Tag: spear-phishing
-
Russia-linked Gamaredon targets Ukraine with Remcos RAT
by
in SecurityNews
Tags: apt, attack, cyberespionage, group, phishing, powershell, rat, russia, spear-phishing, ukraineRussia-linked Gamaredon targets Ukraine with a phishing campaign using troop-related lures to deploy the Remcos RAT via PowerShell downloader. Talos researchers warn that Russia-linked APT group Gamaredon (a.k.a. Armageddon, Primitive Bear, ACTINIUM, Callisto) targets Ukraine with a phishing campaign. The cyberespionage group is behind a long series of spear-phishing attacks targeting Ukrainian entities, and organizations related…
-
Gamaredon Hackers Weaponize LNK Files to Deliver Remcos Backdoor
by
in SecurityNewsCisco Talos has uncovered an ongoing cyber campaign by the Gamaredon threat actor group, targeting Ukrainian users with malicious LNK files to deliver the Remcos backdoor. Active since at least November 2024, this campaign employs spear-phishing tactics, leveraging themes related to the Ukraine conflict to lure victims into executing the malicious files. The LNK files,…
-
SvcStealer Malware Strikes, Harvesting Sensitive Data from Browsers and Applications
by
in SecurityNews
Tags: attack, cyber, cybersecurity, data, email, malicious, malware, phishing, spear-phishing, threatA new strain of malware, known as SvcStealer, has emerged as a significant threat in the cybersecurity landscape. This malware is primarily delivered through spear phishing attacks, where malicious attachments are sent via email to unsuspecting victims. The SvcStealer campaign was first observed in late January 2025 and has been designed to harvest a wide…
-
A Persistent Threat in the Age of AI dup
by
in SecurityNews
Tags: ai, attack, awareness, cyber, cybercrime, intelligence, phishing, spear-phishing, threat, toolPhishing is one of the most common and dangerous cyber threats facing organizations today. Despite growing awareness, employees often still fall victim to these attacks. Even worse, cybercriminals now have more sophisticated tools at their disposal fueled by artificial intelligence (AI). What once required a team of attackers to conduct a spear-phishing attack can […]…
-
Ukrainian military targeted in new Signal spear-phishing attacks
by
in SecurityNewsUkraine’s Computer Emergency Response Team (CERT-UA) is warning about highly targeted attacks employing compromised Signal accounts to send malware to employees of defense industry firms and members of the country’s army forces. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/ukrainian-military-targeted-in-new-signal-spear-phishing-attacks/
-
A Persistent Threat in the Age of AI
by
in SecurityNews
Tags: ai, attack, awareness, cyber, cybercrime, intelligence, phishing, spear-phishing, threat, toolPhishing is one of the most common and dangerous cyber threats facing organizations today. Despite growing awareness, employees often still fall victim to these attacks. Even worse, cybercriminals now have more sophisticated tools at their disposal fueled by artificial intelligence (AI). What once required a team of attackers to conduct a spear-phishing attack can […]…
-
Studie: Fertigungsbranche häufigstes Ziel von SpearAngriffen
by
in SecurityNewsAktuelle Studienergebnisse belegen, dass die Fertigungsbranche das Hauptziel von Spear-Phishing-Angriffen ist. In den vergangenen sechs Monaten entfielen nicht weniger als 41 Prozent aller verifizierten Sicherheitsalarme in diesem Sektor auf diese Angriffsmethode. First seen on itsicherheit-online.com Jump to article: www.itsicherheit-online.com/news/cybersecurity/studie-fertigungsbranche-haeufigstes-ziel-von-spear-phishing-angriffen/
-
Fertigungsbranche am häufigsten mit SpearAngriffen konfrontiert
by
