Author: Roman Dedenok | Page 2 | Kaspersky official blog

Common spear-phishing tricks

To be ready for attacks targeting your company, information security officers need to know about received spear-phishing e-mails.

5 online scam red flags

Five signs you’re dealing with scammers.

Phishing disguised as spam

Attackers are trying to steal credentials from corporate mail by sending lists of quarantined spam e-mails.

Fake LinkedIn notifications

We look at some examples of LinkedIn phishing and explain how everyone can avoid taking the bait.

Scammers send fake transfer notifications to users of the Luno cryptocurrency exchange, lure them to a fake page and hijack their accounts

Cryptophishing on the Luno exchange

Scammers are sending fake transfer receipt notifications to Luno cryptoexchange users and stealing their credentials.

5 reasons not to use work mail for personal matters

Why using a corporate mail account for personal matters is not a good idea

We’ve discovered several waves of fake purchase confirmation e-mails that prod the recipient to make a phone call to the scammers

Spam mail with vishing numbers

Received a confirmation e-mail for a purchase you didn’t make with a phone number to contact the company? Beware, it’s vishing.

E-mail with a malicious link

Spam and phishing e-mails are not the only threats you might find in your mailbox. Cybercriminals are still using good old links to malware.

Phishing with Google Apps Script

Scammers are using redirects through Google Apps Script to prevent mail servers from blocking phishing links.

Online PDFs for corporate e-mail phishing

Attackers claiming to represent Adobe online services are sending fake notifications to obtain corporate e-mail credentials.

Phishing for Office 365 credentials in images

To bypass text-analysis mechanisms, attackers are distributing phishing letters in images. How to avoid the danger.

Google Docs used for Office 365 credential phishing

Phishers are using Google online services to take over Microsoft online service accounts.

Phishing tricks with Microsoft Office

If an incoming message asks you to sign in to your MS Office account, here’s what to do.

Five signs ransomware is becoming an industry

With a website that looks like it could represent an online service provider, DarkSide Leaks makes us wonder what cybercriminals’ other PR tricks might be.

Ransomware leverage

Ransomware operators sometimes resort to rather unconventional threats to get their victims to pay.

PlayStation 5 contest scam

Scammers are cashing in on the PlayStation 5 shortage. Here’s how to avoid their bait.

When stolen materials are published online

Hackers trying to inflict maximum reputation damage are sending out links to the data they stole through Accellion FTA vulnerabilities.

Hosting provider phishing

How, and why, cybercriminals attack accounts on hosting provider sites.

The hunt for mailing lists

Cybercriminals are sending phishing e-mails to hijack access to ESP accounts.

How Facebook accounts get hijacked through copyright infringement notices

Fake copyright violation notice aimed at stealing Facebook accounts

If you receive a message saying your Facebook account has been blocked for copyright violation, don’t panic. It’s most likely just another phishing scam.

Phishing through e-mail marketing services

To bypass antiphishing technologies, malefactors can use legitimate e-mail service providers, or ESPs — but dangerous letters aren’t unstoppable.

Free Tools

Roman Dedenok