Lucene search
+L

206 matches found

ThreatPost
ThreatPost
added 2020/06/04 5:24 p.m.66 views

Understanding the Payload-Less Email Attacks Evading Your Security Team

The traditional image of a successful email attack is that of a naive employee clicking the link in a crudely crafted spam email bent on phishing. But times have changed, and employees are much more security-educated than they used to be. So, today’s threat actors are creating increasingly...

7.2AI score
Exploits0References7
ThreatPost
ThreatPost
added 2020/05/20 5:27 p.m.33 views

Fraudulent Unemployment, COVID-19 Relief Claims Earn BEC Gang Millions

An infamous business email compromise BEC gang has submitted hundreds of fraudulent claims with state-level U.S. unemployment websites and coronavirus relief funds. Researchers who tracked the fraudulent activity said cybercriminals may have made millions so far from the fraudulent activity. Behi...

7.1AI score
Exploits0References11
ThreatPost
ThreatPost
added 2020/05/14 12:38 p.m.71 views

BEC Gang Exploits G Suite, Long Domain Names in Cyberattacks

Business email compromise BEC attacks continue to be a thorn in companies’ sides, with the FBI in its IC3 annual cybercrime report saying that the attacks cost victims $1.7 billion in 2019. Making matters worse, BEC cybergangs are turning to new tactics and tricks to avoid detection and capitaliz...

0.2AI score
Exploits0References7
The Hacker News
The Hacker News
added 2020/04/23 10:1 a.m.86 views

Hackers Trick 3 British Private Equity Firms Into Sending Them $1.3 Million

In a recent highly targeted BEC attack, hackers managed to trick three British private equity firms into wire-transferring a total of $1.3 million to the bank accounts fraudsters have access to — while the victimized executives thought they closed an investment deal with some startups. According ...

7.5AI score
Exploits0
ThreatPost
ThreatPost
added 2020/04/15 2:22 p.m.36 views

PPE, COVID-19 Medical Supplies Targeted by BEC Scams

Much has been publicized about the shortage of personal protective equipment PPE and other supplies for healthcare facilities in the United States during the COVID-19 pandemic. Now, the FBI is warning that threat actors are taking advantage of efforts to procure PPE and critical equipment such as...

6.8AI score
Exploits0References9
Trend Micro Simply Security
Trend Micro Simply Security
added 2020/04/02 4:9 p.m.40 views

Using Zoom? Here’s how to keep your business and employees safe

Cyber-criminals are always looking for new opportunities to make money and steal data. Globally trending events are a tried-and-tested way of doing just this, and they don’t come much bigger than the current Covid-19 pandemic. It’s sparking a wave of phishing, BEC, extortion, ransomware and data...

0.1AI score
Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2020/03/10 5:27 p.m.36 views

Trend Micro Cloud App Security Blocked 12.7 Million High-Risk Email Threats in 2019 – in addition to those detected by cloud email services’ built-in security

On March 3, 2020, the cyber division of Federal Bureau of Investigation FBI issued a private industry notification calling out Business Email Compromise BEC scams through exploitation of cloud-based email services. Microsoft Office 365 and Google G Suite, the two largest cloud-based email service...

7.1AI score
Exploits0
ThreatPost
ThreatPost
added 2020/02/20 4:17 p.m.55 views

Cybergang Favors G Suite and Physical Checks For BEC Attacks

Researchers have uncovered a new business email compromise BEC threat actor, which they call Exaggerated Lion, targeting thousands of U.S. companies with money pilfering scams. The cybercrime ring is unique in its leveraging of Google’s cloud-based productivity suite, G Suite, and for its use of...

6.9AI score
Exploits0References13
Pen Test Partners Blog
Pen Test Partners Blog
added 2020/02/14 5:56 a.m.51 views

Business Email Compromise. What to do

The FBI has just released it’s annual Internet Crime Report for 2019, it makes for some really interesting and depressing reading. The mainstream media focused on the headline figure of $3.5Bn in losses in 2019, but what caught my eye is the Business Email Compromise BEC or CEO Fraud stats. I...

7.4AI score
Exploits0
ThreatPost
ThreatPost
added 2020/02/13 2:49 p.m.61 views

Puerto Rico Gov Hit By $2.6M Phishing Scam

A phishing scam has swindled a Puerto Rico government agency out of more than $2.6 million, according to reports. According to reports, the email-based phishing scam hit Puerto Rico’s Industrial Development Company, which is a government-owned corporation aimed at driving economic development to...

