https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-08-01 09:06:502024-08-01 09:06:50Personal, Health Information Stolen From Pharma Giant Cencora
Facebook users are the target of a scam e-commerce network that uses hundreds of fake websites to steal personal and financial data using brand impersonation and malvertising tricks.
Recorded Future’s Payment Fraud Intelligence team, which detected the campaign on April 17, 2024, has given it the name ERIAKOS owing to the use of the same content delivery network (CDN) oss.eriakos[.]com.
“These
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-08-01 08:06:562024-08-01 08:06:56Facebook Ads Lead to Fake Websites Stealing Credit Card Information
A threat actor recently impersonated Google through a fake ad for the Google Authenticator, a popular multi-factor authentication program. This resulted in innocent users unknowingly downloading malware or falling victim to phishing scams.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-08-01 08:06:552024-08-01 08:06:55Threat Actor Impersonates Google via Fake Ads for Authenticator
Attackers disguise malicious tools as legitimate GenAI apps through phishing sites, web browser extensions, fake apps on mobile stores, and malicious ads on social media.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-08-01 08:06:552024-08-01 08:06:55Beware of Fake AI Tools Masking a Very Real Malware Threat
The attack begins with emails from an Amazon SES client containing empty PDF attachments and a message from Docusign. Despite some checks failing, the emails can still appear legitimate due to the compromised source.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-08-01 08:06:552024-08-01 08:06:55Tycoon 2FA Phishing Kit Exploits Amazon SES to Steal User Credentials
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-08-01 00:06:352024-08-01 00:06:35Cosmic Bomber is like Bomberman multiplayer meets Web3
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-07-31 23:06:312024-07-31 23:06:31Australian Companies Will Soon Need to Report Ransom Payments
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-07-31 21:08:072024-07-31 21:08:07AI-Driven Executive Impersonations Emerge As Significant Threat to Business Payment Processes
BackBox.org offers a range of Penetration Testing services to simulate an attack on your network or application. If you are interested in our services, please contact us and we will provide you with further information as well as an initial consultation.
Personal, Health Information Stolen From Pharma Giant Cencora
/in General NewsPharma giant Cencora has confirmed that personal and health information was stolen in a February 2024 cyberattack.
The post Personal, Health Information Stolen From Pharma Giant Cencora appeared first on SecurityWeek.
SecurityWeek – Read More
Facebook Ads Lead to Fake Websites Stealing Credit Card Information
/in General NewsFacebook users are the target of a scam e-commerce network that uses hundreds of fake websites to steal personal and financial data using brand impersonation and malvertising tricks.
Recorded Future’s Payment Fraud Intelligence team, which detected the campaign on April 17, 2024, has given it the name ERIAKOS owing to the use of the same content delivery network (CDN) oss.eriakos[.]com.
“These
The Hacker News – Read More
Threat Actor Impersonates Google via Fake Ads for Authenticator
/in General NewsA threat actor recently impersonated Google through a fake ad for the Google Authenticator, a popular multi-factor authentication program. This resulted in innocent users unknowingly downloading malware or falling victim to phishing scams.
Cyware News – Latest Cyber News – Read More
Beware of Fake AI Tools Masking a Very Real Malware Threat
/in General NewsAttackers disguise malicious tools as legitimate GenAI apps through phishing sites, web browser extensions, fake apps on mobile stores, and malicious ads on social media.
Cyware News – Latest Cyber News – Read More
Tycoon 2FA Phishing Kit Exploits Amazon SES to Steal User Credentials
/in General NewsThe attack begins with emails from an Amazon SES client containing empty PDF attachments and a message from Docusign. Despite some checks failing, the emails can still appear legitimate due to the compromised source.
Cyware News – Latest Cyber News – Read More
Cosmic Bomber is like Bomberman multiplayer meets Web3
/in General NewsGame studio nWay has launched the beta for Cosmic Bomber, a casual multiplayer action game that is akin to Bomberman meets Web3.Read More
Security News | VentureBeat – Read More
Australian Companies Will Soon Need to Report Ransom Payments
/in General NewsSignificant upcoming legislation promises to tighten the screws on cyber incident response in Australia, mirroring CIRCIA in the US.
darkreading – Read More
North Koreans Target Devs Worldwide With Spyware, Job Offers
/in General NewsDEV#POPPER is back, looking to deliver a comprehensive, updated infostealer to coding job seekers by way of a savvy social engineering gambit.
darkreading – Read More
AI-Driven Executive Impersonations Emerge As Significant Threat to Business Payment Processes
/in General NewsPost Content
darkreading – Read More
ESET Reveals Latest Cloud-Native Authentication Solution
/in General NewsPost Content
darkreading – Read More