The Risk of the “To” Line

Nov 25, 2020 2:26:34 PM By Stu Sjouwerman
Micropayments company Coil accidentally exposed at least a thousand of its customers’ email addresses by including their addresses in the “To” field of an email, BleepingComputer reports. ...
Continue Reading

Threat Actors Take Advantage of Exchange Online and Outlook on the Web with New Levels of Sophistication

Oct 20, 2020 8:29:36 AM By Stu Sjouwerman
New insight from Accenture Security highlights specific ways attackers are changing their tactics to make Microsoft’s email platform a tool rather than an obstacle for phishing attacks.
Continue Reading

Another Office 365 OAuth Attack Targets Coinbase Users to Gain Compromised Email Access

Oct 20, 2020 8:25:10 AM By Stu Sjouwerman
The latest attack attempts to trick Office 365 users that use Coinbase into giving access to their mailbox via a Consent app rather than trying to steal their credentials.
Continue Reading

The Secret to This Email Phishing Campaign is Volume

Oct 15, 2020 8:24:12 AM By Stu Sjouwerman
FireEye says a newly characterized cybercriminal gang, FIN11, has been launching widespread email phishing campaigns for the past four years. The group isn’t particularly sophisticated, ...
Continue Reading

Two-Month Email Compromise and Impersonation Attack Results in a $15M Take

Oct 14, 2020 3:30:05 PM By Stu Sjouwerman
Read how one unnamed company fell victim to a scam that’s been repeated many times over the last few years, but never with such a massive payoff at the end.
Continue Reading

Trends in Malicious Attachments Used in Phishing Emails

Oct 14, 2020 8:26:32 AM By Stu Sjouwerman
People need to be familiar with the types of malicious attachments used in phishing emails, according to Lawrence Abrams at BleepingComputer. One of the most common methods of installing ...
Continue Reading

New Office 365 Phishing Attack Checks Your Stolen Credentials in Real-Time

Oct 7, 2020 10:06:20 AM By Stu Sjouwerman
Nothing says the bad guys are intent on stealing credentials like testing them while you participate in their phishing attack so they can verify the validity before letting you off the ...
Continue Reading

[NEW PhishER Feature] Remove, Inoculate, and Protect Against Email Threats Faster With PhishRIP

Sep 16, 2020 7:00:00 AM By Stu Sjouwerman
Your users are likely already reporting potentially dangerous emails in some fashion within your organization. The increase of this email traffic can present a new problem!
Continue Reading

The Dangerous Attraction of Original Gangsters

Sep 9, 2020 8:27:21 AM By Stu Sjouwerman
Users need to be mindful of the ways in which hackers can take over their accounts, according to Brian Krebs. Krebs says his experience as the owner of an “OG” Gmail address made him ...
Continue Reading

Legitimate Services, but still Hook, Line, and Sinker

Sep 8, 2020 7:03:00 AM By Stu Sjouwerman
A malware distribution campaign is abusing organizations’ contact forms to send malicious emails designed to catch the attention of companies’ customer support personnel. The attackers ...
Continue Reading

The New Version of Qbot Trojan Steals Damn Near Everything, Hijacks Email Threads to Spread Infection

Sep 8, 2020 7:01:00 AM By Stu Sjouwerman
Originally seen all the way back in 2008, this banking trojan is continuously being developed. Its latest iteration is downright nasty and has already infected 5% of all organizations ...
Continue Reading

Check Your Email Rules for Maliciousness

Sep 2, 2020 4:07:15 PM By Roger Grimes
Email rules have been used maliciously for decades. Learn about email rules and what you need to do to defend your organization against their malicious misuse.
Continue Reading

U.K. National Health Service Targeted with Over 40,000 Email Scams Aimed at Stealing Patient Data

Aug 18, 2020 4:49:59 PM By Stu Sjouwerman
The last few months have been very busy for cyber attackers targeting the NHS, as the number of phishing emails reported within the NHS shows a continual barrage of attacks.
Continue Reading

43,000+ NHS Staff Hit With Phishing Emails Since March

Aug 14, 2020 11:27:25 AM By Stu Sjouwerman
A Freedom of Information (FOI) request revealed that over 43,000 National Health Service (NHS) staff have had phishing emails slip through the cracks and into their inboxes in the past ...
Continue Reading

Cybercriminals Target Execs in Microsoft 365 Credential Attack to Launch Internal BEC Scams

Aug 11, 2020 9:30:40 AM By Stu Sjouwerman
A new phishing attack spotted in the wild by security researchers at Trend Micro demonstrates how compromised data in an initial cyberattack is purposed in subsequent attacks.
Continue Reading

Leaked U.S.-UK Trade Documents Show How Devastating Compromised Email Can Be

Aug 6, 2020 4:15:57 PM By Stu Sjouwerman
An ongoing criminal investigation highlights how classified documents stolen by Russian hackers from former U.K. trade minister Liam Fox may have been used to impact the British 2019 ...
Continue Reading

[Heads Up] The First-Ever Russian BEC Gang, Cosmic Lynx, Was Uncovered. They Spear Phish Multinational & Fortune 500 Senior Executives

Jul 7, 2020 10:13:48 AM By Stu Sjouwerman
“This is a historic shift to the global email threat landscape and portends new and sophisticated social engineering attacks that CISOs around the world must brace for now,” according to ...
Continue Reading

‘New VPN Configuration’ Email Tricks Microsoft 365 Users Out of Credentials

Jun 24, 2020 4:17:48 PM By Stu Sjouwerman
Scammers are taking advantage of the prominent use of VPNs by remote workforces to send out this very topically relevant phishing email that just wants to steal your credentials.
Continue Reading

Microsoft 365 to Provide Detonation Details About Malicious Email Content

Jun 19, 2020 4:29:28 PM By Stu Sjouwerman
In a step towards educating customers on why attachments and URLs are deemed “malicious”, Microsoft’s is set to augment its Advanced Threat Protection product in July.
Continue Reading

Excel Macros Bypass Your Filters and Slip in Malware Payloads

Jun 4, 2020 9:56:26 AM By Stu Sjouwerman
Researchers at Lastline warn that attackers are increasingly utilizing Excel 4[.]0 macros to deliver malware while avoiding detection by security products. Excel 4[.]0 (XL4) macros were ...
Continue Reading
Subscribe

Search Our Blog


Ransomware Hostage Rescue Manual

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews