HackDig : Dig high-quality web security articles

Hotel staff bust Hermes SMS scammer with suspiciously large number of cables

If you’re in the UK, you’ve likely received a fake delivery SMS at this point. The original big driver for this over the pandemic was a non-stop wave of Royal Mail phishing scams. As that article mentions, most if not all of our interactions with organisations is done by mobile. I receive medical appointment updates by phone. Notifications from school? Phone
Publish At:2021-06-22 12:28 | Read:54 | Comments:0 | Tags:Scams cables fake Hermes hotel parcel phish phishing royal m

Why a Phishing Attack Is Still Profitable — And How To Stop One

As the business world continues to grapple with an expanding definition of new normal, the phishing attack remains a common tactic for attackers. Why are phishing attacks still happening? How can we prevent them? We spoke to a threat analyst who has the answers. In May 2020, X-Force research uncovered a precision-targeting (or spear phishing) attack on a Ge
Publish At:2021-06-16 21:14 | Read:121 | Comments:0 | Tags:Incident Response Risk Management Security Services Multifac

Protecting the New Most Vulnerable Population – The Grandparent Scam

In Part 1 of this series, we introduced the concept that the most vulnerable people on the internet are our senior population. According to the FBI, elder fraud impacts millions of American seniors every year. Figures from the United Kingdom show similar levels of criminal activity targeting seniors.Most of the elder fraud schemes are financially d
Publish At:2021-06-14 05:35 | Read:95 | Comments:0 | Tags:Cyber Security cybercrime Fraud Phishing Scams scam

Global Scamdemic: Scams Become Number One Online Crime

Threat hunting and adversarial cyber intelligence company Group-IB published a comprehensive analysis of fraud cases on a global scale. Group-IB,  a global threat hunting and adversarial cyber intelligence company specializing in the investigation and prevention of high-tech cybercrime, has published a comprehensive analysis of fraud cases on a global sca
Publish At:2021-06-10 19:59 | Read:200 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Cybercrime Cybersecurity c

Coronavirus phishing: “Welcome back to the office…”

As offices start to slowly open back up, the theoretically post-pandemic world is changing its threat landscape once again, and that includes the likely inclusion of coronavirus phishing attempts. With the move to remote work, attackers switched up their tactics. Personal devices and home networks became hot targets. Organizations struggled with securing dev
Publish At:2021-06-03 10:55 | Read:188 | Comments:0 | Tags:Scams CIO coronavirus covid-19 covid-19 scams email fake pan

Beware fake online trading apps, on iOS as well as Android

byPaul DucklinRemember how ransomware started?It was all about volume.The CryptoLocker gang, for example, raked in millions of dollars, perhaps even hundreds of millions, by scrambling your files and then extorting you for $300 to unscramble them again.These days, however, the big-money ransomware gangs take a very different approach.They typically go after
Publish At:2021-05-25 12:52 | Read:258 | Comments:0 | Tags:Android Apple Google iOS Malware SophosLabs App Store crypto

Eight suspects busted in raid on “home delivery” scamming operation

byPaul DucklinPolice in the UK have announced the arrest of eight suspected “home delivery” scammers in a bunch of early-morning raids across the south of England.The aptly if not catchily named DCPCU, short for Dedicated Card and Payment Crime Unit, is the law enforcement group behind these busts.As you can imagine, more people than ever are rel
Publish At:2021-05-25 12:52 | Read:311 | Comments:0 | Tags:Law & order bust devlivery scam Royal Mail Scam

A week in security (April 26 – May 2)

Last week on Malwarebytes Labs, we looked at which age range is most likely to be targeted by online predators, talked to Malwarebytes CISO John Donovan on our Lock and Code podcast, and explored the latest deepfake happenings. We also dug into a supply chain attack, discussed threats from a ransomware group, and did a deep dive on wallet recovery code scams
Publish At:2021-05-03 14:29 | Read:321 | Comments:0 | Tags:A week in security a week in security awis infosec malware n

What is Smishing? The 101 guide

Smishing is a valuable tool in the scammer’s armoury. You’ve likely run into it, even if you didn’t know that is its name. It doesn’t arrive by email or social media direct message, instead choosing a route directly aimed at what may be your most personal device: the mobile phone. So, what is Smishing? We’re glad you asked. D
Publish At:2021-04-29 16:29 | Read:325 | Comments:0 | Tags:Mobile fake phish phishing scam smish smishing sms text

Naked Security Live – How to spot “government” scammers

byPaul DucklinSometimes, cybercrooks claim to speak from a higher authority than just a missed home delivery……sometimes they masquerade as an official government body, complete with all the right logos, the right terminology and even a realistic-looking website carefully cloned from the real deal.Learn more about “government” scams an
Publish At:2021-04-19 23:44 | Read:558 | Comments:0 | Tags:Phishing Privacy Video Naked Security Live phishing Scam sec

Sorry, Joe Biden isn’t offering you a work visa, it’s a scam

A US diplomatic mission in Nigeria warns of a visa scam affecting Nigerian citizens looking to move to the United States. It’s an old scam message, dressed up with a fresh coat of paint. Shall we take a look? Fraud Alert!Scammers and fraudsters are circulating a fake “press release” claiming to offer a new type of work visa to Nigerian citizens aged 40-5
Publish At:2021-04-13 08:49 | Read:475 | Comments:0 | Tags:Malwarebytes news e-visa fake Instagram passport scam social

A week in security (March 29 – April 4)

Last week on Malwarebytes Labs, our podcast featured Malwarebytes senior security researcher JP Taggart, who talked to us about why you need to trust your VPN. You’ve likely heard the benefits of using a VPN: You can watch TV shows restricted to certain countries, you can encrypt your web traffic on public WiFi networks, and, importantly, you c
Publish At:2021-04-05 13:17 | Read:544 | Comments:0 | Tags:A week in security "i accidentally reported you" "i accident

Software renewal scammers unmasked

We’ve been tracking a fraudulent scheme involving renewal notifications for several months now. It came to our attention because the Malwarebytes brand as well as other popular names were being used to send fake invoices via email. The concept is simple but effective. You receive an invoice for a product you may or may not have used in the past for
Publish At:2021-03-24 12:24 | Read:394 | Comments:0 | Tags:Cybercrime Social engineering renewal scam tech support

The human impact of a Royal Mail phishing scam

Last week, we looked at a Royal Mail themed scam which has very quickly become the weapon of choice for phishers. It’s pretty much everywhere at this point. Even one of my relatives with a semi-mystical ability to never experience a scam ever, received a fake SMS at the weekend. The problem with common attacks is we grow complacent, or assume it isn’t rea
Publish At:2021-03-23 16:54 | Read:492 | Comments:0 | Tags:Scams account bank banking phish phishing royal mail scam sm

Resident Evil 8 just the latest game plagued by fake demos and early access scams

There’s been a number of scams targeting fans of major upcoming video game releases over the last week or two. Why is this happening, and what can you do to ensure both you and your children avoid such fakeouts? Preview power: the 80s and 90s Back in the 80s, games reviews were only really found in dedicated gaming magazines like ZZap!64 or Amstrad Act
Publish At:2021-03-20 07:00 | Read:617 | Comments:0 | Tags:Scams Beta biomutant consoles cyberpunk 2077 early access fa