News

Scammers exploit Instagram's influencer program to hijack users' accounts by hacking into them, posting about cryptocurrencies, and then tricking victims into providing their login credentials to "vote" for the scammer's fake influencer contest.

The Microsoft Threat Intelligence team has officially confirmed that a group of threat actors known as Storm-1811 has been exploiting client management tools within its Quick Assist platform to target customers through social engineering tactics. This criminal group has been identified for installing the Black Basta Ransomware, employing vishing techniques to distribute malware such as […] The post Cyber Attack news headlines trending on Google appeared first on Cybersecurity Insiders.

Cybercriminals are exploiting the popularity of DocuSign by creating and selling fake email templates and login credentials to enable phishing attacks, blackmail, and business email compromise against targeted companies.

submitted by /u/SCI_Rusher [link] [comments]

An international law enforcement operation coordinated by the FBI led to the seizure of the notorious BreachForums hacking forum. BreachForums is a cybercrime forum used by threat actors to purchase, sell, and exchange stolen data, including credentials, and personal and financial information. The authorities also seized the Telegram page for the hacking forum The website […]

The Avast Q1 2024 Threat Report highlighted a massive surge in social engineering scams, with a staggering 90% of all mobile and 87% of desktop threats falling into this category.

Financially motivated cybercriminals abuse the Windows Quick Assist feature in social engineering attacks to deploy Black Basta ransomware payloads on victims' networks. [...]

The FTC issued a strong warning to automakers about their data collection and sharing practices, particularly regarding the sale of sensitive geolocation data, and emphasized that it will take enforcement action to protect consumer privacy.

Cybercriminals are using an automated service called "Estate" to steal one-time passcodes and hijack user accounts, including bank accounts, crypto wallets, and other sensitive services, by tricking them into revealing the codes over the phone.

3 min read A string of recent compromises involving non-human identity credentials are putting organizations on high alert. Here's what you can do about it. The post How Workload IAM Can Help Protect Against Auth Secrets Breaches Like Dropbox appeared first on Aembit. The post How Workload IAM Can Help Protect Against Auth Secrets Breaches Like Dropbox appeared first on Security Boulevard.