August 19, 2019 Phishing Attacks Use Custom 404 Pages to Steal Users’ Microsoft Credentials 2 min read - Fraudsters are launching phishing attacks that use custom 404 pages in an attempt to steal users' Microsoft login credentials.
August 19, 2019 Weekly Security News Roundup: Cerberus Trojan Arrives on Underground Forums 3 min read - Last week in security news, researchers spotted threat actors renting out an Android Trojan called Cerberus on underground forums.
August 14, 2019 Phishing Campaign Distributes Fake Microsoft Account Notifications 2 min read - Attackers are disseminating fake Microsoft account notifications alerting users to supposed "unusual sign-in activity" in a ploy to steal credentials.
August 13, 2019 Sophisticated Dropper Masqueraded as Fake DHL Invoice to Distribute Ursnif Malware 2 min read - Digital attackers took a sophisticated dropper and disguised it as a fake DHL shipping invoice to distribute Ursnif malware.
August 12, 2019 Phishing Campaign Uses DocuSign Branding, S3-Hosted Landing Page to Target Office Credentials < 1 min read - Researchers observed a new phishing campaign that used DocuSign branding and a landing page hosted on Amazon public cloud storage (S3) to steal users' Microsoft Office credentials.
August 12, 2019 Weekly Security News Roundup: WhatsApp Flaws Let Attackers Intercept, Manipulate Messages 3 min read - The world recently learned of new WhatsApp vulnerabilities that allowed a digital attacker to intercept and manipulate messages. Learn what else happened in security news last week.
August 6, 2019 MegaCortex Ransomware v2 Released With Anti-Analysis Features 2 min read - Threat actors have released version 2.0 of MegaCortex ransomware and have equipped their threat with anti-analysis features, among other new capabilities.
August 6, 2019 Phishers Impersonate Engineering License Boards to Target Utilities With LookBack Malware 2 min read - Phishers are impersonating engineering license boards in order to target U.S. utility organizations with LookBack malware.
July 29, 2019 Weekly Security News Roundup: US Company Selling Fully Working BlueKeep Exploit 3 min read - Last week in security news, a U.S. company announced that its penetration tool had incorporated a fully working exploit for the BlueKeep vulnerability.
July 23, 2019 Phishers Use Fake Office 365 Alerts to Compromise Admin Accounts 2 min read - Phishers are launching campaigns that leverage fake Office 365 alerts to compromise administrator accounts.