August 19, 2019 Phishing Attacks Use Custom 404 Pages to Steal Users’ Microsoft Credentials 2 min read - Fraudsters are launching phishing attacks that use custom 404 pages in an attempt to steal users' Microsoft login credentials.
August 19, 2019 Weekly Security News Roundup: Cerberus Trojan Arrives on Underground Forums 3 min read - Last week in security news, researchers spotted threat actors renting out an Android Trojan called Cerberus on underground forums.
August 14, 2019 Phishing Campaign Distributes Fake Microsoft Account Notifications 2 min read - Attackers are disseminating fake Microsoft account notifications alerting users to supposed "unusual sign-in activity" in a ploy to steal credentials.
August 13, 2019 Sophisticated Dropper Masqueraded as Fake DHL Invoice to Distribute Ursnif Malware 2 min read - Digital attackers took a sophisticated dropper and disguised it as a fake DHL shipping invoice to distribute Ursnif malware.
August 12, 2019 Phishing Campaign Uses DocuSign Branding, S3-Hosted Landing Page to Target Office Credentials < 1 min read - Researchers observed a new phishing campaign that used DocuSign branding and a landing page hosted on Amazon public cloud storage (S3) to steal users' Microsoft Office credentials.
Malware August 8, 2019 The Curious Case of a Fileless TrickBot Infection 7 min read - IBM X-Force noted changes in the deployment of the TrickBot Trojan and discovered that the most recent version of the malware is fileless.
July 29, 2019 Weekly Security News Roundup: US Company Selling Fully Working BlueKeep Exploit 3 min read - Last week in security news, a U.S. company announced that its penetration tool had incorporated a fully working exploit for the BlueKeep vulnerability.
July 23, 2019 Phishers Use Fake Office 365 Alerts to Compromise Admin Accounts 2 min read - Phishers are launching campaigns that leverage fake Office 365 alerts to compromise administrator accounts.
Network July 17, 2019 The Expiration Date on Passwords Has Expired 4 min read - Changing your passwords frequently sounds like commonsense advice. However, just because something is common doesn't mean it makes sense.
July 15, 2019 Weekly Security News Roundup: Zero-Day Vulnerability Exploited in Buhtrap Attack Campaign 3 min read - Last week, security researchers identified a zero-day vulnerability that was instrumental in a targeted attack against companies in Eastern Europe.