Microsoft discovers a phishing attack by a Russian-backed hacker group. They are using compromised Microsoft 365 accounts to pose as tech support in Teams. The group targets govts, NGOs, and more.
Social engineering RSS
_medium.jpg)
Microsoft has officially confirmed that it was indeed compromised by Lapsus group. It has outlined a series of steps that organizations can take to protect themselves and identify malicious activity.
According to former employees, more than a thousand people had access to internal tools that could hand control of Twitter accounts to others. This includes the firm's employees and contractors.
Twitter has revealed what information hackers were able to access during the breach earlier this week. The firm has also clarified the actions it will take going forward to regain users' trust.
A new malware tries to fool users into giving away their credentials by posing as the Uber app and mimicking its UI. Fortunately, it's not very widespread and it's not available on the Play Store.
A security researcher recently discovered a new malware attack on Facebook that uses social engineering. It can even detect a user's system settings so they can be targeted with appropriate adware.
Microsoft is warning everyone shopping online of a new phishing scam that appears to be a billing email. In reality, it contains an attachment that installs the Cerber ransomware.
New ransomware has recently been seen searching victims' computers for illegally downloaded content in addition to social media accounts before threatening them with a bogus penalty notice.
Google has updated its Safe Browsing policies, after the company discovered websites that continue to host malware and phishing content after their website has been reviewed and marked as safe.
A bug in Google Chrome that was discovered in 2014 is now being utilized by tech support scammers. It will freeze a system, and then display a phone number to allegedly fix the problem.
A new ransomware sample was found to be pretending as software from Malwarebytes, a cybersecurity firm. It was found out to be malware called 'DetoxCrypto,' discovered back in August.
An experiment was conducted about security by the Universität Erlangen-Nürnberg in Germany. The study sent scam emails to test subjects, and then measured who would open the links inside the message.
A mirror of KickassTorrents recently returned online, after it was seized because of copyright complains. However, the domain only scams users, attempting to steal personal details.
With the rapid advancement of technology today, the dirty tactics of tech scammers have improved as well. These people are now utilizing lock screens, deeming PC's useless, unless victims pay.
In an effort to lessen fake content on the internet, Google has announced that it will start warning users if they stumble upon websites that try to steal information through deceptive downloads.
As Windows 10 approaches end of life, Microsoft targets more users with full-screen ads
Windows 11 build 27754 is out with modernized Windows Hello, new taskbar features, more
Windows 11 audio bug blasts users with 100% volume, Microsoft confirms
TerraMaster F4-424 Max review: a 10-core Intel i5-1235U, 10 GbE, powerhouse of a NAS
Recommended by 
We're on Mastodon!
We're on Mastodon!