Log in to see all content. Some content is hidden to the public.
Can't find what you're looking for? Help us improve the search functionality by reporting the expected results.
113 Results
Dec 2022: Phishing Campaign Distributing Christmas Bonus-Themed Lure
Threat Alert: What to Watch For Cybercriminals have launched a series of phishing attacks using the promise of a paid Christmas bonus as a lure.
Feb 2023: Employee Termination-Themed Lure Spreads Malware
Threat Alert: What to Watch For Cybercriminals have launched a series of phishing attacks using the threat of employee transfers and terminations as a lure.
Nov 2022: Twitter-Themed Lures Used in Credential Phishing Attacks
Threat Alert: What to Watch For Cybercriminals have launched phishing attacks impersonating Twitter Services. The emails include links to lookalike landing pages that are designed to steal Twitter credentials and phone numbers. While the email display names make it appear the messages come from “Twitter Services,” the actual sending address is a Gmail account. The emails use the proposed change at Twitter of charging verified users a monthly fee to maintain their verification status.
Mar 2023: Invoice-Themed Phishing Lures Spreading Malware
Threat Alert: What to Watch For Cybercriminals have launched phishing attacks using malicious invoice-themed attachments to spread malicious software (malware). The phishing attacks hijack legitimate email threads to deliver the phishing lures to further increase the believability of the attacks.
Jan 2023: Phishing Attacks Abuse Microsoft OneNote
Apr 2023: Tax-Themed Lures Distribute Malware
Threat Alert: What to Watch For Cybercriminals have launched a series of phishing attacks using a timely tax-themed lure. The lures imitate the sharing of 2022 tax documents via a Citrix ShareFile link. The lures note that the download expires on April 18, 2023, the tax-filing deadline in the United States.
Feb 2023: Phishing Attacks Use Earthquake-Themed Lures
Threat Alert: What to Watch For Cybercriminals have launched multiple phishing attacks attempting to take advantage of the humanitarian crisis in Turkey and Syria following the earthquake. These attacks are intended to steal recipient’s funds or to lead to the installation of malicious software (malware). As multiple attacks are exploiting this crisis, lures will appear different.
June 2023: Phishing Attacks Abuse Valid Web Traffic Tool
Threat Alert: What to Watch For Cybercriminals have launched phishing attacks abusing legitimate tools that are used to direct web traffic. Phishing lures contain an embedded URL that leads to a lookalike Google Chrome update site. Downloading the fake Google Chrome update installs a legitimate tool used for remotely monitoring and supporting computers.
May 2023: URL Shortening Service Widely Abused in Attacks
Threat Alert: What to Watch For Cybercriminals have started using the URL shortening service clck[.]ru in widespread phishing attacks in April. The nature of these attacks and the lures used vary greatly.
Sep 2023: Phishing Lure Uses Potential Employment Status Theme
Threat Alert: Employment Status-Themed Phishing Lures Cybercriminals have launched a series of phishing attacks using concerns over the recipient’s employment status legality as a lure. The lures contain a link purportedly related to employment status documentation. Key Actions (at Work and at Home)