BleepingComputer reports that threat actors have leveraged TeamViewer and fake support chats in a new cryptocurrency stealing phishing campaign that evades multi-factor authentication to compromise Coinbase, Crypto.com, MetaMask, and KuCoin accounts.
A new survey of security professionals around the globe finds that the vast of majority of respondents say they are concerned their organization will successfully be attacked in the next year.
Countries in the Middle East experienced a twofold increase in email-based phishing attacks last month prior to the kickoff of the World Cup in Qatar, with many of the emails spoofing the FIFA help desk and ticketing office, as well as team departments and managers, reports The Record, a news site by cybersecurity firm Recorded Future.
Unit 42 researchers said the campaign is expanding in scope and will continue to escalate because of the low per-target cost, low risk of detection, and fast monetization.
North Americans shopping online are being subjected to a new sophisticated phishing kit with detection aversion techniques that leverages holiday-focused lures since September, BleepingComputer reports.
Threat actors have been exploiting a DLL hijacking vulnerability in the Windows 10 Control Panel executable in new phishing attacks deploying the QBot malware, also known as QakBot, reports BleepingComputer.
Deep Instinct researchers say just because security pros don’t see a prevalence of infections from a specific group, it doesn’t mean the threat actors aren’t maintaining a presence or monitoring devices.