in SecurityNewsKürzlich ist eine neue Studie über Cyberangriffe auf Industrieunternehmen erschienen, der zufolge Unternehmen der Fertigungsbranche in den vergangenen sechs Monaten am häufigsten mit Spear-Phishing-Angriffen attackiert worden sind. Ganze 41 Prozent aller ‘True-Positive”-Alarmmeldungen der Branche entfielen auf diesen Angriffstyp. Spear Phishing-Angriffe erfolgen, im Gegensatz zu einfachen Phishing-Angriffen, zielgerichtet auf einzelne Personen oder Organisationen. Sie ermöglichen es…
-
Arten von Spoofing-Angriffen
by
in SecurityNewsIm Frühjahr 2024 warnte das FBI die US-Bürger vor einer Spear-Phishing-Kampagne durch staatlich unterstützte nordkoreanische Bedrohungsakteure. Durch die Ausnutzung eines inkorrekt konfigurierten E-Mail-Sicherheitsprotokolls (DMARC, Domain-Based Message Authentication, Reporting, and Conformance) umgingen die nordkoreanischen Hacker Sicherheitsvorkehrungen, die bei ordnungsgemäßer Aktivierung und Durchsetzung dazu beitragen, E-Mail-Domänen vor unbefugter Nutzung zu schützen. So war es ihnen möglich, über…
-
Microsoft 365 accounts targeted in device code spear-phishing scheme
by
in SecurityNewsFirst seen on scworld.com Jump to article: www.scworld.com/news/microsoft-365-accounts-targeted-in-device-code-spear-phishing-scheme
-
Kimsuky APT group used custom RDP Wrapper version and forceCopy stealer
by
in SecurityNews
Tags: apt, attack, control, group, intelligence, kaspersky, korea, north-korea, phishing, spear-phishingResearchers spotted North Korea’s Kimsuky APT group launching spear-phishing attacks to deliver forceCopy info-stealer malware. Researchers from AhnLab Security Intelligence Center (ASEC) observed North Korea’s Kimsuky APT group conducting spear-phishing attacks to deliver forceCopy info-stealer malware. Kimsuky cyberespionage group (aka ARCHIPELAGO, Black Banshee, Thallium, Velvet Chollima, APT43) was first spotted by Kaspersky researchers in 2013. The group works under the control…
-
Kimsuky Group Leverages RDP Wrapper for Persistent Cyber Espionage
by
in SecurityNewsThe notorious North Korean APT group Kimsuky has continued its cyber espionage operations, leveraging spear-phishing attacks and remote First seen on securityonline.info Jump to article: securityonline.info/kimsuky-group-leverages-rdp-wrapper-for-persistent-cyber-espionage/
-
North Korean APT Kimsuky Uses forceCopy Malware to Steal Browser-Stored Credentials
by
in SecurityNews
Tags: apt, attack, credentials, email, group, hacking, intelligence, korea, malware, microsoft, north-korea, office, phishing, spear-phishing, windowsThe North Korea-linked nation-state hacking group known as Kimsuky has been observed conducting spear-phishing attacks to deliver an information stealer malware named forceCopy, according to new findings from the AhnLab Security Intelligence Center (ASEC).The attacks commence with phishing emails containing a Windows shortcut (LNK) file that’s disguised as a Microsoft Office or PDF document. First…
-
Hacker nehmen Diplomaten ins Visier
by
in SecurityNewsDie russische Hackergruppe Star Blizzard hat offenbar eine neue Spear-Phishing-Kampagne gestartet, um WhatsApp-Accounts von hochrangigen Diplomaten und politisch aktiven Personen zu kompromittieren. First seen on 8com.de# Jump to article: www.8com.de#
-
AI-supported spear phishing fools more than 50% of targets
by
in SecurityNewsFirst seen on thesecurityblogger.com Jump to article: www.thesecurityblogger.com/ai-supported-spear-phishing-fools-more-than-50-of-targets/
-
Star Blizzard Shifts Tactics: Spear-Phishing Campaign Targets WhatsApp Accounts
by
in SecurityNewsMicrosoft Threat Intelligence has uncovered a new spear-phishing campaign orchestrated by the Russian threat actor known as Star First seen on securityonline.info Jump to article: securityonline.info/star-blizzard-shifts-tactics-spear-phishing-campaign-targets-whatsapp-accounts/
