Phishing

Smashing Security #135: Zombie grannies and unintended leaks

We take a bloodied baseball bat to Android malware, and debate the merits of a social media strike, as one of the team bites the bullet and buys a smart lock for the office.

All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Oli Skertchly.


1 min read

tripwire.com

After €24 million stolen by typosquatting a cryptocurrency exchange, six people arrested

European police have arrested six people as part of an investigation into a theft which saw €24 million (US $27 millon) stolen from users of cryptocurrency exchange.

Read more in my article on the Tripwire State of Security blog.


0 sec read

Smashing Security #134: Sextortion, silicone face masks, and a DDoS doofus

Scammers steal millions by impersonating a French politician, we offer fashion tips for DDoS attackers, and hear how a small town fought a sextortionist preying on young women.

All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Jessica Barker.


1 min read

bitdefender.com

Two brothers arrested for Bitfinex hack and multi-year cryptocurrency phishing campaign

Computer crime authorities in Israel have arrested two brothers in connection with a phishing campaign that spread over multiple years and the 2016 hack of the Bitfinex cryptocurrency exchange.

Read more in my article on the Hot for Security blog.


0 sec read

bitdefender.com

Office 365 proves popular with phishers

With 180 million active users it’s no wonder that Microsoft Office 365 has caught the attention of online criminals.

Read more in my article on the Bitdefender Business Insights blog.


0 sec read

bitdefender.com

645,000 people warned their personal health data at risk after phishing attack

The Oregon Department of Human Services has started notifying more than 600,000 people that their personal details have been put at risk after staff were tricked into granting hackers access to millions of emails.

Read more in my article on the Hot for Security blog.


0 sec read

Smashing Security #129: Too Long; Didn’t Listen

Don’t hire a hacker, they might scam you! What works and what doesn’t when it comes to protecting your email account? And China’s controversial social credit system comes under the microscope.

All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Maria Varmazis.


1 min read

bitdefender.com

Don’t have your account hijacked. Secure your online accounts with more than a password, says Google

Research published at the end of last week argues that the typical user can significantly harden the security of their online accounts by linking a recovery phone number that can send an alert if there is suspicious activity on the account.

Read more in my article on the Hot for Security blog.


0 sec read

bitdefender.com

$40 million worth of Bitcoin stolen from Binance cryptocurrency exchange

Binance, one of the world’s biggest cryptocurrency exchanges by trading volume, says that it has suffered a security breach that saw hackers steal more than $40 million worth of Bitcoin.

Read more in my article on the Hot for Security blog.


0 sec read

An attempt to phish my Amazon Web Services account

An email arrived purporting to be from Amazon Web Services (AWS). It claimed that unless I confirmed I had given my correct contact information for a domain’s WHOIS record, a website I administer could be suspended.


42 sec read

bitdefender.com

Bodybuilders beware! One of the world’s largest online fitness stores hit by security breach

Fitness fanatics are being advised to change their passwords after one of the world’s largest and most popular online fitness stores admitted that it had suffered a security breach that might have exposed customer data.

Read more in my article on the Hot for Security blog.


0 sec read

bitdefender.com

Unpatched D-Link routers targeted in malicious DNS hijacking campaign

Cybercriminals have been hacking into home routers for the last three months, meddling with DNS settings to redirect users surfing the web towards malicious websites.

Read more in my article on the Bitdefender BOX blog.


0 sec read

Smashing Security #119: Hijacked homes, porn passports, and ransomware regret

A $150 million mansion is hijacked online, Brits will soon have to scan their passport to watch internet porn, and are organisations right to pay up when hit by ransomware?

All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by technology broadcaster David McClelland.


1 min read

Smashing Security #116: Stalking debtors, Facebook farce, and a cyber insurance snag

How would *you* track someone who owed you money? What was the colossal flaw Facebook left on its website for anyone to exploit and hijack accounts? And what excuse are insurance companies giving for not paying victims of the NotPetya malware millions of dollars?

All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Joe Carrigan of the Information Security Institute at Johns Hopkins University.


1 min read

bitdefender.com

Business payroll compromise – a new way for criminals to steal from your company

Firms are being warned about a threat which evolves traditional business email compromise scams into a whole new way of extracting money from unwary companies.

Read more in my article on the Bitdefender Business Insights blog.


0 sec read

tripwire.com

Passwords at risk for users who fall for Eileen’s cousin’s voicemail

Security researchers are warning of a new wave of phishing emails which are using an unusual disguise in their attempt to both bypass scanners at email gateways and dupe unsuspecting users.

Read more in my article on the Tripwire State of Security blog.


0 sec read