Cyjax analysts have uncovered a mass credential harvesting campaign targeting a wide range of sectors, including government, military, law enforcement, healthcare, finance, technology, manufacturing, and energy. Key campaign attributes Malicious use of the SendGrid email marketing service to distribute URLs to the landing pages. Phishing emails leverage an image with an embedded URL that masquerades …
Cyjax analysts recently uncovered an Office 365 credential-harvesting campaign that masquerades as “A Message from Your CEO”. The delivery system leveraged in these attacks uses multiple techniques to bypass secure email gateways (SEG), one of which has surfaced again in a BazarLoader infection chain. This technique is effective because Basecamp and Google Cloud hosting are …
Office 365 credential-harvesting campaign leveraging Basecamp Read More »
Introduction Our team was recently alerted to a well-made phishing page targeting a large UK bank. During our investigation we found that this page was part of a larger “multi-part” phishing kit that did not function as common phishing kits do, instead using a central control panel. We were able to obtain the source code …
Two-Factor Fail: Analysis of a modern phishing kit Read More »
COVID-19 Cybersecurity Update The US Federal Trade Commission (FTC) has warned users about scam coronavirus (COVID-19) contact tracing texts. There has been an increasing number of SMiShing messages asking users to click a malicious link. The FTC claims that clicking the link will download software onto the device, enabling scammers access to personal and financial …
Geopolitical and Cybersecurity Weekly – 26 May 2020 Read More »
Businesses, governments and their citizens around the world face an unprecedented challenge from the coronavirus pandemic. This is both a physical and cybersecurity issue. At the time of publication, there had been over 330,000 confirmed cases worldwide and 14,500 deaths. This includes 5,683 patients in the UK and 281 fatalities. [1] Strict limitations have been …
Drugs, guns, credit card details and malware are what most people typically associate with the darknet. All of which are certainly present. But market volatility is one feature of the darknet which is less frequently discussed. Ever since Silk Road was shut down by the FBI in 2013, darknet markets have come and gone, rising …
