Deepfakes are a form of media that have been digitally manipulated, often through artificial intelligence, to replace one person's likeness with that of another. Cyber threat actors are using deepfake technology in new social engineering schemes. Read to learn how to protect against this.
As Valentine’s Day approaches, threat actors continue to target individuals seeking companionship or romance. The NJCCIC received reports of sextortion incidents where victims are threatened to pay an extortion demand or else compromising photos/video of them will be released.
Search engine optimization (SEO) is the process of improving the quality and quantity of website traffic to a website from search engines. In SEO poisoning, threat actors create malicious websites and use techniques to insert irrelevant keywords into a webpage’s text.
SIM swapping attacks have become increasingly common. Threat actors initiate these attacks by contacting wireless carriers and impersonating the subscriber. They use social engineering to transfer the subscriber's phone number to a new SIM card under their control.
There has been an increase in scam-related courier service usage to retrieve money and valuables from targets. Scammers often employ a multi-layered approach, posing as government officials, tech support, or financial institution employees to gain victims' trust.
Since the start of the new year, the NJCCIC has observed an uptick in reported incidents of compromised accounts for New Jersey citizens and businesses, such as healthcare, education, law enforcement, contractors, real estate, and accounting firms.
Multiple vulnerabilities have been discovered in VMware vCenter Server and Cloud Foundation, most severe of which could allow for remote code execution. execution. VMware vCenter Server is the centralized management utility for VMware. Read this to learn how to protect against this.
In today's digital world, constant data generation and flow across diverse channels present risks as users often share more information than necessary for convenience, leading to heightened vulnerabilities and potential for fraud and malicious activities.
Ransomware operators employ various methods to coerce victims into paying ransoms if they refuse initial demands including: blocking access to files, stealing data, threatening a data breach, selling data on the dark web, launching DDOS attacks, and encrypting data.
Researchers determined that it is possible to “smuggle” or send spoofed emails, a method often used in phishing campaigns, to convince the email recipient that the message is sent from a trusted entity. They do this by exploiting interpretation differences of Simple Mail Transport Protocol.
