Office 365 Phishing Campaign Uses Kaspersky’s Amazon SES Token

It’s a legitimate access token, stolen from a third-party contractor, that lets the attackers send phishing emails from kaspersky.com email addresses. A surge in spearphishing emails designed to steal Office…

Heimdal™ Reverses New GLS Credit Card Fraud Campaign and Potentially Has Picture of Head Attacker

A new GLS Spam campaign is underway. It works via an e-mail that informs the victim about some details that need to be filled out for a certain shipment. The email…

Lazarus Attackers Turn to the IT Supply Chain

Kaspersky researchers saw The North Korean state APT use a new variant of the BlindingCan RAT to breach a Latvian IT vendor and then a South Korean think tank. Lazarus…

Scammers are emailing waves of unsolicited QR codes, aiming to steal Microsoft users' passwords

Written by AJ Vicens Oct 26, 2021 | CYBERSCOOP Email fraudsters are seizing on the attention around the quick response codes that have become more common in restaurants and stories,…

SolarWinds hackers, Nobelium, once again strike global IT supply chains, Microsoft warns

Microsoft has warned that Nobelium, the hacking group behind the SolarWinds fiasco, has targeted at least 140 resellers and technology service providers in global IT supply chains. On October 24,…

Google details cookie stealer malware campaign targeting YouTubers

Google attributed the malware campaign to a group of attackers recruited via a Russian-language hacker forum. Google has disclosed details of a new campaign involving phishing attacks launched against YouTube…

This monster of a phishing campaign is after your passwords

Microsoft has detailed an unusual phishing campaign aimed at stealing passwords that uses a phishing kit built using pieces of code copied from other hackers’ work. A “phishing kit” is…

22% of Brits Received Proof of Vaccination Phishing Email in Past Six Months

22% of Brits Received Proof of Vaccination Phishing Email in Past Six Months Nearly a quarter (22%) of Brits have received phishing emails asking them to download their ‘proof of…

450 million cyberattacks attempted on Japan Olympics infrastructure: NTT

The NTT Corporation, which provided wide-ranging telecommunications services and network security for the Olympic & Paralympic Games in Tokyo this summer, said there were more than 450 million attempted cyberattacks…

Microsoft announces security programs for nonprofits as nation-state attacks increase

Microsoft unveiled a new suite of tools on Thursday built to protect nonprofits as threats against philanthropic organizations globally have skyrocketed, particularly from nation-states. The Microsoft Security Program for Nonprofits…