Home / phishing
Category: phishing

Kickstarter sent password reset emails to millions of users, but didn’t tell anyone why

Five million users got a password reset email, but Kickstarter says it wasn't breached.

Read more

DigitalOcean says customer email addresses were exposed after latest Mailchimp breach

Attackers are said to have compromised Mailchimp's internal tooling, allowing access to customer information.

Read more

Twilio hacked by phishing campaign targeting internet companies

TechCrunch has learned that the same actor also targeted another U.S. internet company and several international IT companies.

Read more

China-backed hackers targeted White House journalists before January 6

Researchers said Beijing-backed hackers targeted political and national security journalists ahead of the U.S. Capitol riot.

Read more

Crypto hackers are increasingly phishing for new bait on social media

There was a significant rise in crypto-focused phishing attacks across social media sites in the second quarter, according to a new CertiK report.

Read more

A hacked Kaiser Permanente employee’s emails led to breach of 70,000 patient records

The health insurance giant wouldn't say how the employee's email account was breached.

Read more

Chrome will now silence many of those annoying notification permission prompts on the web

Google today announced a set of new and updated security features for Chrome, almost all of which rely on machine learning (ML) models, as well as a...

Read more

Google brings phishing detection to Docs, Sheets and Slides, along with other privacy and security updates

Among the privacy and security-related updates announced today at Google’s I/O conference, the company says it’s bringing phishing...

Read more

HacWare lands $2.3M to expand cybersecurity awareness training

The New York-based cybersecurity startup says it'll use the funding to expand its engineering and sales teams.

Read more

Mailchimp says an internal tool was used to breach hundreds of accounts

The email marketing giant said hackers targeted customers in the cryptocurrency and finance sectors.

Read more

Google discovers threat actor working as an ‘initial access broker’ for Conti ransomware hackers

"Exotic Lily" breaks into vulnerable organizations and sells access to victim networks.

Read more

Ukraine says Belarusian hackers are targeting its defense forces

Security officials attributed the ongoing phishing campaign to the Minsk-linked UNC1151 threat group.

Read more

Twitter reinstates accounts sharing open source info on Russian military threat

Twitter disclosed that it mistakenly removed a number of accounts sharing details about Russian military activity Wednesday, as the nation’s...

Read more

Meta files federal lawsuit to uncover individuals running a phishing scam on its platforms

Meta, formerly known as Facebook, announced today that it has filed a federal lawsuit in California court to take action to uncover individuals...

Read more

Microsoft seizes control of websites used by China-backed hackers

Microsoft has seized control of a number of websites that were being used by a Chinese government-backed hacking group to target organizations in 29...

Read more

GoDaddy says data breach exposed over a million user accounts

The web host said an unauthorized person used a compromised password to get access to GoDaddy's systems.

Read more

Robinhood says millions of customer names and email addresses taken in data breach

The online trading platform said no money was stolen in the incident.

Read more

Google to give security keys to ‘high risk’ users targeted by government hackers

It comes days after Google alerted thousands of high-risk users of state-backed hacking efforts.

Read more

Click Studios asks customers to stop tweeting about its Passwordstate data breach

The password manager maker has refused to answer questions about the breach.

Read more

Passwordstate users warned to ‘reset all passwords’ after attackers plant malicious update

More than 29,000 organizations, including governments, use the password manager.

Read more

Enterprise security attackers are one password away from your worst day

IT organizations must shift their enterprise security strategy to detect credential-based attacks before they become a problem.

Read more

Education nonprofit Edraak ignored a student data leak for two months

The server stored spreadsheets containing private student data.

Read more

Notion’s hours-long outage was caused by phishing complaints

Users were unable to access their files, calendars, and documents for hours.

Read more

Ransomware recovery can be costly, and not just because of the ransom

Ransom payments typically account for less than 20% of the total cost of a ransomware attack

Read more

Passwordstate customers complain of silence and secrecy after cyberattack

The company was hit by a supply chain attack that sought to steal the passwords from customer servers around the world.

Read more

RSA spins off fraud and risk intelligence unit as Outseer

The pandemic fueled "unprecedented" growth in fraudulent transactions.

Read more

Hackers are targeting employees returning to the post-COVID office

With COVID-19 restrictions lifting and employees starting to make their way back into offices, hackers are being forced to change tack. While remote...

Read more

Latest 20