Latest Phishing news

ONNX phishing service targets Microsoft 365 accounts at financial firms

A new phishing-as-a-service (PhaaS) platform called ONNX Store is targeting Microsoft 365 accounts for employees at financial firms using QR codes in PDF attachments.
- Bill Toulas
- June 18, 2024
- 04:28 PM
- 0
New phishing toolkit uses PWAs to steal login credentials

A new phishing kit has been released that allows red teamers and cybercriminals to create progressive web Apps (PWAs) that display convincing corporate login forms to steal credentials.
- Lawrence Abrams
- June 12, 2024
- 01:35 PM
- 1
Warmcookie Windows backdoor pushed via fake job offers

A Windows malware named 'Warmcookie' is distributed through fake job offer phishing campaigns to breach corporate networks.
- Bill Toulas
- June 11, 2024
- 11:17 AM
- 0
Gitloker attacks abuse GitHub notifications to push malicious OAuth apps

Threat actors impersonate GitHub's security and recruitment teams in phishing attacks to hijack repositories using malicious OAuth apps in an ongoing extortion campaign wiping compromised repos.
- Sergiu Gatlan
- June 10, 2024
- 06:24 PM
- 0
New V3B phishing kit targets customers of 54 European banks

Cybercriminals are promoting a new phishing kit named 'V3B' on Telegram, which currently targets customers of 54 major financial institutes in Ireland, the Netherlands, Finland, Austria, Germany, France, Belgium, Greece, Luxembourg, and Italy.
- Bill Toulas
- June 04, 2024
- 02:53 PM
- 0
Free Piano phish targets American university students, staff

A large-scale phishing campaign is using an unusual lure to earn at least $900,000 by tricking email recipients into believing they're about to receive a baby grand piano for free.
- Bill Toulas
- May 29, 2024
- 02:14 PM
- 0
Microsoft spots gift card thieves using cyber-espionage tactics

Microsoft has published a "Cyber Signals" report sharing new information about the hacking group Storm-0539 and a sharp rise in gift card theft as we approach the Memorial Day holiday in the United States.
- Bill Toulas
- May 23, 2024
- 03:28 PM
- 0
Banking malware Grandoreiro returns after police disruption

The banking trojan "Grandoreiro" is spreading in a large-scale phishing campaign in over 60 countries, targeting customer accounts of roughly 1,500 banks.
- Bill Toulas
- May 18, 2024
- 10:12 AM
- 0
The Week in Ransomware - May 17th 2024 - Mailbombing is back

This week was pretty quiet on the ransomware front, with most of the attention on the seizure of the BreachForums data theft forum. However, that does not mean there was nothing of interest released this week about ransomware.
- Lawrence Abrams
- May 17, 2024
- 05:30 PM
- 1
Monday.com removes "Share Update" feature abused for phishing attacks

Project management platform Monday.com has removed its "Share Update" feature after threat actors abused it in phishing attacks.
- Lawrence Abrams
- May 09, 2024
- 06:17 PM
- 0
Microsoft rolls out passkey auth for personal Microsoft accounts

Microsoft announced that Windows users can now log into their Microsoft consumer accounts using a passkey, allowing users to authenticate using password-less methods such as Windows Hello, FIDO2 security keys, biometric data (facial scans or fingerprints), or device PINs.
- Bill Toulas
- May 03, 2024
- 11:17 AM
- 2
New Latrodectus malware attacks use Microsoft, Cloudflare themes

Latrodectus malware is now being distributed in phishing campaigns using Microsoft Azure and Cloudflare lures to appear legitimate while making it harder for email security platforms to detect the emails as malicious.
- Lawrence Abrams
- April 30, 2024
- 06:08 PM
- 0
Millions of Docker repos found pushing malware, phishing sites

Three large-scale campaigns have targeted Docker Hub users, planting millions of repositories designed to push malware and phishing sites since early 2021.
- Sergiu Gatlan
- April 30, 2024
- 01:32 PM
- 2
US Post Office phishing sites get as much traffic as the real one

Security researchers analyzing phishing campaigns that target United States Postal Service (USPS) saw that the traffic to the fake domains is typically similar to what the legitimate site records and it is even higher during holidays.
- Bill Toulas
- April 28, 2024
- 11:29 AM
- 1
LA County Health Services: Patients' data exposed in phishing attack

The Los Angeles County Department of Health Services disclosed a data breach after thousands of patients' personal and health information was exposed in a data breach resulting from a recent phishing attack impacting over two dozen employees.
- Sergiu Gatlan
- April 25, 2024
- 03:55 PM
- 0
Google ad impersonates Whales Market to push wallet drainer malware

A legitimate-looking Google Search advertisement for the crypto trading platform 'Whales Market' redirects visitors to a wallet-draining phishing site that steals all of your assets.
- Lawrence Abrams
- April 18, 2024
- 01:55 PM
- 0
Cybercriminals pose as LastPass staff to hack password vaults

LastPass is warning of a malicious campaign targeting its users with the CryptoChameleon phishing kit that is associated with cryptocurrency theft.
- Bill Toulas
- April 18, 2024
- 10:56 AM
- 12
LabHost phishing service with 40,000 domains disrupted, 37 arrested

The LabHost phishing-as-a-service (PhaaS) platform has been disrupted in a year-long global law enforcement operation that compromised the infrastructure and arrested 37 suspects, among them the original developer.
- Bill Toulas
- April 18, 2024
- 05:52 AM
- 0
FIN7 targets American automaker’s IT staff in phishing attacks

The financially motivated threat actor FIN7 targeted a large U.S. car maker with spear-phishing emails for employees in the IT department to infect systems with the Anunak backdoor.
- Bill Toulas
- April 17, 2024
- 04:40 PM
- 0
FBI warns of massive wave of road toll SMS phishing attacks

On Friday, the Federal Bureau of Investigation warned of a massive ongoing wave of SMS phishing attacks targeting Americans with lures regarding unpaid road toll fees.
- Sergiu Gatlan
- April 12, 2024
- 02:56 PM
- 1