Phishing

Authored by Martin Heiland Open-Xchange OX App Suite, OX Guard, and OX Documents suffer from server-side request forgery and cross site scripting vulnerabilities. Some of these issues only affect version...

Written by Tim Starks Apr 23, 2021 |...

A phishing kit that uses embedded JavaScript targeted the users of more than 300 sites in the past week, aiming to grab credentials for SharePoint, Adobe Document Cloud, and...

First comes spear-phishing, next download of malicious DLLs that spread to removable USBs, dropping Cobalt Strike Beacon, and then, sometimes, a fake Zoom app. Researchers have spotted a...

A well-organized email spoofing campaign has been seen targeting financial services, insurance, healthcare, manufacturing, utilities, and telecom.A large-scale phishing campaign is targeting 200 million Microsoft 365 users around the...

The high-severity security vulnerabilities allow elevation of privileges, leading to data theft and more. A set of high-severity privilege-escalation vulnerabilities affecting Business Process Automation (BPA) application and Cisco’s Web Security...

In the first quarter of 2020, 22.5% more cyber attacks were detected than in the fourth quarter of 2019. Positive Technologies experts analyzed cyber attacks in the first quarter of...

Word and Excel documents are enlisted to disable Office macro warnings, so the Zloader banking malware can be downloaded onto systems without security tools flagging it. Legacy users of...

The never-seen malware strains have "professionally coded sophistication" and were launched by a well-resourced APT using nearly 50 domains, one hijacked. Two waves of global financial phishing attacks that swamped...