Category Archives: phishing

The act of building and operating a Web site that closely resembles the login page for some other legitimate business, such as a bank or email service. The lookalike page provides the credentials to a criminal. (See: Social engineering)

Cisco releases ‘Cisco Global Threat Report’ for 4Q11

January 29, 2012 – 7:12 pm

By Dancho Danchev Cisco Systems, recently announced the release of ’Cisco Global Threat Report’ for 4Q11, containing threat intelligence based on Cisco’s observation of the malicious threat landscape. Key summary points:

By ddanchev | Also posted in Botnet activity, Enterprises, Internet security industry, malware, spam, Targets | Comments (1)

How phishers launch phishing attacks

January 23, 2012 – 7:27 pm

By Dancho Danchev Just like in every other industry, participants in the cybercrime ecosystem are no strangers to the concept of standardization. Standardization results in efficiencies, which on the other hand results in economies of scale. In this case, malicious economies of scale. Just how easy is it to launch a phishing attack nowadays? What tools, [...]

By ddanchev | Also posted in Online shopping threats, Passwords, social engineering, spam, Threat Research | Leave a Comment

Email hacking for hire going mainstream

January 5, 2012 – 11:25 am

by Dancho Danchev Just how easy is it to hack someone’s email nowadays? Very easy as the process is offered as a managed service within the cybercrime ecosystem. Over the past couple of months, I have been monitoring an increase in managed email hacking services. These services basically offered everyone the ability to claim someone [...]

By ddanchev | Also posted in Passwords, social engineering | Comments (7)

Everyone has a role in protecting a corporate infrastructure (Part 1)

November 30, 2011 – 11:21 am

By Jacques Erasmus This time of year, those of us in information security become wary of crafty criminals leveraging the winter holidays to prey on our employees’ lack of awareness online in a number of ways. All it takes is for one Trojan to infect a single PC in a company to put an entire [...]

By jerasmus11 | Also posted in Enterprises, Phishing Trojans, social engineering, spam, Uncategorized | Leave a Comment

Awake at all hours during Cyber Security Awareness Month

October 25, 2011 – 10:19 am

By Jacques Erasmus I’ve been having trouble sleeping lately, and last night I pinpointed why. October has presented me with a perfect storm of Internet security developments: I embarked on my first few weeks as chief information security officer for Webroot amidst the most significant consumer product launch the company has ever had. These activities [...]

By mguthrie09 | Also posted in Keyloggers, Phishing Trojans, social engineering, Trojans | Comments (1)

Targeted Malware Infects Windows-based Cash Registers

August 9, 2011 – 5:01 am

By Andrew Brandt A serious, targeted threat from customized malware that steals credit card magnetic strip track data could literally bankrupt your business. That’s the message two security researchers from Trustwave gave at their talk during the Defcon computer security conference Saturday. The researchers, Jibran Ilyas and Nicholas Percoco of Trustwave Spider Labs, respond to [...]

By mguthrie09 | Also posted in Deep Knowledge, Phishing Trojans, Threat Research | Comments (2)

Brazilian “Winehouse” Trojan Sends Hotmail, Bank Passwords to China

July 29, 2011 – 11:18 am

By Andrew Brandt Late Monday, after news about the death of troubled pop singer Amy Winehouse had been circling the globe for a little more than 48 hours, we saw the first malware appear that used the singer’s name as a social engineering trick to entice victims to run the malicious file. Abusing celebrity names, [...]

By mguthrie09 | Also posted in Botnet activity, Phishing Trojans, social engineering, spam, Stupid malware tricks, Threat Research | Comments (3)

Phishers Cast Their Nets in the Social Media Pool

June 21, 2011 – 8:23 am

By Ian Moyse, EMEA Channel Director It can seem at times that the only people who like change are Internet attackers. And they don’t just like it—they need it. Technology’s rapid changes give cybercriminals new attack vectors to exploit, and new ways to turn a profit out of someone else’s misfortune. Take phishing, for example. [...]

By imoyse | Also posted in Botnet activity, hijack search results, Keyloggers, Search engines, social engineering, social networks, spam, Stupid malware tricks, Trojans, Website owners | Comments (2)

Why Put Security Into the Cloud?

June 7, 2011 – 7:51 am

This week, Webroot’s Thre@t Reply managed to steal some time with Ian Moyse, who knows a thing or two about the benefits of putting your computer and network security into the cloud, out where the threats are, rather than keeping your security inside your network or on individual computers. As always, feel free to submit [...]

By mguthrie09 | Also posted in Enterprises, Internet security industry, social engineering, spam, Threat Research, Website owners | Comments (2)

Thre@t Reply: “Online Shopping” | Part 2 of 2

May 9, 2011 – 9:06 am

In the second of a two-part series with Threat Research Analyst Grayson Milbourne, we answer a question about how to stay safe when shopping online. In the previous video, Grayson discussed how to identify a phishing page. In this episode, he continues his discussion by explaining how to tell whether the site you’re trying to purchase [...]

By Lisa Bongiovanni | Also posted in Online shopping threats, Threat Research, Uncategorized | Comments (1)
Follow

Get every new post delivered to your Inbox.

Join 528 other followers