Credential Theft – Page 3 – WindowsTechs.com

Vermont Taxpayers Warned of Data Leak Over the Past Three Years

Posted on July 30, 2020 by Elizabeth Montalbano

A vulnerability in the state’s system may have exposed personal data that can be used for credential theft for those who filed Property Transfer Tax returns online. Continue reading Vermont Taxpayers Warned of Data Leak Over the Past Three Years→

Zoom Addresses Vanity URL Zero-Day

Posted on July 16, 2020 by Tara Seals

An attacker could pose as a company employee, invite customers or partners to meetings, then use socially engineered conversation to extract sensitive information. Continue reading Zoom Addresses Vanity URL Zero-Day→

Amazon-Themed Phishing Campaigns Swim Past Security Checks

Posted on July 16, 2020 by Tara Seals

A pair of recent campaigns aim to lift credentials and other personal information under the guise of Amazon package-delivery notices. Continue reading Amazon-Themed Phishing Campaigns Swim Past Security Checks→

LokiBot Redux Attacks Massive List of Common Android Apps

Posted on July 16, 2020 by Elizabeth Montalbano

BlackRock, based on the Xerxes source code, can steal info not only from financial apps but also TikTok, Tinder, Instagram, Uber and many others. Continue reading LokiBot Redux Attacks Massive List of Common Android Apps→

Microsoft Seizes Malicious Domains Used in Mass Office 365 Attacks

Posted on July 8, 2020 by Lindsey O'Donnell

The phishing campaign targeted Office 365 accounts in 62 countries, using business-related reports and the coronavirus pandemic as lures. Continue reading Microsoft Seizes Malicious Domains Used in Mass Office 365 Attacks→

15 Billion Credentials Currently Up for Grabs on Hacker Forums

Posted on July 8, 2020 by Elizabeth Montalbano

Unprecedented amounts of data for accessing bank accounts and streaming services are being flogged on the dark web. Continue reading 15 Billion Credentials Currently Up for Grabs on Hacker Forums→

Admins Urged to Patch Critical F5 Flaw Under Active Attack

Posted on July 6, 2020 by Lindsey O'Donnell

Security experts and the U.S. Cyber Command are urging admins to update a critical flaw in F5 Networks, which is under active attack. Continue reading Admins Urged to Patch Critical F5 Flaw Under Active Attack→

BofA Phish Gets Around DMARC, Other Email Protections

Posted on June 18, 2020 by Tara Seals

The June campaign was targeted and aimed at stealing online banking credentials. Continue reading BofA Phish Gets Around DMARC, Other Email Protections→

Phishing Campaign Targeting Office 365, Exploits Brand Names

Posted on June 18, 2020 by Elizabeth Montalbano

Attackers use trusted entities to trick victims into giving up their corporate log-in details as well as to bypass security protections. Continue reading Phishing Campaign Targeting Office 365, Exploits Brand Names→

Qbot Trojan Reappears to Go After U.S. Banking Customers

Posted on June 16, 2020 by Tara Seals

The 12-year-old malware is still dangerous, sporting advanced evasion techniques. Continue reading Qbot Trojan Reappears to Go After U.S. Banking Customers→