Spam

Smashing Security podcast: Email attachment malware

Email attachment malware is the thorny topic tackled by computer security veterans Graham Cluley, Carole Theriault and Vanja Svajcer in this special “splinter” episode from the Smashing Security podcast team.


33 sec read

welivesecurity.com

100,000+ WordPress webpages defaced as recently patched vulnerability is exploited

Keep your WordPress site updated, or risk having hackers modify the content of any post or webpage.

Read more in my article on the We Live Security blog.


0 sec read

Employment scam targets college students and their bank accounts

A scam is tricking college students into depositing fraudulent checks into their bank accounts with the promise of employment.

David Bisson reports.


1 min read

Christmas pump-and-dump stock spam

Spammers hope that their email campaign will trick enough people to buy stocks in a games development company to make them a killing…


1 min read

Spam campaign tiptoes via Tor to deliver Cerber ransomware

A malicious spam campaign is using a Tor2Web proxy service in an attempt to infect users with Cerber ransomware without raising any red flags.

David Bisson reports.


1 min read

Lock down your Twitter: take care that rogue third-party apps don’t hijack your account

Have you linked third-party apps to your Twitter account? Maybe it’s time you did an audit of whether you still want them to have access to your Twitter followers and messages.

The recent Twitter Counter hack proves that even legitimate third-party services can run rogue, causing Twitter accounts to start sending spam.

Yasin Soliman reports.


2 min read

So, just how were those MailChimp accounts hacked?

A database containing over 2,000 MailChimp passwords has been found online.

MailChimp wasn’t hacked. Instead, the password-stealing Vawtrak malware might be to blame.


1 min read

Vicinity of obscurity! Fareit trojan spread via uncommon file type

The Fareit trojan is using .mht files as a disguise as it spreads via phishing and other spam mail campaigns.

David Bisson reports.


1 min read

welivesecurity.com

MailChimp accounts hacked to spam out malicious emails

Hackers broke into the MailChimp accounts of some businesses, and send out malicious invoice emails to subscribers… but that doesn’t mean that MailChimp suffered a serious security breach.

Once again, two-factor authentication could have saved users’ bacon.

Read more in my article on the We Live Security blog.


0 sec read

The NHS suffered a massive email storm today

A simple human error saw email at the UK’s National Health Service brought to a standstill.

Find out more in my latest video.


37 sec read

Locky ransomware disguises itself as account suspensions and suspicious movements

One of the golden rules of computer security for the last twenty-or-so years has been to be extremely cautious of unsolicited emails. Yet, the same old tricks are still being used to successfully spread ransomware.

Read more in my article on the Hot for Security blog.


0 sec read

Election-themed spam spikes as U.S. presidential race comes to an end

Election-themed spam has picked up considerably as the United States’ 2016 presidential election enters the home stretch.

David Bisson reports.


1 min read

Backdoor targeting corporate data through… Microsoft Publisher files?

Malicious hackers are abusing Microsoft Publisher files to try to infect businesses with a backdoor and steal corporate data.

David Bisson reports.


1 min read

Video of Hillary Clinton meeting ISIS leader? Nah, it’s a malware attack

Symantec writes: Cybercriminals are using clickbait, promising a video showing Democratic Party presidential nominee Hillary Clinton exchanging money with an ISIS leader, in order to distribute malicious spam emails. The email’s subject announces “Clinton Deal ISIS Leader caught on Video,” however there is no video contained in the email, just malware. Adding to the enticement,


34 sec read

Hacked Instagram accounts seducing users with adult dating spam

Your Instagram account could have been spiced up by spammers.

David Bisson reports.


1 min read

Tinder spam bots trick users into paying for adult content

Spam bots are tricking Tinder users into become paying members of multiple adult-themed websites.

David Bisson reports.


1 min read