Online retail giant and cloud-service provider Amazon broke up a phishing operation that impersonated thousands of Amazon Web Service (AWS) domains. The AWS security team, along with the Ukrainian CERT-UA blamed the Russian-backed APT 29 group for an attack which used spoofed AWS domains in an attempt to harvest login credentials from Ukrainian-speaking targets. Since … Read more
Russian-speaking users have become the target of a new phishing campaign that leverages an open-source phishing toolkit called Gophish to deliver DarkCrystal RAT (aka DCRat) and a previously undocumented remote access trojan dubbed PowerRAT. “The campaign involves modular infection chains that are either Maldoc or HTML-based infections and require the victim’s intervention to trigger the … Read more
A new tax-themed malware campaign targeting insurance and finance sectors has been observed leveraging GitHub links in phishing email messages as a way to bypass security measures and deliver Remcos RAT, indicating that the method is gaining traction among threat actors. “In this campaign, legitimate repositories such as the open-source tax filing software, UsTaxes, HMRC, … Read more
Phishing attacks are become more prevalent as threat actors are arming themselves with potent new tools, according to security vendor Egress, who says that in the second quarter of the year, it recorded a 28% jump in recorded phishing attempts. Researchers noted that the nature of the attacks is pretty much in line with previous … Read more
Cybersecurity researchers have warned of ongoing phishing campaigns that abuse refresh entries in HTTP headers to ship spoofed e mail login pages which can be designed to reap customers’ credentials. “Not like different phishing webpage distribution habits by means of HTML content material, these assaults use the response header despatched by a server, which happens … Read more
