LastPass Password Manager warned customers about a new social engineering campaign in which threat actors are leaving five-star reviews, posing as support on the LastPass extension review page on Google Chrome. In these reviews, they provide customers with a fake number...
Quick-response (QR) codes are convenient and easy to use in everyday life to access information and navigate to websites. Unfortunately, cyber threat actors continue to take advantage of the increased adoption of QR code scanning.
The NJCCIC’s email security solution has observed an uptick in phishing attacks impersonating Truist Bank and Wells Fargo Bank. These emails were flagged for using uncommon URL domains, abused URL services, and uncommon senders. Read more about signs to look for.
Octo2, the newest variant of Octo, has been observed in a campaign in several European countries. Originally spotted in 2016 as Exobot, Octo2 has undergone many upgrades and transformations since its humble beginnings as a banking trojan. After Octo’s source code was leaked...
Security researchers have discovered a new campaign to steal a user’s login account credentials. In this campaign, a target’s browser is forced to load in kiosk mode, a full-screen mode that prevents users from navigating away from the selected webpage. This attack targets Google accounts.
Analysts recently identified a cybercrime group known as Marko Polo, linked to at least 30 unique cryptocurrency and gaming-related scams that have likely compromised thousands of devices worldwide. The group is identified as a financially motivated “traffer team.ˮ
The NJCCIC’s email security solution detected multiple phishing campaigns attempting to deliver messages containing links to websites compromised by a payment skimmer . Digital skimmers are snippets of code injected into online retailers that steal payment details as they are entered.
The NJCCIC received incident reports consistent with open-source reporting that indicate an overall increase in various types of cryptocurrency scams. Cryptocurrency's decentralized nature and its global transferability make it appealing to cybercriminals. Click to learn more.
The Cybersecurity and Infrastructure Security Agency recently co-authored a joint cybersecurity advisory regarding the RansomHub ransomware group. Since it was first observed in February, RansomHub has become one of the most prolific ransomware threats.
Incident reports indicating that a new version of the well-known sextortion email scam is currently circulating. This version now includes a photo of the recipient's home, likely found via online mapping applications. The targeted individual's home address could have been easily obtained.
