![[HEADS UP] New Phishing Kit Spotted on Over 700 Domains](https://i0.wp.com/www.optricsinsider.com/wp-content/uploads/2021/01/domain-names-1772242_1920.jpg?fit=600%2C391&ssl=1)
A cybercriminal gang has recently developed a new phishing kit named LogoKit on several domains. LogoKit changes logos and text in real-time in order to adapt to the targeted victims.This vicious phishing kit has already been released in the dark web according to threat intelligence firm RiskIQ. The firm has tracked it’s progression and in […]
The 10 Phases Of Organizational Security Awareness
After 10 years of continued expansion in the security awareness space and providing our platform to tens of thousands of customers, we have observed a certain progress of organizational security awareness over time.The speed of this progress is different by org size, geolocation, and industry, but we see this same pattern return over and over. […]
Familiar Advice, but Worth Repeating
Researchers at ESET outline some security best practices to avoid falling for phishing emails. In an article for TechZone360, the researchers explain how to identify suspicious links.“Before clicking on an embedded link in the body of an email, inspect it first!” ESET says. “Hackers often conceal malicious links within emails, and mix them with genuine […]
Email Scammers Impersonate U.S. Government Agencies Offering Pandemic Financial Assistance
Taking advantage of people in their time of need, these bottom feeders of the cybercriminal world promise assistance and, instead, collect personal details to make a buck.While the world waits on vaccines to be widely distributed and for the pandemic to finally be over, there are plenty of people that are still hurting financially and […]
A Friend Needs Money Urgently? You’re Probably Getting Scammed
People need to be on the lookout for phishing attacks sent from legitimate but compromised social media accounts, according to Paul Ducklin at Naked Security. Ducklin describes a scam sent in by a reader who received an unexpected message from one of their Facebook friends. The message said, “Hi [name]. Hope you’re all well. Do […]
How Many Phishing Sites? Over 2 Million in 2020 (so far)
Google has flagged 2.02 million phishing sites since the beginning of the year, averaging forty-six thousand sites per week, according to researchers at Atlas VPN. The researchers note that the number of phishing sites peaked at the start of the year, which correlates with the start of the pandemic.“Data also reveals that in the first […]
New Ransomware, OldGremlin, Coming Soon to an Organization Near You!
Pay attention to this one. Despite only targeting Russian companies, the use of custom self-made malware and decidedly creative phishing campaigns makes them a potential danger.OldGremlin first showed in in late March of this year. Singapore-based GroupIB took note and has been tracking them continually.What makes this new kid on the block so interesting is […]
The Risk of Redirector Domains in Phishing Attacks
Researchers at GreatHorn warn that a large-scale phishing campaign is using open redirects to evade email security filters. Open redirects allow attackers to take a URL from a non-malicious website and tack on a redirect, so that when the link is clicked it will take the user to a phishing page. This results in a […]
Threat Actors Take Advantage of Exchange Online and Outlook on the Web with New Levels of Sophistication
New insight from Accenture Security highlights specific ways attackers are changing their tactics to make Microsoft’s email platform a tool rather than an obstacle for phishing attacks.We all tend to think of our email platform as something that helps create a more secure environment four our networks. But new disturbing information found in Accenture’s 2020 […]
Healthcare Sector Still Sustains Phishing Campaigns
No one should take too seriously the high-minded things criminals sometimes say about how they’re restraining themselves during the pandemic, and that they’re going to avoid hitting hospitals and biomedical research organizations. If anything, attacks on such targets have increased in recent months, and phishing is the usual approach.The goal of the phishing attacks is […]