#Phishing attacks are ramping up, and the most popular brands are in the crosshairs. We had released a deep dive into the DNS artifacts connected to the top 20 most phished brands of 2024. Want to know what we uncovered? Get a low down here: https://lnkd.in/duAZK3ft #cybersecurity #threatintelligence
Cool. IMO, the most phished brand in 2024 is definitely USPS.
Microsoft 365 users beware! Click below to read the article about the latest phishing campaign.
#Microsoft #Office 365 users beware! #Phishing campaign targets logins. Don't click suspicious links, enable #2FA, and report scams. Stay safe online! Learn more on our site: https://lnkd.in/emq4nhKY #Office365Phishing #Cybersecurity #ProtectYourData
SlashNext introduces Project Phantom, a revolutionary zero-trust stealth mode browser. By bypassing CAPTCHA obfuscation, Phantom delivers unmatched protection against phishing and malware. Learn how they're combating today's most sophisticated threats. #Cybersecurity #Phishing #Malware #Innovation #Slashnext
🔍Social engineers are thinking of new ways to get you to click malicious links... In a recent IT Brew article, the spotlight is on how #cybercriminals are turning #URLprotection services against themselves. With more people becoming savvy to the dangers of #suspiciouslinks, attackers are getting creative—using services like TinyURL to mask malicious URLs. We all know the importance of checking URLs before clicking, but these shortened links can make that difficult. The reality is that while your security tools, like a #DNSfilter, should block these threats, the goal of the attacker is to get you to click before the #domain is flagged by the broader threat community. Read more here: https://hubs.la/Q02LYjB00 #Cybersecurity #Phishing #DNSfiltering #SecurityAwareness
Product Owner / Engineer / Digital Operations & Systems Reliability / Technical & Incident Support / Project & Change Management
This is an interesting read about a phishing campaign which exploits Nespresso's open redirect vulnerability, using compromised accounts to send emails appearing as Microsoft authentication requests. Victims are directed to a fake verification page hosted on Nespresso's domain, then redirected to a spoofed Microsoft login page to steal credentials. #phishing #security #scams
Watch out as Fake #Dropbox emails are being abused for phishing to steal credentials and malware to infect devices in a series of new attacks. Learn more: https://lnkd.in/enzXtnny #CyberSecurity #Phishing #Malware #SaaS
Recovering Geek, Cybersecurity Community Organiser, Purveyor of Cybersecurity Services and Technology
This is a good collection of the latest and hottest content across the #cybersecurity industry. If you have not subscribed yet, I would recommend you do. #subscribe
We are thrilled to announce the release of this week's edition of "CyberBakery Chronicles" – a series of creative and engaging articles, stories, and discussions on cybersecurity! Join us as we explore the latest cybersecurity news, views, and updates. Stay tuned for insightful content that will keep you informed and inspired. hashtag #Cybersecurity hashtag #CyberBakery hashtag #CyberBakeryChronicles hashtag #TechSecurity
Cyber Security Report 🕵️♂️ According to a new report by Netskope, cybercriminals are turning to #cloud apps for their malicious activities, accounting for 19% of all clicks on spearphishing links! 😱🔒 The report also explains the attackers' targets according to their financial or geopolitical motivations. Stay informed and safeguard your digital space! Read the full report here: https://buff.ly/40ZUqSc #CloudSecurity #CyberThreats #StaySecure 🛡️
Microsoft 365 users beware! Click below to read the article about the latest phishing campaign.
#Microsoft #Office 365 users beware! #Phishing campaign targets logins. Don't click suspicious links, enable #2FA, and report scams. Stay safe online! Learn more on our site: https://lnkd.in/emq4nhKY #Office365Phishing #Cybersecurity #ProtectYourData
This is an example of the next generation of #phishing attacks that can defeat Multi-Factor-Authentication (MFA). This is exactly what we predicted in Oct 2022 when we wrote this article: “Multi-Factor Authentication will soon be useless” https://lnkd.in/gjQZdaPX #cybersecurity
CIPP/E Privacy & GRC Officer at Realtime Register B.V.
1dWhat a weird article. 3,120 branded domains, 12 of which turned out to be malicious. That sounds pretty low. Reading further: Our bulk WHOIS lookup for the 20 most phished brands revealed that telegram[.]org and sparkasse[.]de had redacted WHOIS records, which meant exclusion from further investigation. We would not be able to determine which telegram- and sparkasse-containing domains could be publicly attributed to Telegram and the Sparkasse Financial Group. I mean that is kinda of obvious, right? Most data is redacted due to GDPR. And basically, you have two types of trademark infringers. The ones that are poorly educated and do not do real harm. And then you have the criminals who got awesome OPSEC so even if that data is not redacted it will not help much. Plus they use brands as a lure, which is somewhat expected when it comes to criminals. And why does redacted WHOIS data mean exclusion from further investigation? There are so many other data points that could warrant an investigation and provide evidence. When you look at Telegram and Sparkasse phishing, which is rather rampant it is pretty easy to reverse search phishing and when it comes to Sparkasse we are talking 10.000+ domains.