When Low-Tech Hacks Cause High-Impact Breaches

Web hosting giant GoDaddy made headlines this month when it disclosed that a multi-year breach allowed intruders to steal company source code, siphon customer and employee login credentials, and foist malware on customer websites. Media coverage understandably focused on GoDaddy’s admission that it ...

Continue reading
0 Comments
Tags:
A Little Sunshine escrow.com GoDaddy breach December 2022 GoDaddy breach March 2020 GoDaddy breach November 2020 GoDaddy Breach November 2021 Ne'er-Do-Well News vishing voice phishing Web Fraud 2.0

The Original APT: Advanced Persistent Teenagers

Many organizations are already struggling to combat cybersecurity threats from ransomware purveyors and state-sponsored hacking groups, both of which tend to take days or weeks to pivot from an opportunistic malware infection to a full blown data breach. But few organizations have a playbook for res...

Continue reading
0 Comments
Tags:
A Little Sunshine Advanced Persistent Teenagers Amit Yoran APT CISA fbi LAPSUS$ microsoft Ne'er-Do-Well News NVIDIA Okta Samsung Tenable The Coming Storm Twitter hack vishing voice phishing wired

GoDaddy Employees Used in Attacks on Multiple Cryptocurrency Services

Fraudsters redirected email and web traffic destined for several cryptocurrency trading platforms over the past week. The attacks were facilitated by scams targeting employees at GoDaddy, the world’s largest domain name registrar, KrebsOnSecurity has learned. The incident is the latest incursion at ...

Continue reading
0 Comments
Tags:
A Little Sunshine Bibox Celcius.network Dan Race Farsight Security GitHub GoDaddy Namecheap phishing privateemail.com Slack vishing Web Fraud 2.0 Wirex.app

Two Charged in SIM Swapping, Vishing Scams

Two young men from the eastern United States have been hit with identity theft and conspiracy charges for allegedly stealing bitcoin and social media accounts by tricking employees at wireless phone companies into giving away credentials needed to remotely access and modify customer account informat...

Continue reading
0 Comments
Tags:
Champagne Jordan K. Milleson Kyell A. Bryan Ne'er-Do-Well News ogusers SIM swapping SWATting vishing Web Fraud 2.0

FBI, CISA Echo Warnings on ‘Vishing’ Threat

The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) on Thursday issued a joint alert to warn about the growing threat from voice phishing or “vishing” attacks targeting companies. The advisory came less than 24 hours after KrebsOnSecu...

Continue reading
0 Comments
Tags:
CISA COVID-19 fbi Latest Warnings Security Tools The Coming Storm vishing

Voice Phishers Targeting Corporate VPNs

The COVID-19 epidemic has brought a wave of email phishing attacks that try to trick work-at-home employees into giving away credentials needed to remotely access their employers’ networks. But one increasingly brazen group of crooks is taking your standard phishing attack to the next level, m...

Continue reading
0 Comments
Tags:
Allison Nixon domaintools Latest Warnings Security Keys The Coming Storm Unit 221B urlscan.io vishing VPN phishing Yubico Yubikey Zack Allen ZeroFOX

Voice Phishing Scams Are Getting More Clever

Most of us have been trained to be wary of clicking on links and attachments that arrive in emails unexpected, but it’s easy to forget scam artists are constantly dreaming up innovations that put a new shine on old-fashioned telephone-based phishing scams. Think you’re too smart to fall ...

Continue reading
0 Comments
Tags:
A Little Sunshine Cabel Sasser caller ID spoofing Latest Warnings Matt Haughey MetaFilter Panic Inc. phone phishing Slack The Coming Storm vishing

logo color

Quick Links

Resources