HackDig : Dig high-quality web security articles for hackers

S3 Ep14: Money scams, HTTPS by default, and hardcoded passwords [Podcast]

byPaul DucklinWe advise you how to react when a friend suddenly asks for money, explain why Chromium is finally aiming for HTTPS by default, and warn you why you should never, ever hardcode passwords into your software.With Kimberly Truong, Doug Aamoth and Paul Ducklin.Intro and outro music: Edith Mudge.LISTEN NOWClick-and-drag on the soundwaves below to ski
Publish At:2021-01-07 09:31 | Read:82 | Comments:0 | Tags:Podcast https Naked Security Podcast passwords Scam

Facebook ads used to steal 615000+ credentials in a phishing campaign

Cybercriminals are abusing Facebook ads in a large-scale phishing scam aimed at stealing victims’ login credentials. Researchers from security firm ThreatNix spotted a new large-scale campaign abusing Facebook ads. Threat actors are using Facebook ads to redirect users to Github accounts hosting phishing pages used to steal victims’ login credential
Publish At:2021-01-01 20:12 | Read:279 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Social Networks Facebook h

FTC Warns of text-messaging scam claiming to be from UPS, FedEx

We are in the middle of the holiday season, and many of you are probably still expecting packages to be delivered. Whether you are waiting for a parcel from abroad fighting its way through the Covid-19 incapacitated supply chain, or you are getting some last-minute shopping from Target, the likelihood of expecting something via mail is high in this pandemic-
Publish At:2020-12-29 04:40 | Read:185 | Comments:0 | Tags:Mobile News Security holidays Phishing Scam security

Does a friend “need money urgently”? Check your facts before paying out…

byPaul DucklinThanks to Naked Security reader M Carter for their help with this article.Last week, we warned of a Facebook Messenger scam that used a bogus video to lure you onto a phoney Facebook login page.In that scam, the crooks were using stolen Messenger passwords to phish for yet more Messenger passwords by sending messages that genuinely seemed to co
Publish At:2020-12-22 15:13 | Read:280 | Comments:0 | Tags:Phishing Privacy fraud phishing Scam

Naked Security Live – Watch out for Messenger scams

byPaul DucklinHere’s our latest Naked Security Live talk, discussing IM scams and how to avoid them, as well as giving you some pointers on how to think like a scammer and thereby stay one step ahead.Don’t forget that receiving a message from a friend’s account doesn’t always mean your friend actually sent the message – if their
Publish At:2020-12-21 08:01 | Read:249 | Comments:0 | Tags:Phishing Privacy Video Facebook Messenger Messenger phishing

How to Not Fall for a Charity Scam This Holiday Season

This holiday season, many people will turn to charities to give back. The last thing they want to do is give money to scammers instead of a cause they truly support. According to the FBI’s website, charity fraud rises during the holidays, when people choose to make end-of-year tax deductible gifts. “Seasonal charity scams can pose greater diffi
Publish At:2020-12-18 12:47 | Read:186 | Comments:0 | Tags:Fraud Protection holiday Online Fraud Scam

“Is it you in the video?” – don’t fall for this Messenger scam

byPaul DucklinIf you’ve ever wondered why cybercriminals are interested in your IM passwords……well, it’s not just so they can sneak into your account and snoop through your personal data with a view to abusing it themselves or selling it on to someone else who will.Access to your account also gives crooks a level of trusted access to
Publish At:2020-12-17 22:07 | Read:195 | Comments:0 | Tags:Facebook Phishing Messenger phish Scam

Likely lead generation scam targets potential Malwarebytes MSP partners

Recently, Malwarebytes discovered a potential lead generation scam targeting companies that are interested in our Malwarebtyes Managed Service Provider (MSP) Program. In the scam, an individual who used the name “Jenny” aggressively contacted potential MSP partners claiming to represent Malwarebytes. In one instance in New Zealand, “Jenny” repeatedly call
Publish At:2020-12-16 16:36 | Read:195 | Comments:0 | Tags:Scams lead generation lead generation scam Malwarebytes Malw

BEC Scammers Struck Philadelphia Non-Profit Food Bank

Malicious actors used a Business Email Compromise (BEC) scam to prey upon a Philadelphia non-profit food bank.According to The Philadelphia Inquirer, the scam occurred back in July when the hunger relief organization Philabundance was nearing the completion of its $12 million Philabundance Community Kitchen.Nefarious individuals impersonated the construction
Publish At:2020-12-07 11:26 | Read:233 | Comments:0 | Tags:IT Security and Data Protection Latest Security News BEC foo

Lock and Code S1Ep21: Lesson planning your school’s cybersecurity with Doug Levin

This week on Lock and Code, we discuss the top security headlines generated right here on Labs and around the Internet. In addition, we talk to Doug Levin, founder of the K12 cybersecurity resource center and advisor to the K12 Security Information Exchange, about how schools can plan for a cybersecure 2021. Education faced a crisis in the US this year, a
Publish At:2020-12-07 10:50 | Read:158 | Comments:0 | Tags:Podcast deep learning facebook hackers lock and code malware

California inmates stole $140 million in unemployment benefits

California, a state ravaged by wildfires and the Covid-19 pandemic, just got another painful hit. Over the last eleventh months, tens of thousands of inmates submitted fraudulent unemployment claims and successfully managed to scam the government with a number that is upwards of $100 million. The money has already been distributed, and it is unclear if the s
Publish At:2020-11-30 10:22 | Read:201 | Comments:0 | Tags:Panda Security covid-19 Cybercrime Scam

Gift card hack exposed – you pay, they play

byPaul DucklinThanks to Bill Kearney of Sophos Rapid Response for his work on this article.If you’ve read the recent Sophos 2021 Threat Report, you’ll know that we deliberately included a section about all the malware out there that isn’t ransomware.Sure, ransomware understandably hogs the media headlines these days, but cybercriminality go
Publish At:2020-11-24 16:25 | Read:383 | Comments:0 | Tags:Data loss Vulnerability Cybercrime gift cards hacking Scam h

Unprotected database exposed a scam targeting 100K+ Facebook accounts

Researchers discovered an ElasticSearch database exposed online that contained data for over 100000 compromised Facebook accounts. Researchers at vpnMentor discovered an ElasticSearch database exposed online that contained an archive of over 100.000 compromised Facebook accounts. The archive was used by crooks as part of a global hacking campaign against
Publish At:2020-11-16 17:55 | Read:388 | Comments:0 | Tags:Breaking News Cyber Crime Social Networks data leak Elastics

A week in security (November 9 – November 15)

Last week on Malwarebytes Labs, we reported on multiple patch releases: from Mozilla’s Firefox and Thunderbird to Google’s Chrome. We also had a chat with our resident experts, Adam Kujawa and John Donovan, about the future of IoT cybersecurity in our latest Lock and Code podcast episode. Lastly, we took a look at a new ransomware called RegretLo
Publish At:2020-11-16 15:06 | Read:267 | Comments:0 | Tags:A week in security amazon amazon scam android malware BBB Be

Phishers Using Google Drive to Trick People into Visiting Malicious Websites

Reports emerged of phishers having abused a feature in Google Drive in an attempt to trick users into visiting malicious websites.In this scam wave, users reported having received Google Drive notifications in Russian or English asking them to collaborate on unfamiliar documents. Those documents contained links to scam websites.Some of those links tried to e
Publish At:2020-11-02 09:01 | Read:416 | Comments:0 | Tags:IT Security and Data Protection Latest Security News Google

Tools

Tag Cloud