Threat actors have been commencing zero-day vulnerability scanning only 15 minutes following the flaw's disclosure, resulting in much quicker exploitation, reports ZDNet.
Bank of America, Wells Fargo, Capitol One, Citibank, and other well-established financial institutions and online services have been targeted by the novel Robin Banks phishing-as-a-service platform, which has been launched in widespread SMS and email phishing campaigns since the middle of last month, according to BleepingComputer.
Microsoft reported that roughly 10,000 businesses were attacked in a months-long adversary-in-the-middle (AiTM) campaign that raked in estimated millions in financial fraud.
BleepingComputer reports that LinkedIn accounted for 45% of all brand phishing attempts worldwide during the second quarter of 2022, making it the most spoofed brand in phishing attacks for two quarters in a row, far ahead of Microsoft, DHL, Amazon, and Apple.
Mental health application Feelyou has been impacted by the security vulnerability that resulted in the exposure of email addresses of 77,967 users across 177 countries, reports The Record, a news site by cybersecurity firm Recorded Future.
