Attackers are using the “Comments” feature of Google Docs to send malicious links in a phishing campaign targeted primarily at Outlook users, researchers at Avanan have discovered.

According to the FBI, the fraudsters are targeting those who have posted their phone number as a form of contact when trying to sell various items on online marketplaces or social media apps.

In conversations with victims who reached out for investment opportunities, the fraudsters impersonated FINRA broker-dealers claiming to be from the financial institutions they spoofed on scam sites.

Experts claimed that state-backed North Korean hackers have stolen nearly $1.7 billion worth of cryptocurrency from various exchanges in the past five years. Federal prosecutors from the U.S. believe that the Government of North Korea regards cryptocurrency as a long-term investment. Crypto exchanges are suggested to use additional layers of security, such as 2FA, hardware […]

In November 2021, QRS reported that an attacker breached a single patient portal server for three days in August, leading to the unauthorized access to and likely exfiltration of patient-related data.

The attack was possible because the abused cloud video platform allows users to add their own JavaScript customizations to players, by uploading a JavaScript file that is included in the player.

This year will bring new threats and attack strategies from adversaries. Unfortunately, this means any operation in every industry with an online presence is potentially at risk.

The malicious installer is a compiled AutoIt script named “Telegram Desktop.exe” that drops two different files, an actual Telegram installer, and a malicious downloader.