7.2AI score
Exploits0References9
ThreatPost
ThreatPost
added 2020/02/04 10:50 p.m.37 views

Community Housing Nonprofit Hit with $1.2M Loss in BEC Scam

A non-profit community housing collective has been swindled out of more than $1.2 million in a business email compromise BEC campaign. Red Kite Community Housing, a coop housing association in High Wycombe, U.K. outside of London announced in a recent website notice that £932,000 of the money pai...

7AI score
Exploits0References6
Trend Micro Simply Security
Trend Micro Simply Security
added 2019/12/13 1:32 p.m.39 views

This Week in Security News: December Patch Tuesday Updates and Retail Cyberattacks Set to Soar 20 Percent During 2019 Holiday Season

Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, learn about the threat campaign Waterbear and how it uses API hooking to evade security product detection. Also, read about December Patch...

7.3AI score
Exploits0
ThreatPost
ThreatPost
added 2019/12/06 7:24 p.m.68 views

News Wrap: Authorities Target Evil Corp., Imminent Monitor, Money Mules

In this week’s Threatpost news wrap, editors Tara Seals and Lindsey O’Donnell break down the top infosec news, including: Authorities crack down on cybercrime group Evil Corp. with sanctions and charges against its leader, known for his lavish lifestyle. The developers behind a commodity...

1.1AI score
Exploits0References7
ThreatPost
ThreatPost
added 2019/12/03 2:0 p.m.67 views

Supply Chain Account Takeover: How Criminals Exploit Third-Party Access

Empower Your Suppliers Against Attack The average business shares data with a complex network of third parties, depending on their operational needs. In a survey of security and risk professionals, Forrester learned that the average business has 4,700 third-party partners with some access to...

0.3AI score
Exploits0References5
ThreatPost
ThreatPost
added 2019/11/22 10:49 p.m.133 views

ID Thieves Turn to Snail Mail as Juicy Target for Financial Crimes

As it gets harder for cybercriminals to bypass business email compromise BEC defenses, some hackers are switching from email scams to real-mail cons. Researchers at Flashpoint said they are monitoring hacker forums where criminals are swapping tips on a growing ID theft and financial crime area,...

7AI score
Exploits0References5
ThreatPost
ThreatPost
added 2019/11/22 1:32 p.m.317 views

Raccoon Stealer Malware Scurries Past Microsoft Messaging Gateways

Criminals behind malware dubbed Raccoon Stealer have adopted a simple and effective technique to circumvent Microsoft and Symantec anti-spam messaging gateways. The technique has been used in a recent campaign targeting financial institutions via business email compromise BEC attacks. According t...

9.3CVSS0.1AI score0.89889EPSS
Exploits14References6
Malwarebytes
Malwarebytes
added 2019/11/07 9:49 p.m.87 views

Not us, YOU: vendor email compromise explained

Silent Starling, an online organized criminal group hailing from West Africa, seem to have reminded SMBs and enterprises alike the perils of business email compromise BEC scams once more. This time, they've advanced BEC into a more potent modality by widening the scope of its potential targets an...

6.9AI score
Exploits0
ThreatPost
ThreatPost
added 2019/11/04 3:34 p.m.86 views

BEC Scam Costs Media Giant Nikkei $29 Million

Media conglomerate Nikkei Inc. has fallen victim to a business email compromise BEC scam that fleeced the company out of $29 million. Nikkei is Japan’s largest financial media organization and lends its name to Japan’s premier stock index, which is the equivalent of the Dow Jones Industrial Avera...

0.9AI score
Exploits0References12
Trend Micro Simply Security
Trend Micro Simply Security
added 2019/10/11 1:5 p.m.77 views

This Week in Security News: How a Partnership can Advance DevSecOps and Cybersecurity Issues in the Midwest and South U.S.

Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, learn about how Trend Micro’s partnership with Snyk will advance DevSecOps. Also, read about cyber attacks affecting hospitals in Alabama an...

7.5CVSS10AI score0.41589EPSS
Exploits3
Trend Micro Simply Security
Trend Micro Simply Security
added 2019/10/09 1:45 p.m.44 views

Tackling the BEC Epidemic in a New Partnership with INTERPOL

In just a few short years, Business Email Compromise BEC has gone from a peripheral threat to a major cyber risk for organizations. It’s making criminal gangs millions of dollars each month, hitting corporate profits and reputation in the process. Trend Micro has built a formidable array of...

7.3AI score
Exploits0
Rows per page
Query Builder