Search cyberveille.decio.ch

Multiple Russian Threat Actors Targeting Microsoft Device Code Authentication | Volexity

Starting in mid-January 2025, Volexity identified several social-engineering and spear-phishing campaigns by Russian threat actors aimed at compromising Microsoft 365 (M365) accounts. These attack campaigns were highly targeted and carried out in a variety of ways. The majority of these attacks originated via spear-phishing emails with different themes. In one case, the eventual breach began with highly tailored outreach via Signal.Through its investigations, Volexity discovered that Russian threat actors were impersonating a variety of individuals

#volexity #EN #2025 #Russia #spearphishing #M365 #social-engineering

·volexity.com·Feb 14, 2025

Multiple Russian Threat Actors Targeting Microsoft Device Code Authentication | Volexity

ReliaQuest Uncovers New Black Basta Social Engineering Technique - ReliaQuest

ReliaQuest has observed a new Black Basta social engineering campaign targeting users via Microsoft Teams and malicious QR codes.

#reliaquest #EN #2024 #social-engineering #BlackBasta #Microsoft #Teams #QRCode #analysis

·reliaquest.com·Oct 30, 2024

ReliaQuest Uncovers New Black Basta Social Engineering Technique - ReliaQuest

File hosting services misused for identity phishing

Since mid-April 2024, Microsoft has observed an increase in defense evasion tactics used in campaigns abusing file hosting services like SharePoint, OneDrive, and Dropbox. These campaigns use sophisticated techniques to perform social engineering, evade detection, and compromise identities, and include business email compromise (BEC) attacks.

#microsoft #EN #2024 #File #hosting #SharePoint #OneDrive #Dropbox #social-engineering #identity #phishing #research

·microsoft.com·Oct 9, 2024

File hosting services misused for identity phishing

Don’t get Mad, get wise

The “Mad Liberator” ransomware group leverages social-engineering moves to watch out for

#sophos #EN #2024 #MadLiberator #ransomware #group #social-engineering

·news.sophos.com·Aug 13, 2024

Don’t get Mad, get wise

Ongoing Social Engineering Campaign Refreshes Payloads

On June 20, 2024, Rapid7 identified multiple intrusion attempts by threat actors utilizing Techniques, Tactics, and Procedures (TTPs) that are consistent with an ongoing social engineering campaign being tracked by Rapid7.

#rapid7 #EN #2024 #TTPs #Social-engineering #Campaign #analysis #BlackBasta

·rapid7.com·Aug 12, 2024

Ongoing Social Engineering Campaign Refreshes Payloads

Verified Twitter accounts phished via hate speech warnings

We take a look at reports that verified Twitter accounts are being targeted by scammers with claims of hate speech.

#malwarebytes #EN #2022 #Social-Engineering #Twitter #phishing #hate-speech #verified

·blog.malwarebytes.com·Jul 12, 2022

Verified Twitter accounts phished via hate speech warnings

Hackers breach MailChimp's internal tools to target crypto customers

Email marketing firm MailChimp disclosed on Sunday that they had been hit by hackers who gained access to internal customer support and account management tools to steal audience data and conduct phishing attacks.

#bleepingcomputer #EN #2022 #MailChimp #Phishing #Social-Engineering #Trezor

·bleepingcomputer.com·Apr 5, 2022

Hackers breach MailChimp's internal tools to target crypto customers

Open Source Security (OpenSSF) and OpenJS Foundations Issue Alert for Social Engineering Takeovers of Open Source Projects

XZ Utils cyberattack likely not an isolated incident

#openjsf #EN #2024 #OpenSSF #Social-engineering #XZ #open-source

·openjsf.org·Apr 16, 2024

Open Source Security (OpenSSF) and OpenJS Foundations Issue Alert for Social Engineering Takeovers of Open Source Projects

Verified Twitter accounts phished via hate speech warnings

We take a look at reports that verified Twitter accounts are being targeted by scammers with claims of hate speech.

#malwarebytes #EN #2022 #Social-Engineering #Twitter #phishing #hate-speech #verified

·blog.malwarebytes.com·Jul 12, 2022

Verified Twitter accounts phished via hate speech warnings

Hackers breach MailChimp's internal tools to target crypto customers

Email marketing firm MailChimp disclosed on Sunday that they had been hit by hackers who gained access to internal customer support and account management tools to steal audience data and conduct phishing attacks.

