Microsoft has revealed that a threat actor labeled Storm-0324 is distributing malware by using "phishing lures through Microsoft Teams chats" that could be used to launch ransomware attacks.
Phishing attack RSS
Microsoft discovers a phishing attack by a Russian-backed hacker group. They are using compromised Microsoft 365 accounts to pose as tech support in Teams. The group targets govts, NGOs, and more.
A social experiment was conducted by a security research firm pitting humans against ChatGPT. This test simulated writing of phishing scam mail and human beings have emerged victorious, for now.
Reddit recently suffered a security breach that allowed cybercriminals to access some of its internal data and systems. The incident was a result of a successful phishing attack against the company.
Signal has reported a recent phishing attack on its verification service provider, Twilio, which has exposed approximately 1,900 users registered to a Signal account. Twilio has shut down the attack.
Microsoft email users are under attack from a new phishing campaign. The campaign uses the adversary-in-the-middle (AiTM) technique to even bypass multi-factor authentication (MFA) protection.
A new phishing attack serves fake Zoom account suspension emails, aiming to steal users' Office 365 credentials. The email spoofs the official Zoom domain and has reportedly targeted 50,000 users.
Microsoft has taken legal action against scammers who are attacking users left vulnerable by COVID-19. These scammers are using BEC attacks to steal personal information to access Office 365 accounts.
Phishing attacks are everywhere. In this free to download whitepaper we cover what phishing is in-depth and explore why it's such a popular technique for hackers. Claim now while you can.
Microsoft claims that Office 365 for enterprise users exhibited the lowest miss rate of phish emails from May 1, 2018 to September 16, 2018, owing to its enhanced anti-phish capabilities.
Google announces that iOS users who are frequently targeted by phishing attacks, particularly those in the media and political sectors, will now be able to enroll in its Advanced Protection Program.
A test by cybersecurity firm NSS Labs shows that Microsoft Edge on Windows 10 is better at protecting against phishing than Google Chrome on Chrome OS and Mozilla's Firefox browser.
A vulnerability has been exposed in iOS, in hopes that Apple will fix the problem and protect its users. The phishing attack prompts with a very convincing iTunes Store sign-in dialog box.
After last week's phishing attack, Google has decided to update its review process for web apps that request user data, even requiring a manual review depending on the new risk assessment process.
A web application developer found that Chrome and Firefox are vulnerable to homograph attacks, where a party deceives another by using legitimate-looking URLs, which can lead to phishing scams.