Twilio, a major provider of cloud communications services, uncovered a security breach last week that affected 125 of its customers, whose data was briefly accessed by malicious actors, BleepingComputer reported.
An ongoing phishing campaign is targeting the healthcare sector with malspam emails that appear as legitimate Evernote sites, in an attempt to harvest credentials.
More than $86 million in NFT value has been stolen since 2020, according to Comparitech researchers, who have been tracking NFT thefts for more than two years.
The Hacker News reports that Quantum, Silent Ransom, and Roy/Zeo, three autonomous threat groups that split from the Conti cybercrime cartel, have created and adopted their own targeted call back phishing tactic called BazaCall as initial vector to access and breach targeted network, according to a report from cybersecurity firm Advintel.
Cryptocurrency platform users are being targeted by a massive phishing operation exploiting Microsoft Azure Web and Google Sites, according to BleepingComputer.
An HP Wolf Security Threat Insights Report found that 14% of email-related malware discovered in companies’ systems had slipped past at least one email gateway security scan in the second quarter of 2022.
Individuals in Singapore selling through classified sites are being targeted by the expanded Classiscam credit card stealing campaign, which has already caused more than $29 million in damages from attacks against banks, delivery firms, cryptocurrency exchanges, and other service providers in the U.S., Europe, and Russia since 2019, according to BleepingComputer.
Bitter APT has been leveraging a trojanized iteration of the Signal messaging app to deploy the Android spyware Dracarys in cyberespionage campaigns against individuals in India, New Zealand, Pakistan, and the U.K., BleepingComputer reports.
Fast Five
Selected by the SC Media Editorial team every Tuesday.
Sign up now for the top five issues cybersecurity pros need to know this week.
