The year 2021 was eventful in regards to digital hazards for people and companies, and banks were no exception. Throughout the previous year, we have actually seen cybercriminals continue to actively target our users with tools and methods that emerged due to the pandemic. Flaws in the shift to remote/hybrid work continue to posture a […]
Tag Archives: phishing
Evolved phishing: Device registration trick adds to phishers’ toolbox for victims without MFA
We have actually just recently revealed a massive, multi-phase project that includes an unique method to standard phishing methods by signing up with an attacker-operated gadget to a company’’ s network to additional propagate the project. We observed that the 2nd phase of the project achieved success versus victims that did not execute multifactor authentication […]
How we took part in MLSEC and (almost) won
This summertime Kaspersky specialists participated in the Machine Learning Security Evasion Competition ( MLSEC ) —– a series of trials evaluating entrants’ capability to assault and develop artificial intelligence designs. The occasion is consisted of 2 primary obstacles —– one for enemies, and the other for protectors. The aggressor difficulty was divided into 2 tracks […]
Catching the big fish: Analyzing a large-scale phishing-as-a-service operation
In researching phishing attacks, we came across a campaign that used a rather high volume of newly created and unique subdomains—over 300,000 in a single run. This investigation led us down a rabbit hole as we unearthed one of the operations that enabled the campaign: a large-scale phishing-as-a-service operation called BulletProofLink, which sells phishing kits, […]
Spam and phishing in Q1 2021
Quarterly highlights Banking phishing: new version of an old scheme In Q1 2021, new banking scams appeared alongside ones that are more traditional. Clients of several Dutch banks faced a phishing attack using QR codes. The fraudsters invited the victim to scan a QR code in an email, ostensibly to unblock mobile banking. In actual […]