Category

Phishing

Phishing Page 29

phishing attacks, Phishing sites, phishing activity, phishing trend, Phishing kits, campaigns, phishing threat

A new year, an old threat – traditional phishing

It may be a new year but we can be sure that phishing threat will again be upon us.   So far in the first two days of 2017 we have seen the usual suspects being targeted, Apple, PayPal, Amazon, Scotia Bank, ANZ, HSBC, Facebook, the list of targeted phishing is endless…. Phishing first came...
Continue Reading
Shutterstock izoologic

Email remains the default vector for distributing phishing and malware content.

Cybercriminals still use emails to launch the social engineering component of a phishing or malware attack. Email content uses a “call to action’ such as a security update, web payment or refund to lure victims into clicking on the embedded link. Users are routed to fake web content or to download malicious attachment and executables....
Continue Reading
SMiShing

An alternative flavour of SMiShing

SMiShing attacks often leverage a trusted brand to route the victim to a phishing site. An alternative variant of SMiShing is where the spam message contains only a call back number. The message maybe as simple as “Please urgently call back xxxx xxxx xxxx to update your account details” and there is no mention of...
Continue Reading
vishing-arm izoologic

Vishing – a persistent type of Voice Phishing

Vishing, a term that relates to “Voice – Phishing” is a type of social engineering attack that has a high degree of variety.  Vishing takes the form of a criminal using a telephone to make a social engineering attempt against the victim to conduct fraud. Vishing maybe as simple as criminal A – speaking to...
Continue Reading
Domain name spaming

Phishing spam sent from specifically registered domain names bypasses email authentication

Phishing spam is often sent from specifically registered domain names and domain zones to increase the efficacy of the phishing attack. This means that current email authentication systems are readily bypassed. Phishing spam forms the first component of the social engineering attempt. The phishing message must appear like it has come from a legitimate and...
Continue Reading
APWG – Phishing Trends Activity Report

APWG – Phishing Trends Activity Report – Q2 2016 : Summary of Findings

Anti-Phishing Working Group – Phishing Trends Activity Report – Q2 2016 Summary of Findings: The Retail/Service sector remained the most- targeted industry sector during the second quarter of 2016, suffering 43% of attacks The number of brands targeted by phishers in the second quarter remained consistent – ranging from 411 to 425 different brands each...
Continue Reading
Real Time Phishing

Real Time Phishing is Man in the Middle (MitM) attack

Real Time Phishing is a Man-in-the-Middle (MitM) attack that allows the criminal to commit real time fraud. Stolen credentials from the phishing site are used to access the internet bank session in real time. Real time phishing allows the criminal to readily bypass banking authentication protocols. Real time phishing schemes take place over a web...
Continue Reading
Trademark Monitoring

Trademark and Copyright enforcement to protect digital assets

Trademark and Copyright enforcement to protect digital assets. In an online world the digital assets of the business are open to a large range of fraud and abuse. Digital assets can be legally protected via Trademark and Copyright ownership claims. Examples of trademark and copyright infringement are fake websites and phishing sites, unauthorized social media...
Continue Reading
Sending Spoofed Emails for Spear Phishing and Advanced Persistent Threat (APT) attacks.

Sending Spoofed Emails for Spear Phishing and Advanced Persistent Threat (APT) attacks.

Criminals use spoofed email domain from addresses to launch Spear Phishing and Advanced Persistent Threat malware attacks. The “FROM” address of the sender’s email is maliciously changed to the victim’s domain. From the recipients point of view the email looks and feels like an internal email. Cybercriminals can easily send an email to anyone within...
Continue Reading
How effective is browser blocking against phishing sites

Browser blocking of phishing sites – how effective?

Browser blocking of phishing sites – does the browser provide a phishing solution?  iZOOlogic threat detection and analysis engines are sifting through vast amounts of phishing intelligence and malicious data – sourcing literally thousands of new phishing sites each day. All day and every day. iZOOlogic provides a swift response to those phishing sites that...
Continue Reading
1 27 28 29 30 31