Calendars are a rich source of bad behaviour for scammers and spammers. They’re one of the most prolific tools the workplace…
Tag: phishing
URI spoofing flaw could phish WhatsApp, Signal, Instagram, and iMessage users
Update: We were informed by Sick Codes that, although Signal already has a fix for this URI flaw here, it hasn’t…
New spear phishing campaign targets Russian dissidents
This blog post was authored by Hossein Jazi. — Updated to clarify the two different campaigns (Cobalt Strike and Rat) Several…
A week in security (March 21 – 27)
Last week on Malwarebytes Labs: Stay safe!
Facebook phish claims “Someone tried to log into your account”
Watch out for bogus Facebook phishing messages winging their way to your mailbox. The ruse is quite simple: The mail senders…
Fake Esports voting sites looking to phish Steam users
We’ve seen Esports occasionally become the focus of gaming or Steam scams. One particular tactic of note was to claim joining…
Beware of this bogus (and phishy) “Instagram Support” email
Recently, a fake Instagram email successfully bypassed Google’s email filters and made it into hundreds of employee inboxes used by a…
Clouding the issue: what cloud threats lie in wait in 2022?
As more services move ever cloud-wards, so too do thoughts by attackers as to how best exploit them. With all that…
Four key cybersecurity practices during geopolitical upheaval
Russia’s continued invasion of Ukraine has altered the landscape of cybersecurity threats facing organizations both near and far from the physical…
Unusual sign-in activity mail goes phishing for Microsoft account holders
We’ve received an interesting spam email which (deliberately or not) could get people thinking about the current international crisis. Being on…