#bleepingcomputer #EN #2022 #MailChimp #Phishing #Social-Engineering #Trezor

·bleepingcomputer.com·Apr 5, 2022

Hackers breach MailChimp's internal tools to target crypto customers

Verified Twitter accounts phished via hate speech warnings

We take a look at reports that verified Twitter accounts are being targeted by scammers with claims of hate speech.

#malwarebytes #EN #2022 #Social-Engineering #Twitter #phishing #hate-speech #verified

·blog.malwarebytes.com·Jul 12, 2022

Verified Twitter accounts phished via hate speech warnings

Hackers breach MailChimp's internal tools to target crypto customers

Email marketing firm MailChimp disclosed on Sunday that they had been hit by hackers who gained access to internal customer support and account management tools to steal audience data and conduct phishing attacks.

#bleepingcomputer #EN #2022 #MailChimp #Phishing #Social-Engineering #Trezor

·bleepingcomputer.com·Apr 5, 2022

Hackers breach MailChimp's internal tools to target crypto customers

Scattered Spider laying new eggs

Discover the techniques, tactics (TTPs) used by Scattered Spider intrusion set, including social engineering and targeted phishing campaigns.

#sekoia #EN #2024 #analysis #TTPs #Scattered-Spider #phishing #intrusion #Social-engineering

·blog.sekoia.io·Feb 22, 2024

Scattered Spider laying new eggs

Verified Twitter accounts phished via hate speech warnings

We take a look at reports that verified Twitter accounts are being targeted by scammers with claims of hate speech.

#malwarebytes #EN #2022 #Social-Engineering #Twitter #phishing #hate-speech #verified

·blog.malwarebytes.com·Jul 12, 2022

Verified Twitter accounts phished via hate speech warnings

Hackers breach MailChimp's internal tools to target crypto customers

Email marketing firm MailChimp disclosed on Sunday that they had been hit by hackers who gained access to internal customer support and account management tools to steal audience data and conduct phishing attacks.

#bleepingcomputer #EN #2022 #MailChimp #Phishing #Social-Engineering #Trezor

·bleepingcomputer.com·Apr 5, 2022

Hackers breach MailChimp's internal tools to target crypto customers

Verified Twitter accounts phished via hate speech warnings

We take a look at reports that verified Twitter accounts are being targeted by scammers with claims of hate speech.

#malwarebytes #EN #2022 #Social-Engineering #Twitter #phishing #hate-speech #verified

·blog.malwarebytes.com·Jul 12, 2022

Verified Twitter accounts phished via hate speech warnings

Hackers breach MailChimp's internal tools to target crypto customers

Email marketing firm MailChimp disclosed on Sunday that they had been hit by hackers who gained access to internal customer support and account management tools to steal audience data and conduct phishing attacks.

#bleepingcomputer #EN #2022 #MailChimp #Phishing #Social-Engineering #Trezor

·bleepingcomputer.com·Apr 5, 2022

Hackers breach MailChimp's internal tools to target crypto customers

Verified Twitter accounts phished via hate speech warnings

We take a look at reports that verified Twitter accounts are being targeted by scammers with claims of hate speech.

#malwarebytes #EN #2022 #Social-Engineering #Twitter #phishing #hate-speech #verified

·blog.malwarebytes.com·Jul 12, 2022

Verified Twitter accounts phished via hate speech warnings

Hackers breach MailChimp's internal tools to target crypto customers

Email marketing firm MailChimp disclosed on Sunday that they had been hit by hackers who gained access to internal customer support and account management tools to steal audience data and conduct phishing attacks.

#bleepingcomputer #EN #2022 #MailChimp #Phishing #Social-Engineering #Trezor

·bleepingcomputer.com·Apr 5, 2022

Hackers breach MailChimp's internal tools to target crypto customers

Midnight Blizzard conducts targeted social engineering over Microsoft Teams

Microsoft Threat Intelligence has identified highly targeted social engineering attacks using credential theft phishing lures sent as Microsoft Teams chats by the threat actor that Microsoft tracks as Midnight Blizzard (previously tracked as NOBELIUM).

