The first stop for security news | Threatpost
Phishers Swim Around 2FA in Coinbase Account Heists
August 8^th 2022 at 15:26

Phishers Swim Around 2FA in Coinbase Account Heists

By Elizabeth Montalbano

Attackers are spoofing the widely used cryptocurrency exchange to trick users into logging in so they can steal their credentials and eventually their funds.

Related tags
August 8^th 2022 at 15:26

The first stop for security news | Threatpost
Open Redirect Flaw Snags Amex, Snapchat User Data
August 5^th 2022 at 13:17

Open Redirect Flaw Snags Amex, Snapchat User Data

By Elizabeth Montalbano

Separate phishing campaigns targeting thousands of victims impersonate FedEx and Microsoft, among others, to trick victims.

Related tags
August 5^th 2022 at 13:17

The first stop for security news | Threatpost
Universities Put Email Users at Cyber Risk
August 2^nd 2022 at 23:02

Universities Put Email Users at Cyber Risk

By Elizabeth Montalbano

DMARC analysis by Proofpoint shows that institutions in the U.S. have among some of the poorest protections to prevent domain spoofing and lack protections to block fraudulent emails.

Related tags
August 2^nd 2022 at 23:02

The first stop for security news | Threatpost
Threat Actors Pivot Around Microsoft’s Macro-Blocking in Office
July 28^th 2022 at 17:24

Threat Actors Pivot Around Microsoft’s Macro-Blocking in Office

By Elizabeth Montalbano

Cybercriminals turn to container files and other tactics to get around the company’s attempt to thwart a popular way to deliver malicious phishing payloads.

Related tags
July 28^th 2022 at 17:24

The first stop for security news | Threatpost
IoT Botnets Fuels DDoS Attacks – Are You Prepared?
July 26^th 2022 at 12:38

IoT Botnets Fuels DDoS Attacks – Are You Prepared?

By Sponsored Content

The increased proliferation of IoT devices paved the way for the rise of IoT botnets that amplifies DDoS attacks today. This is a dangerous warning that the possibility of a sophisticated DDoS attack and a prolonged service outage will prevent businesses from growing.

Related tags
July 26^th 2022 at 12:38

The first stop for security news | Threatpost
Magecart Serves Up Card Skimmers on Restaurant-Ordering Systems
July 20^th 2022 at 12:14

Magecart Serves Up Card Skimmers on Restaurant-Ordering Systems

By Elizabeth Montalbano

300 restaurants and at least 50,000 payment cards compromised by two separate campaigns against MenuDrive, Harbortouch and InTouchPOS services.

Related tags
July 20^th 2022 at 12:14

The first stop for security news | Threatpost
Authentication Risks Discovered in Okta Platform
July 19^th 2022 at 15:33

Authentication Risks Discovered in Okta Platform

By Nate Nelson

Four newly discovered attack paths could lead to PII exposure, account takeover, even organizational data destruction.

Related tags
July 19^th 2022 at 15:33

The first stop for security news | Threatpost
Large-Scale Phishing Campaign Bypasses MFA
July 13^th 2022 at 11:45

Large-Scale Phishing Campaign Bypasses MFA

By Elizabeth Montalbano

Attackers used adversary-in-the-middle attacks to steal passwords, hijack sign-in sessions and skip authentication and then use victim mailboxes to launch BEC attacks against other targets.

Related tags
July 13^th 2022 at 11:45

The first stop for security news | Threatpost
‘Callback’ Phishing Campaign Impersonates Security Firms
July 12^th 2022 at 11:43

‘Callback’ Phishing Campaign Impersonates Security Firms

By Elizabeth Montalbano

Victims instructed to make a phone call that will direct them to a link for downloading malware.

Related tags
July 12^th 2022 at 11:43

The first stop for security news | Threatpost
Google Patches Actively Exploited Chrome Bug
July 5^th 2022 at 11:54

Google Patches Actively Exploited Chrome Bug

By Elizabeth Montalbano

The heap buffer overflow issue in the browser’s WebRTC engine could allow attackers to execute arbitrary code.

Related tags
July 5^th 2022 at 11:54