#social-engineering
#social-engineering

OBSCURE#BAT Malware Uses Fake CAPTCHA Pages to Deploy Rootkit r77 and Evade Detection

A new malware campaign named OBSCURE#BAT deploys a rootkit called r77 using social engineering tactics.

Social media marketing

fromTechzine Global

3 weeks ago

TikTok videos are the latest malware attack vector

Malware is spreading via TikTok through social engineering, promoting infostealers like Vidar and StealC via user instructions.

TikTok's algorithm enhances the reach of malicious content, presenting challenges for traditional cybersecurity measures.

Marketing tech

State-Sponsored Hackers Weaponize ClickFix Tactic in Targeted Malware Campaigns

State-sponsored hacking groups have adopted ClickFix social engineering tactics to deploy malware effectively.

Not so innocent: Malware-laden memes on the rise

Internet memes, while entertaining, can serve as conduits for cybercrime due to users' misplaced trust in their innocence.

fromTheregister

1 week ago

ChatGPT for evil: Fake IT resumes, misinfo, and more

OpenAI detected and shut down malicious campaigns leveraging ChatGPT for cybercrime and social engineering.

Marketing tech

Microsoft Warns of ClickFix Phishing Campaign Targeting Hospitality Sector via Fake Booking[.]com Emails

Microsoft warns about a phishing attack targeting the hospitality sector that uses ClickFix to deliver malware disguised as emails from Booking.com.

Growth hacking

OBSCURE#BAT Malware Uses Fake CAPTCHA Pages to Deploy Rootkit r77 and Evade Detection

A new malware campaign named OBSCURE#BAT deploys a rootkit called r77 using social engineering tactics.

Social media marketing

fromTechzine Global

3 weeks ago

TikTok videos are the latest malware attack vector

Malware is spreading via TikTok through social engineering, promoting infostealers like Vidar and StealC via user instructions.

TikTok's algorithm enhances the reach of malicious content, presenting challenges for traditional cybersecurity measures.

Marketing tech

State-Sponsored Hackers Weaponize ClickFix Tactic in Targeted Malware Campaigns

State-sponsored hacking groups have adopted ClickFix social engineering tactics to deploy malware effectively.

Not so innocent: Malware-laden memes on the rise

Internet memes, while entertaining, can serve as conduits for cybercrime due to users' misplaced trust in their innocence.

fromTheregister

1 week ago

ChatGPT for evil: Fake IT resumes, misinfo, and more

OpenAI detected and shut down malicious campaigns leveraging ChatGPT for cybercrime and social engineering.

Vishing attacks surged 442% last year - how to protect yourself

Vishing attacks are rapidly increasing, with a 442% rise reported in late 2024, indicating a serious threat to individuals and organizations.

fromTechRepublic

CrowdStrike Security Report: Generative AI Powers Social Engineering Attacks

Phishing attacks are declining, with threat actors employing social engineering and generative AI to execute sophisticated forms of fraud.

Venture capital firm Insight Partners faces security breach

Insight Partners experienced a cyber incident due to a sophisticated social engineering attack but believes there will be no significant impacts.

fromArs Technica

Russia-aligned hackers are targeting Signal users with device-linking QR codes

Signal remains secure but is targeted by Russian agents to exploit its linking feature for manipulation.

VC giant Insight Partners confirms January cyberattack | TechCrunch

Insight Partners experienced a cybersecurity breach in January, involving unauthorized access through social engineering.

Marks & Spencer Hackers Tricked IT Workers Into Resetting Passwords

Cyberattacks on M&S and Co-op demonstrate the effectiveness of social engineering in bypassing security measures, necessitating enhanced organizational defenses.

Organizations must create tailored security strategies to adequately protect against social engineering attacks.

fromZDNET

Vishing attacks surged 442% last year - how to protect yourself

Vishing attacks are rapidly increasing, with a 442% rise reported in late 2024, indicating a serious threat to individuals and organizations.

fromTechRepublic

CrowdStrike Security Report: Generative AI Powers Social Engineering Attacks

Phishing attacks are declining, with threat actors employing social engineering and generative AI to execute sophisticated forms of fraud.

Venture capital firm Insight Partners faces security breach

Insight Partners experienced a cyber incident due to a sophisticated social engineering attack but believes there will be no significant impacts.

fromArs Technica

Russia-aligned hackers are targeting Signal users with device-linking QR codes

Signal remains secure but is targeted by Russian agents to exploit its linking feature for manipulation.

VC giant Insight Partners confirms January cyberattack | TechCrunch

Insight Partners experienced a cybersecurity breach in January, involving unauthorized access through social engineering.

Marks & Spencer Hackers Tricked IT Workers Into Resetting Passwords

Cyberattacks on M&S and Co-op demonstrate the effectiveness of social engineering in bypassing security measures, necessitating enhanced organizational defenses.

Organizations must create tailored security strategies to adequately protect against social engineering attacks.

more#cybersecurity

fromWIRED

3 weeks ago

How to Win Followers and Scamfluence People

These cybercriminals, often young men in Nigeria, duplicate elaborate relationships with victims over time and employ diverse techniques to extract money.

Growth hacking

Psychology

fromPsychology Today

The Psychology of Crowds

Crowd dynamics theory explains how collective behavior changes when individuals gather in groups.

Understanding crowd behavior is crucial for evaluating protests and social movements.

Suggestibility and social influence significantly affect individual behavior in crowds.

Privacy professionals

[Free Webinar] Guide to Securing Your Entire Identity Lifecycle Against AI-Powered Threats

Identity systems face vulnerabilities beyond traditional authentication methods, necessitating comprehensive lifecycle protection.

Attackers increasingly use social engineering and advanced technologies, like deepfakes, to compromise identity systems.

Financial services sector is facing data risks from personal apps

Personal app usage poses substantial data security risks in financial services.

Generative AI utilization is widespread, but a majority of organizations block certain apps.

Social engineering tactics, like malware scams, are prevalent in the financial sector.

Exclusive: Anagram takes a gamified approach to employee cybersecurity training

Innovative cybersecurity training methods are key to combating human-driven breaches.

Digital life

Financial services sector is facing data risks from personal apps

Personal app usage poses substantial data security risks in financial services.

Generative AI utilization is widespread, but a majority of organizations block certain apps.

Social engineering tactics, like malware scams, are prevalent in the financial sector.

Exclusive: Anagram takes a gamified approach to employee cybersecurity training

Innovative cybersecurity training methods are key to combating human-driven breaches.

more#generative-ai