#microsoft #EN #2023 #research #Social-engineering #NOBELIUM #MidnightBlizzard #Teams

·microsoft.com·Aug 4, 2023

Midnight Blizzard conducts targeted social engineering over Microsoft Teams

Verified Twitter accounts phished via hate speech warnings

We take a look at reports that verified Twitter accounts are being targeted by scammers with claims of hate speech.

#malwarebytes #EN #2022 #Social-Engineering #Twitter #phishing #hate-speech #verified

·blog.malwarebytes.com·Jul 12, 2022

Verified Twitter accounts phished via hate speech warnings

Hackers breach MailChimp's internal tools to target crypto customers

Email marketing firm MailChimp disclosed on Sunday that they had been hit by hackers who gained access to internal customer support and account management tools to steal audience data and conduct phishing attacks.

#bleepingcomputer #EN #2022 #MailChimp #Phishing #Social-Engineering #Trezor

·bleepingcomputer.com·Apr 5, 2022

Hackers breach MailChimp's internal tools to target crypto customers

Malicious Tor Browser spreads through YouTube

Kaspersky researchers detected OnionPoison campaign: malicious Tor Browser installer spreading through a popular YouTube channel and targeting Chinese users.

#securelist #EN #2022 #Kaspersky #Malware-Descriptions #Onion #Social-engineering #Targeted-attacks #TOR #YouTube #Chine

·securelist.com·Oct 4, 2022

Malicious Tor Browser spreads through YouTube

Incoscienti e sfacciati: le tecniche dei teenager che violano aziende

Specializzati soprattutto in social engineering, i ragazzini di oggi continuano, come un tempo, a essere protagonisti di gravi incidenti informatici. Come è possibile?

#guerredirete #IT #2022 #LAPSUS$#social #Social-Engineering #teenager

·guerredirete.it·Sep 19, 2022

Incoscienti e sfacciati: le tecniche dei teenager che violano aziende

Verified Twitter accounts phished via hate speech warnings

We take a look at reports that verified Twitter accounts are being targeted by scammers with claims of hate speech.

#malwarebytes #EN #2022 #Social-Engineering #Twitter #phishing #hate-speech #verified

·blog.malwarebytes.com·Jul 12, 2022

Verified Twitter accounts phished via hate speech warnings

Hackers breach MailChimp's internal tools to target crypto customers

Email marketing firm MailChimp disclosed on Sunday that they had been hit by hackers who gained access to internal customer support and account management tools to steal audience data and conduct phishing attacks.

#bleepingcomputer #EN #2022 #MailChimp #Phishing #Social-Engineering #Trezor

·bleepingcomputer.com·Apr 5, 2022

Hackers breach MailChimp's internal tools to target crypto customers

Hackers Breach Mailchimp Email Marketing Firm to Launch Crypto Phishing Scams

Email marketing service Mailchimp on Monday revealed a data breach that resulted in the compromise of an internal tool to gain unauthorized access to customer accounts and stage phishing attacks.

#thehackernews #2022 #EN #mailchimp #insider #social-engineering #scam

·thehackernews.com·Apr 5, 2022

Hackers Breach Mailchimp Email Marketing Firm to Launch Crypto Phishing Scams

Malicious Tor Browser spreads through YouTube

Kaspersky researchers detected OnionPoison campaign: malicious Tor Browser installer spreading through a popular YouTube channel and targeting Chinese users.

#securelist #EN #2022 #Kaspersky #Malware-Descriptions #Onion #Social-engineering #Targeted-attacks #TOR #YouTube #Chine

·securelist.com·Oct 4, 2022

Malicious Tor Browser spreads through YouTube

Incoscienti e sfacciati: le tecniche dei teenager che violano aziende

Specializzati soprattutto in social engineering, i ragazzini di oggi continuano, come un tempo, a essere protagonisti di gravi incidenti informatici. Come è possibile?

#guerredirete #IT #2022 #LAPSUS$#social #Social-Engineering #teenager

·guerredirete.it·Sep 19, 2022

Incoscienti e sfacciati: le tecniche dei teenager che violano aziende

Verified Twitter accounts phished via hate speech warnings

We take a look at reports that verified Twitter accounts are being targeted by scammers with claims of hate speech.

#malwarebytes #EN #2022 #Social-Engineering #Twitter #phishing #hate-speech #verified

·blog.malwarebytes.com·Jul 12, 2022

Verified Twitter accounts phished via hate speech warnings