Phishing Attack Archives - GBHackers Security | #1 Globally Trusted Cyber Security News Platform

New Android Malware SpyAgent Taking Screenshots Of User’s Devices

Aman Mishra — Mon, 11 Nov 2024 11:02:45 +0000

SpyAgent, a newly discovered Android malware, leverages OCR technology to extract cryptocurrency recovery phrases from screenshots stored on infected devices. By stealthily capturing screenshots, the malware bypasses traditional security measures that rely on text-based detection, which allows it to efficiently identify and exfiltrate sensitive information, posing a significant threat to cryptocurrency users. Cybercriminals are employing […]

The post New Android Malware SpyAgent Taking Screenshots Of User’s Devices appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Beware Of Weaponized Excel Document That Delivers Fileless Remcos RAT

Aman Mishra — Fri, 13 Sep 2024 09:11:22 +0000

A recent advanced malware campaign leverages a phishing attack to deliver a seemingly benign Excel file that exploits CVE-2017-0199. By exploiting this vulnerability in Microsoft Office, attackers are able to embed malicious code within the file using OLE objects. It utilizes encryption and obfuscation techniques to conceal the malicious payload. Upon opening the file, the […]

The post Beware Of Weaponized Excel Document That Delivers Fileless Remcos RAT appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Remcos RAT Distributed As UUEncoding (UUE) File To Steal Logins

Aman Mishra — Tue, 11 Jun 2024 12:26:07 +0000

Researchers identified a campaign distributing Remcos RAT, a Remote Access Trojan, where the attack uses phishing emails disguised as legitimate business communication, such as import/export or quotations. The emails contain a UUEncoded (UUE) file compressed with Power Archiver, which likely contains the Remcos RAT downloader, which once executed would allow attackers remote access to the […]

The post Remcos RAT Distributed As UUEncoding (UUE) File To Steal Logins appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Beware! Disguised Adobe Reader Installer That Installs Infostealer Malware

Gurubaran — Wed, 13 Mar 2024 02:49:40 +0000

An infostealer disguised as the Adobe Reader installation has been observed. The file is disseminated in PDF format and prompts users to download and run it. The fake PDF file, according to AhnLab Security Intelligence Center (ASEC), is written in Portuguese and instructs users to download and install Adobe Reader. It urges users to download and install […]

The post Beware! Disguised Adobe Reader Installer That Installs Infostealer Malware appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Massive Phishing Campaign Uses 6,000 Sites to Mimic Popular Brands

Gurubaran — Wed, 14 Jun 2023 09:47:59 +0000

Bolster’s threat research team recently discovered an extensive brand impersonation effort targeting over 100 well-known clothes, footwear, and apparel firms. The peak phishing activity for this campaign occurred between November 2022 and February 2023, after becoming active around June 2022. Nike, Puma, Asics, Vans, Adidas, Columbia, Superdry Converse, Casio, Timberland, Salomon, Crocs, Sketchers, The North […]

The post Massive Phishing Campaign Uses 6,000 Sites to Mimic Popular Brands appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Shut Down Phishing Attacks – Types, Methods, Detection, Prevention Checklist

Cyber Writes — Wed, 31 May 2023 13:19:23 +0000

In today’s interconnected world, where digital communication and transactions dominate, phishing attacks have become an ever-present threat. By masquerading as trustworthy entities, phishing attacks deceive users and organizations into divulging sensitive information, such as passwords, financial data, and personal details. Phishing attacks, among the most prevalent techniques cyber criminals employ, can be straightforward yet highly […]

The post Shut Down Phishing Attacks – Types, Methods, Detection, Prevention Checklist appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

New Phishing Attack Abuses .Zip Domain to Emulate Fake WinRAR Within the Browser

Gurubaran — Tue, 30 May 2023 05:04:21 +0000

A phishing attack that involved mimicking a browser-based file archiver software like WinRAR using a .zip domain to enhance its credibility.

The post New Phishing Attack Abuses .Zip Domain to Emulate Fake WinRAR Within the Browser appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Telegram – New Market Place for Selling Phishing Toolkits & Services

Gurubaran — Fri, 07 Apr 2023 06:36:07 +0000

Telegram is becoming an increasingly popular platform for users as well as cyber-criminals. It has become a Mini Dark-web since 2021 when cyber threat actors have been using them. The services these threat actors offer vary from Automation of Phishing, selling Phishers kits, and setting up a custom phishing campaign for everyone willing to pay. […]

The post Telegram – New Market Place for Selling Phishing Toolkits & Services appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Beware! Massive YouTube Campaign Aimed to Steal Login Credentials

Balaji — Tue, 15 Nov 2022 02:58:55 +0000

There was an extensive phishing campaign that took advantage of YouTube as a vehicle for promoting the download and installation of cracked software and free games. In this campaign, attackers are abusing video tutorial that has the intention of tricking users into believing that the link provided in the video description is a link that […]

The post Beware! Massive YouTube Campaign Aimed to Steal Login Credentials appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Phishing-as-a-Service Platform Lets Anyone Launch Own Phishing Campaigns

Balaji — Tue, 11 Oct 2022 13:51:35 +0000

With the release of the PhaaS platform called ‘Caffeine’, threat actors can now easily launch their own sophisticated phishing attacks. Anyone who wants to start their own phishing campaign will be able to register on this platform through an open registration process. Caffeine has been thoroughly tested by the analysts at Mandiant. This is a […]

The post Phishing-as-a-Service Platform Lets Anyone Launch Own Phishing Campaigns appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.