-
Star Blizzard hackers abuse WhatsApp to target high-value diplomats
by
in SecurityNewsRussian nation-state actor Star Blizzard has been running a new spear-phishing campaign to compromise WhatsApp accounts of targets in government, diplomacy, defense policy, international relations, and Ukraine aid organizations. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/star-blizzard-hackers-abuse-whatsapp-to-target-high-value-diplomats/
-
Forscher: KI sorgt für effektiveres Phishing
by
in SecurityNewsWie wirksam ist per LLM automatisch erzeugtes Phishing? Es ist gleichauf mit menschlich erzeugtem Spear-Phishing, sagen Forscher. First seen on heise.de Jump to article: www.heise.de/news/Forscher-KI-sorgt-fuer-effektiveres-Phishing-10232370.html
-
New Python NodeStealer Attacking Facebook Business To Steal Login Credentials
by
in SecurityNews
Tags: business, credentials, credit-card, cyber, data, email, finance, login, malicious, malware, phishing, powershell, spear-phishing, threatNodeStealer, initially a JavaScript-based malware, has evolved into a more sophisticated Python-based threat that targets Facebook Ads Manager accounts, stealing sensitive financial and business data in addition to credit card details and browser information. The malware is delivered through spear-phishing emails with malicious links, uses DLL sideloading and encoded PowerShell for stealthy execution, and exfiltrates…
-
Cybercriminals Go Mobile: Executives Targeted in Advanced Phishing Campaigns
by
in SecurityNewsCybercriminals are targeting corporate executives with highly advanced mobile spear phishing attacks, leveraging sophisticated evasion techniques and exploiting the inherent vulnerabilities of mobile devices, a new report reveals. In today’s... First seen on securityonline.info Jump to article: securityonline.info/cybercriminals-go-mobile-executives-targeted-in-advanced-phishing-campaigns/
-
Earth Koshchei’s Rogue RDP Campaign: A Sophisticated APT Attack Targets Governments and Enterprises
by
in SecurityNewsTrend Micro has unveiled a large-scale rogue remote desktop protocol (RDP) campaign conducted by the threat group Earth Koshchei. Known for their espionage operations, Earth Koshchei leveraged spear-phishing emails and... First seen on securityonline.info Jump to article: securityonline.info/earth-koshcheis-rogue-rdp-campaign-a-sophisticated-apt-attack-targets-governments-and-enterprises/
-
Mobile Spear Phishing Targets Executive Teams
by
in SecurityNewsOver the past few months, enterprises have observed a pattern of sophisticated spearphishing attempts targeting their executives, with some specifically targeting their mobile devices. Our blog shares the details. First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/12/mobile-spear-phishing-targets-executive-teams/
-
KI-gestützte Cybersicherheit 10 Prognosen für das Jahr 2025
by
in SecurityNewsSchon seit vielen Jahren warnen Cybersicherheitsexperten auf der ganzen Welt vor den Gefahren KI-gestützter Cyberangriffe. Langsam werden diese Warnungen nun Realität. In diesem Jahr kam KI noch vor allem in Deepfake-, Phishing- und Spear Phishing-Kampagnen zum Einsatz. Für die kommenden Jahre ist aber mit einem deutlichen Anstieg der Anwendungsfälle zu rechnen. KI-gestützte Cyberangriffe werden mehr…
-
Five Ways Spear Phishing Tactics are Evolving in 2025
by
in SecurityNewsWhat type of phishing became very effective around 2010 and still worries security teams today? Spear phishing. Spear phishing remains highly effective and is getting more dangerous by the day. What is spear phishing? What new technologies and methods will attackers use to get around common defenses? How will they become more precise and convincing?……