- Details
- thehackernews.com
March 14, 2023 thehackernews.com published that an open source adversary-in-the-middle (AiTM) phishing kit has found a number of takers in the cybercrime world for its ability to orchestrate attacks at scale.The Microsoft Threat Intelligence team is tracking the threat actor behind the development of the kit under its emerging moniker DEV-1101. An AiTM phishing attack typically involves a threat actor attempting to steal and intercept a target's password and session cookies by deploying a proxy server between the user and the website.....Read More..........
- Details
- Channelstv.com
February 10, 2023 , Channelstv.com published that the Economic and Financial Crimes Commission (EFCC) has warned Nigerians to be beware of fraudsters sending messages and calling citizens, asking to help individuals update their Sim card from 4G to 5G. In a brief communique, the antigraft agency explained that an OTP would be sent to citizens who opt to have their mobile sim card “upgraded to 5G” by the scammers, adding that such individuals will then be asked to provide the code with which the defrauders will eventual defraud the innocent citizens...Read More.......
- Details
- Securityweek.com
February 10 , 2023 , Securityweek.com published that threat Actors are increasingly abusing Microsoft OneNote documents to deliver malware in both targeted and spray and pray attacks. Organizations worldwide have been warned of an increase in the number of attacks abusing Microsoft OneNote documents for malware delivery.Part of the Office suite, OneNote is typically used within organizations for note taking and task management, among other operations.What makes OneNote documents an attractive target for threat actors includes the fact that they do not benefit from the Mark-of-the-Web (MOTW) protection, along with the fact that files can be attached to OneNote notebooks and then executed with minimal warnings.. Read More.......
- Details
- Bleepingcomputer.com
February 7 , 2023 , Bleepingcomputer.com published that Microsoft announced a new version of its Bing search engine powered by a next-generation OpenAI language model more powerful than ChatGPT and specially trained for web search."AI will fundamentally change every software category, starting with the largest category of all – search," Microsoft Chairman and CEO Satya Nadella said today at a Redmond press event. "Today, we're launching Bing and Edge powered by AI copilot and chat, to help people get more from search and the web. Read More.......
- Details
- Bleepingcomputer.com
February 7, 2023 , Bleepingcomputer.com published that many online stores are exposing private backups in public folders, including internal account passwords, which can be leveraged to take over the e-commerce sites and extort owners.According to a study by website security company Sansec, roughly 12% of online stores forget their backups in public folders due to human error or negligence...Read More.......
- SYS01stealer: New Threat Using Facebook Ads to Target Critical Infrastructure Firms
- Acer Confirms Breach After Hacker Offers to Sell Stolen Data
- Critical Vulnerabilities Allowed Booking.com Account Takeover
- Microsoft Defender can now isolate compromised Linux endpoints.
- Shady reward apps on Google Play amass 20 million downloads