Unpatched Microsoft Exchange Servers abused in new phishing campaign

By Waqas
The noteworthy aspect of this phishing campaign is that the emails were sent as replies to previously sent messages, due to which these appeared legit.
This is a post from HackRead.com Read the original post: Unpatched Microsoft Exchange Serve… Continue reading Unpatched Microsoft Exchange Servers abused in new phishing campaign

Microsoft MSHTML flaw exploited in Gmail and Instagram phishing scam

By Deeba Ahmed
The attacks started in July 2021 in which threat actors exploited Microsoft MSHTML vulnerability to target overseas Iranians.
This is a post from HackRead.com Read the original post: Microsoft MSHTML flaw exploited in Gmail and Instagram… Continue reading Microsoft MSHTML flaw exploited in Gmail and Instagram phishing scam

Hacker stole $55M worth of crypto from DeFi lender bZx via phishing

By Waqas
The hack took place after one of the bZx’s employees was sent a phishing email embedded with a malicious macro hidden in an MS word document,
This is a post from HackRead.com Read the original post: Hacker stole $55M worth of crypto from DeFi … Continue reading Hacker stole $55M worth of crypto from DeFi lender bZx via phishing

Google details cookie stealer malware campaign targeting YouTubers

By Waqas
Google attributed the malware campaign to a group of attackers recruited via a Russian-language hacker forum.
This is a post from HackRead.com Read the original post: Google details cookie stealer malware campaign targeting YouTubers
Continue reading Google details cookie stealer malware campaign targeting YouTubers

Android flubot malware installs itself by faking security update

By Deeba Ahmed
The warning is obviously phony but looks authentic that can deceive users into installing Flubot malware on their devices.
This is a post from HackRead.com Read the original post: Android flubot malware installs itself by faking security… Continue reading Android flubot malware installs itself by faking security update

TA544 threat actors hit Italian firms with Ursnif banking trojan

By Waqas
A new malware campaign from a group called TA544 is targeting organizations in Italy with Ursnif banking trojan – Here’s how it works.
This is a post from HackRead.com Read the original post: TA544 threat actors hit Italian firms with Ursnif b… Continue reading TA544 threat actors hit Italian firms with Ursnif banking trojan

5 Personal Cyber Security Tips

By Waqas
In the scenario, where cyber attacks are evolving, from business to an unsuspecting internet user; learning about cyber security is a must. Let’s dig into it.
This is a post from HackRead.com Read the original post: 5 Personal Cyber Security T… Continue reading 5 Personal Cyber Security Tips

Microsoft warns of credential phishing attack abusing open redirect links

By Waqas
So far, the ongoing phishing attack has utilized more than 350 unique domains to target Microsoft Office 365 users.
This is a post from HackRead.com Read the original post: Microsoft warns of credential phishing attack abusing open redirect li… Continue reading Microsoft warns of credential phishing attack abusing open redirect links

iCloud phishing scam – Man stole private photos of 620,000 women

By Waqas
LA County resident booked in iCloud phishing scam pretended to be an Apple agent and stole 620,000 photos, 9,000 videos of 306 young women.
This is a post from HackRead.com Read the original post: iCloud phishing scam – Man stole private… Continue reading iCloud phishing scam – Man stole private photos of 620,000 women

Threat actors using CAPTCHA to evade phishing, malware detection

By Waqas
According to researchers, cybercriminals are abusing legitimate challenge and response services like Google’s reCAPTCHA) or deploying customized fake CAPTCHA-like validation.
This is a post from HackRead.com Read the original post: Threat acto… Continue reading Threat actors using CAPTCHA to evade phishing, malware detection