Email security

Advanced spearphishing attacks target US schools

SC StaffMarch 8, 2024

Both Tycoon and Storm-1575 have also been leveraging adversary-in-the-middle phishing to circumvent multifactor authentication protections.

The word "cybercrime" is illuminated in a red on a computer keyboard

Ransomware

FBI: Cybercrime cost Americans over $12.5B in 2023

Simon HenderyMarch 7, 2024

Reported losses suffered by U.S. victims of ransomware attacks jumped 74% last year, according to the agency’s latest IC3 annual report.

Rogue QuickBooks, PayPal accounts used in novel phishing attacks

Email security

New BEC attacks involve US agency spoofing

SC StaffMarch 7, 2024

Intrusions by TA4903, which have ramped up since the second half of last year, involved the delivery of malicious PDF document attachments spoofing government entities.

Network Security

Windows NTLM hashes targeted in novel IAB attacks

SC StaffMarch 5, 2024

Organizations have been subjected to attacks by initial access broker TA577, also known as Hive0118, aimed at exfiltrating Windows NT LAN Manager authentication data.

Magnifying glass found the Russia map among computer binary code

Network Security

Russian cyberespionage group APT29 targeting cloud vulnerabilities

Simon HenderyFebruary 27, 2024

The Russian hacking group switched to attacking cloud-hosted networks to gain initial access.

A person using a laptop to manage email marketing and improve client engagement and communication strategies. Efficient online interaction for business growth. Ai generative.

Network Security

‘SubdoMailing’ manipulates subdomains to send spam, malicious emails

Steve ZurierFebruary 26, 2024

Guardio Labs researchers say popular tech brands exploited include MSN, VMware, McAfee and eBay.

Email security

Secure email gateways increasingly evaded by malicious emails

SC StaffFebruary 21, 2024

Over 1.5 million malicious emails have evaded secure email gateways in 2023, representing a 37% and 310% growth over 2022 and 2021, respectively, reports SiliconAngle.

Network Security

Nearly 79K emails compromised in UK district council insider breach

SC StaffFebruary 21, 2024

The UK's Stratford-on-Avon District Council reported that almost 79,000 email addresses have been stolen as part of an insider data breach in November, according to The Register.

Email security

Advanced spearphishing attacks target US schools

FBI: Cybercrime cost Americans over $12.5B in 2023

New BEC attacks involve US agency spoofing

Windows NTLM hashes targeted in novel IAB attacks

Russian cyberespionage group APT29 targeting cloud vulnerabilities

‘SubdoMailing’ manipulates subdomains to send spam, malicious emails

Secure email gateways increasingly evaded by malicious emails

Nearly 79K emails compromised in UK district council insider breach

Fast Five

Selected by the SC Media Editorial team every Tuesday.