ANCIBE

Noticias Information Security Buzz (English)

Expert Reaction On Office 365 Users Targeted In SurveyMonkey Phishing Attack
Publicado el: Thursday July 09, 2020

Researchers at Abnormal Security have uncovered attempts to steal Office 365 user credentials on the pretext of conducting surveys among employees. In the campaign, the victim receives an email from a genuine SurveyMonkey site, but the message contains a hidden link, which upon clicking, redirects the victim to a Microsoft form submission page. The user has to submit …

The ISBuzz Post: This Post Expert Reaction On Office 365 Users Targeted In SurveyMonkey Phishing Attack appeared first on Information Security Buzz.


Expert Commentary: Casino App Clubillion Leaks PII On “Millions” Of Users
Publicado el: Thursday July 09, 2020

Researchers at vpnMentor discovered the unsecured database hosted on AWS as part of a broader web mapping project and quickly traced it back to casino app Clubillion in March. The online database, which was finally secured on April 5, was updated with huge amounts of users’ personal information every single day: in the region of …

The ISBuzz Post: This Post Expert Commentary: Casino App Clubillion Leaks PII On “Millions” Of Users appeared first on Information Security Buzz.


Experts Reaction On Fake TikTok links Injected With Malware
Publicado el: Thursday July 09, 2020

The Maharashtra Cyber Police warned citizens not to click on Tiktok links as they may contain malware aimed at capturing user data. An official told PTI that the department had found that fraudsters were creating fake Tiktok Pro links to snare people who want to download the video-sharing device that is now banned in the country along …

The ISBuzz Post: This Post Experts Reaction On Fake TikTok links Injected With Malware appeared first on Information Security Buzz.


Experts On Microsoft Warns of Office 365 Phishing Via Malicious OAuth Apps
Publicado el: Thursday July 09, 2020

Microsoft warns that with the shift to remote working, customers are exposed to additional security threats such as consent phishing, besides conventional credential theft and email phishing attacks. Consent phishing is a variant of application-based attack where the targets are tricked into providing malicious Office 365 OAuth applications (web apps registered by the attackers with …

The ISBuzz Post: This Post Experts On Microsoft Warns of Office 365 Phishing Via Malicious OAuth Apps appeared first on Information Security Buzz.


CEO on Police are Buying Access to Hacked Website Data
Publicado el: Thursday July 09, 2020

Tech news site Motherboard obtained webinar slides by a company called SpyCloud presented to prospective customers. In that webinar, the company claimed to “empower investigators from law enforcement agencies and enterprises around the world to more quickly and efficiently bring malicious actors to justice.” The slides were shared by a source who was concerned about law …

The ISBuzz Post: This Post CEO on Police are Buying Access to Hacked Website Data appeared first on Information Security Buzz.


Experts Insight On New Dark Web Audit Reveals 15 Billion Stolen Logins
Publicado el: Thursday July 09, 2020

A new report has revealed the true extent of stolen account logins to be found circulating on the dark web amongst cybercriminals. The Digital Shadows Photon Research team has spent 18 months auditing criminal forums and marketplaces across the dark web and found that the number of stolen usernames and passwords in circulation has increased by …

The ISBuzz Post: This Post Experts Insight On New Dark Web Audit Reveals 15 Billion Stolen Logins appeared first on Information Security Buzz.


Expert Reaction On Cosmic Lynx 200 BEC Attacks Responsible For More Than 200 BEC Attacks Against Multinational Corporations
Publicado el: Wednesday July 08, 2020

Researchers at Agari  say that Cosmic Lynx, a new group believed to be from the Russian cybercriminal space, is responsible for more than 200 BEC attacks since July 2019 and shows operational complexity not seen before with other BEC actors.   Cosmic Lynx focuses on multinational corporations and tries to score big, asking for large sums (hundreds …

The ISBuzz Post: This Post Expert Reaction On Cosmic Lynx 200 BEC Attacks Responsible For More Than 200 BEC Attacks Against Multinational Corporations appeared first on Information Security Buzz.


Mozilla Suspends Firefox Send Service – Cybsecurity Expert Reaction
Publicado el: Wednesday July 08, 2020

As reported by ZDNet, Mozilla has temporarily suspended the Firefox Send file-sharing service as the organization investigates reports of abuse from malware operators and while it adds a “Report abuse” button. The browser maker took down the service today after ZDNet reached out to inquire about Firefox Send’s increasing prevalence in current malware operations. Mozilla launched …

The ISBuzz Post: This Post Mozilla Suspends Firefox Send Service – Cybsecurity Expert Reaction appeared first on Information Security Buzz.


US Secret Service Reports An Increase In Hacked Managed Service Providers
Publicado el: Wednesday July 08, 2020

It has been reported the US Secret Service sent out a security alert last month to the US private sector and government organisations warning about an increase in hacks of managed service providers (MSPs). In a security alert sent out on June 12, Secret Service officials said their investigations team (GIOC — Global Investigations Operations Center) has been seeing …

The ISBuzz Post: This Post US Secret Service Reports An Increase In Hacked Managed Service Providers appeared first on Information Security Buzz.


Expert Warns On Undeletable Malware Crippling Mobile Phone Users
Publicado el: Wednesday July 08, 2020

It has been reported that almost 15 percent of the Android users who were targeted with mobile adware or malware last year were left with undeletable files. It was discovered that several preinstalled adware on Android devices carrying Trojans, loaders, and other malware on top of their “legitimate” payload. Adware is a type of malware that hides itself on …

The ISBuzz Post: This Post Expert Warns On Undeletable Malware Crippling Mobile Phone Users appeared first on Information Security Buzz.