidentally running into trouble with groups like the IRS. McAfee researchers recently uncovered an example of an illegitimate IRS site created to scam unsuspecting consumers.

Watch out for Office 365 and G Suite scams, FBI warns businesses
2020-03-10 12:52

The menace of Business Email Compromise is often overshadowed by ransomware but it's something small and medium-sized businesses shouldn't lose sight of. Bang on cue, the FBI Internet Crime Complaint Center has alerted US businesses to ongoing attacks targeting organisations using Microsoft Office 365 and Google G Suite.

Coronavirus-themed scams and attacks intensify
2020-03-09 12:22

With the Western world conducting a considerable chunk of its day-to-day life online, with the help of computers, mobile phones and email, they are open to a variety of coronavirus-related cyber scams and schemes. Then there are the phishers and malware peddlers: since the very beginning of Covid-19's surge in Wuhan, they've been tricking users with fake email notifications and fake alerts impersonating local authorities, the US Centers for Disease Control and Prevention, and the World Health Organization to deliver malware or to steal email credentials.

Fresh phish! Stripe scam baked and delivered in under an hour
2020-03-02 12:24

For anyone who is a Stripe user - even if they haven't logged in for a while - the email seems pretty genuine. OK, the button didn't head to a Stripe domain, but the link didn't look particularly out of place, either - it was an HTTPS link to a regular-looking.com domain.

Scam Alert: You've Been Selected for 'Like of the Year 2020' Cash Prizes
2020-02-20 12:36

Cybersecurity researchers have discovered a large-scale ongoing fraud scheme that lures unsuspecting Russian Internet users with promises of financial rewards to steal their payment card information. According to researchers at Group-IB, the multi-stage phishing attack exploited the credibility of Russian Internet portal Rambler to trick users into participating in a fictitious "Like of the Year 2020" contest.

Scam Alert: You've Been Selected for 'Like of the Year 2020' Cash Prizes
2020-02-20 04:40

Cybersecurity researchers have discovered a large-scale ongoing fraud scheme that lures unsuspecting Russian Internet users with promises of financial rewards to steal their payment card information. According to researchers at Group-IB, the multi-stage phishing attack exploited the credibility of Russian Internet portal Rambler to trick users into participating in a fictitious "Like of the Year 2020" contest.

Cybercriminals get creative with tax scams ahead of April 15
2020-02-19 15:05

Tax season is upon us and cybercriminals have taken notice, unleashing a tidal wave of attacks targeting every US citizen and tax prep company. "This information is also valuable and could be used or resold for identity fraud purposes. Additionally, the employees legitimate tax documents can also be found here. This could be used by the attackers to file fraudulent tax returns on the employee's behalf to direct their tax returns to the attacker's coffers." Threat researchers at Zix-AppRiver released a report last week detailing their efforts monitoring and actively battling a series of Business Email Compromise attacks on CPAs and law firms over the past month.

Latest Tax Scams Target Apps and Tax-Prep Websites
2020-02-19 12:03

The attacks are emerging alongside the traditional e-mail based attacks that try to trick users into installing malware that can steal credentials or take control of systems. Attackers this year are focusing on smaller tax-preparation firms probably because "Smaller companies often have fewer resources and less expertise to prevent these attacks and detect them when they've happened," he wrote.

3 Employees Suspended in $4M Puerto Rico Online Scam
2020-02-14 19:01

Puerto Rico's government said Friday that it suspended three employees as federal agents investigate an online scam that attempted to steal more than $4 million from the U.S. territory. Manuel Laboy, executive director of Puerto Rico's Industrial Development Company, said rigorous procedures were not followed when the agency received an email alleging a change in banking accounts that prompted someone to transfer more than $2.6 million to a fraudulent account in the U.S. mainland last month.