SEARCH
Archive
Interpol Arrests Three in BEC Scam
The Nigeria Police Force, in partnership with Interpol and Group-IB, has arrested three men suspected of being part of a cybercriminal gang that specialized in business-email-compromise scams.
Attackers Verify O365 Credentials On Microsoft Entra ID
Attackers are cross-checking stolen Office 365 credentials on Microsoft Entra ID in real-time after victims type them into a malicious phishing page, researchers from Armorblox said.
The Short, Unhappy Lives of Five Zero Days
Google's Threat Analysis Group discovered one attacker exploiting five separate zero days in several applications last year, a highly unusual attack pattern.
Make It Harder to Phish One-Time Passcodes Sent Over SMS
A proposal that would standardize the format of SMS messages being used in two-factor authentication schemes has a simple goal: make users relying on those one-time passcodes less susceptible to phishing attacks.
New Tactics Emerge as Phishing Evolves
Recent phishing campaigns uncovered by Microsoft are using custom 404 error pages and search result poisoning to fool victims.