csmedit, Author at IT360
The RED FLAGS of ROGUE URLS
Spotting malicious URLs is a bit of an art. The examples represented here are some of the common tricks used by hackers and phishers to fool users into visiting malicious websites. The methods shown here could be used by legitimate services, but if you see one of these “tricks” you need to make sure you’re dealing […]
Posted: June 7, 2022 | View More »New Scam Uses Fraud Support Social Engineering To Take Victims For Thousands Of Dollars
A new scam borrows a page from the tech support scams that target older victims telling them potential fraud has been found, offering to “help” solve the issue and ultimately asking for banking details. Security researchers at Malwarebytes highlight a new scam in which victims are called offering to help the victim with identified fraud […]
Posted: June 7, 2022 | View More »Phishing Emails Warn of a Suspicious Login From Russia
Researchers at Malwarebytes warn that a phishing campaign is informing users that someone logged into their account from an IP address in Moscow. The email contains a button to report the issue, which “opens a fresh email with a pre-filled message to be sent to a specific email account.” If a user sends this email, […]
Posted: March 9, 2022 | View More »Cyber Insurance Renewal and Risk
As many business owners know, cyber insurance coverage can be difficult to navigate, but it’s also getting increasingly difficult to secure. Organizations of all sizes now face a greater number of sophisticated cyber threats, and must defend a blurrier network security perimeter, with many employees working some from remote locations, using work and personal devices […]
Posted: February 9, 2022 | View More »Payment Fraud Moves to the Real World with Fake QR Codes on Parking Meters
Scammers are using the professional-looking stickers to point those parking to an alternate pay site to collect credit card details in the perfect situation where victims would be none the wiser. This is a pretty slick scam – you park your car, don’t have enough change, see the “Pay Here” QR Code, scan it, and […]
Posted: February 9, 2022 | View More »U.S. Government Warns of More Cyberattacks Targeting Critical Infrastructure
A new joint cybersecurity advisory from CISA, the FBI, and the NSA cautions organizations against Russian-based attacks and provides mitigations to be implemented. It’s one thing to see an advisory that simply says “hey, we’re seeing bunch more attacks.” But when you also see 8 pages of recommended security measures and a statement encouraging “the […]
Posted: February 9, 2022 | View More »Another Tax Season, Another Opportunity for Scams
It’s the start of tax season. This is the time of year when we collect our receipts and tax forms and hope for a nice big refund from the U.S. government. Unfortunately, cybercriminals are also looking for a nice big score as well. This year is going to be worse than ever, as many people […]
Posted: April 14, 2021 | View More »Researchers Have Their Eye on Malicious Clones of Android Apps That Put Devices at Risk
Researchers at Check Point have found malicious apps in the Google Play Store that will download Trojans to infected devices. “Check Point Research (CPR) recently discovered a new Dropper spreading via the official Google Play store, which downloads and installs the AlienBot Banker and MRAT,” the researchers write. “This Dropper, dubbed Clast82, utilizes a series […]
Posted: April 14, 2021 | View More »A Can of Phishbait: from Surveys to Rule Changes to Your Boss’s Boss
Employees need to continue being wary of phishing scams as they begin to return to the office, according to Roger Kay at INKY. Kay describes several phishing templates that INKY has intercepted in recent months, including one that informed recipients that they needed to fill out a compliance form related to COVID-19 risks. “Reasonably well […]
Posted: April 14, 2021 | View More »