Phishing Attack - Security Intelligence

news

New XLoader Variant Masquerades as Android Security Apps, iOS Configuration Profile

Security researchers observed a new variant of XLoader masquerading as Android security apps and an iOS configuration profile to target mobile users.

April 3, 2019 | By David Bisson

news

Two nurses entering medical records on a computer: HIPAA breach

news

Personal Health Details of More Than 350,000 Oregonians Potentially Exposed in HIPAA Breach

Unauthorized individuals compromised and potentially exposed more than 350,000 Oregonians' protected health information (PHI) in a HIPAA breach.

March 25, 2019 | By David Bisson

news

Businesswoman checking her email: brute-force attack

news

Brute-Force Attack Wave Uses Legacy Protocols, Credential Dumps to Compromise Cloud Accounts

A massive brute-force attack campaign used both legacy protocols and credential dumps to compromise cloud user accounts, according to security researchers.

March 20, 2019 | By David Bisson

news

Professional working on a laptop in the office targeted with Ursnif banking malware

news

Threat Actor Targets Japanese Users With New Ursnif Variant

Security researchers discovered an attack campaign targeting Japanese users with a new variant of Ursnif banking malware.

March 13, 2019 | By David Bisson

news

Woman using her phone to take a selfie: Instagram hack

news

Instagram Hack Fools Social Media Influencers With Phony ‘Verified’ Badges

Security researchers observed a Turkish-speaking group of cybercriminals using an Instagram hack to extort money, nude photos and other information from social media influencers.

March 5, 2019 | By Shane Schick

news

article

How Fraud Specialist Danna Pelleg Fights Bad Guys With the Best Team in the Business

Danna Pelleg's childhood curiosity, early technology education and compulsion to fight the bad guys led her to a career as a fraud specialist and security operations team lead at IBM Trusteer.

January 30, 2019 | By Security Intelligence Staff

article

Woman using two-factor authentication on her phone to log in to computer

news

New Reverse Proxy Tool Can Bypass Two-Factor Authentication and Automate Phishing Attacks

A new reverse proxy tool called Modlishka can easily automate phishing attacks and bypass two-factor authentication (2FA) — and it's available for download on GitHub.

January 15, 2019 | By Douglas Bonderud

news

Businesswoman checking her email: phishing kit

news

Phishing Kit Uses Custom Web Font to Impersonate Major US Bank

A new phishing kit uses a custom web font to implement a substitution cipher in its campaign to target customers of a major U.S. bank.

January 9, 2019 | By David Bisson

news

Woman using her mobile phone and laptop in cafe: phishing scam

news

Phone-Based Phishing Scam Reveals the Growing Sophistication of Attacks Against Apple Users

A new phone-based phishing scam reveals how fraudsters are devising more sophisticated schemes to prey on Apple device users.

January 7, 2019 | By David Bisson

news

Man using a tablet to check emails: spear phishing emails

news

Threat Actors Utilize Spear Phishing Emails Impersonating US Department of State Employees

Microsoft Windows Defender Research discovered an attack campaign that utilized spear phishing emails impersonating U.S. Department of State employees to gain remote access to victims' machines.

December 20, 2018 | By Shane Schick

news

Spear Phishing Report Card: Perfect Scores in School Security Pen Testing

Google 2FA Approach Turns Android Smartphones Into Security Keys

April Scams May Ruin Plans: Threat Actors Ramp Up for Tax Scam Season

Emotet Variants Hijack Existing Email Conversations to Distribute Malicious Links

Voices of Security

X-Force Red in Action

A Secure Start

On the Front Line With IBM X-Force IRIS

Challenges and Opportunities to Close the Cybersecurity Gap in the Financial Services Industry

How a Cunning Remote Overlay Malware Met Its Match

The US Is Slow to Adopt EHRs, But That Might Actually Be a Good Thing for Healthcare Security

Challenges and Opportunities to Close the Cybersecurity Gap in the Financial Services Industry

Credential Dumping Campaign Hits Multinational Corporations

Cybercriminals Spoof Major Accounting and Payroll Firms in Tax Season Malware Campaigns

Buffer Overflow Vulnerability in TP-Link Routers Can Allow Remote Attackers to Take Control

Podcast: Muscle Memory and Cyber Fitness Training

Podcast: Zero Trust and the Evolving Role of Identity and Access Management

Podcast: Digital Identity Trust, Part 3 — Powering Digital Growth With Digital Identity Trust

Podcast: Monitoring National Cybersecurity Trends With Former NSA Deputy Director Bill Crowell

Webinar: Encryption is the Fastest Way to Protect Data

Webinar: Under the Radar: Live Webinar and Demo

Webinar: Facilitating Secure Hybrid Cloud Adoption with Guardium

Webinar: Are you Ready to Demystify the Dark Web with IBM IRIS?

Tag: Phishing Attack

New XLoader Variant Masquerades as Android Security Apps, iOS Configuration Profile

Personal Health Details of More Than 350,000 Oregonians Potentially Exposed in HIPAA Breach

Brute-Force Attack Wave Uses Legacy Protocols, Credential Dumps to Compromise Cloud Accounts

Threat Actor Targets Japanese Users With New Ursnif Variant

Instagram Hack Fools Social Media Influencers With Phony ‘Verified’ Badges

How Fraud Specialist Danna Pelleg Fights Bad Guys With the Best Team in the Business

New Reverse Proxy Tool Can Bypass Two-Factor Authentication and Automate Phishing Attacks

Phishing Kit Uses Custom Web Font to Impersonate Major US Bank

Phone-Based Phishing Scam Reveals the Growing Sophistication of Attacks Against Apple Users

Threat Actors Utilize Spear Phishing Emails Impersonating US Department of State Employees