Log in to see all content. Some content is hidden to the public.
Can't find what you're looking for? Help us improve the search functionality by reporting the expected results.
117 Results
Jan 2024: NHS-Themed Lures Steal Microsoft Credentials
Threat Alert: NHS-Themed Lures Steal Microsoft Credentials Cybercriminals have launched a series of phishing attacks using spoofed or compromised email accounts belonging to the National Health Service (NHS). These emails, which appear to come from a NHS[.]net email address, use the subject line “YOU NEED TO SETTLE THIS.” A fully capitalized subject line like this is unlikely to come from an official government institution. The lures contain a prompt to review an alleged DocuSign document.
Dec 2023: Eventbrite-Themed Lures Distribute Malware
Threat Alert: Eventbrite-Themed Lures Distribute Malware
Dec 2023: Bonus-Themed Lures Harvest Credentials
Threat Alert: Bonus-Themed Lures Harvest Credentials
Nov 2023: Phishing Attacks Impersonate Philippine Agency
Threat Alert Phishing Attacks Impersonate Philippine Agency
Aug 2023: Geek Squad-Themed Lures Used in TOAD Attacks
Threat Alert: What to Watch For Recent phishing emails are masquerading as notifications alerting the recipient to an automatic renewal of Best Buy’s Geek Squad Total Protect & Webroot Advance Threat Protection. The emails, however, do not use Best Buy sending addresses. Unlike many traditional phishing attacks, the emails do not include malicious links or attachments.
Oct 2023: TOAD Attack Spoofs Best Buy’s Geek Squad Branding
Threat Alert: TOAD Attack Spoofs Geek Squad Branding
Nov 2023: OSHA-Themed Phishing Lures Deliver Malware
Threat Alert: OSHA-Themed Phishing Lures Deliver Malware
Feb 2024: Deepfake Scam Imitating CFO
Threat Alert: Deepfake Scam Targeting Financial Transactions An employee attended a video conference call with seemingly authentic colleagues, all of whom were later revealed to be deepfake representations. The worker, initially suspicious of a phishing email, was convinced by the realistic appearance and voices of the deepfake participants during the video call. Subsequently, the employee authorized a large financial transaction, thinking it was a legitimate request initiated by the CFO. Key Actions (at Wo
Aug 2023: Phishing Attacks Abuse Proofpoint Branding
Threat Alert: Phishing Attacks Abuse Proofpoint Branding
Sep 2023: Credential Phishing Lure Imitates SharePoint and Financial Institution
Threat Alert: Lure Spoofs SharePoint and Financial Institution Cybercriminals have launched a series of phishing attacks imitating a financial institution. The lures use an alleged credit card transaction dispute as a theme. While the emails claim to come from a financial institution, the email sending address does not match the email domain of the spoofed financial organization.