Here we go again. Radware's threat research group recently announced that more than 40,000 Facebook users were duped into downloading a "Relieve Stress Paint" application, via a crafty phishing email, that stole their login credentials and browser cookies while they pretend-painted in the app. Worse, the attack was clever enough to avoid being flagged by a typical antivirus app.
Tagged With phishing
Phishing attacks, wherein scammers pretend to be legitimate companies in order to trick you into handing over sensitive information such as usernames, passwords or credit card information, are getting more difficult to spot. Even Google is susceptible to more sophisticated attacks, which have popped up everywhere from email attachments to shared Google documents.
iOS: Security researcher Felix Krause is killing it this month, if "it" means iPhone users' sense of security. We recently covered two of his security warnings: If you give an app permission to use your camera, it can also track your location and even secretly take photos and videos. Now he points out that if you're not careful, any app could easily steal your Apple ID.
Most security reports are pretty dull. They tell the same story. The bad guys can get into almost any system, spend weeks or months there, exfitrate data and generally run amok. They use social engineering attacks or exploit vulnerabilities to find their way into networks. But the Carbon Black report, released today focusses on something else - the malware marketplace.
You get a new email that looks like it's from a friend, a company, a government official, or even a family member. All that's in that email is a link. You click it, because of course you do. You're taken to a login page, where you enter your credentials. Then, that site turns out to be fake and collects your password. Congratulations, you've been phished.
Oh God, a hacker's on the loose with a new (but familiar) Google Docs phishing scam, and journalists are in the crosshairs.
With a little know-how, most phishing scams are pretty easy to detect. This one, on the other hand, is devilishly clever and just might dupe you if you're not careful.
While big organisations may be used to being targeted by various forms of online attacks, an increasing number of small businesses are falling victim to cybercriminals, according to a security expert from Cisco. He also shared some advice on how small businesses can better protect themselves online.
One of the most popular ways for cybercriminals to steal personal information is by using email phishing scams. Cybercriminals often use this method of attack to trick employees from large organisations into clicking onto malicious links so they can gain access to corporate networks that contain valuable data. Here are 10 tips on how to avoid becoming a email phishing victim.
Chances are if your email or social media account has ever been compromised, you accidentally gave your credentials to the scammers yourself. The most common way to infiltrate an account is called phishing, in which people trick you into handing over your login info to false websites that look legitimate.
This is a very perverse kind of compliment: Australian online retailer Kogan is evidently now well-known enough for cyber-criminals to use it as bait in phishing emails.
Sometimes the best way to avoid phishing is simply knowing what to look for. Ian Paul of PC World recommends checking the salutation if you're unsure about an email.