Category: phishing

Auto Added by WPeMatico

Google Login Security for High-Risk Users

Posted on By infossl
gmail, google, malware, phishing, risks, scanners, Security technology, securityengineering, usb

Google has a new login service for high-risk users. it’s good, but unforgiving. Logging in from a desktop will require a special USB key, while accessing your data from a mobile device will similarly require a Bluetooth dongle. All non-Google services and apps will be exiled from reaching into your Gmail or Google Drive. Google’s … Read More “Google Login Security for High-Risk Users” »

Russian Hacking Tools Codenamed WhiteBear Exposed

Posted on By infossl
adobe, computersecurity, cyberespionage, espionage, hacking, malware, phishing, russia, Security technology

Kaspersky Labs exposed a highly sophisticated set of hacking tools from Russia called WhiteBear. From February to September 2016, WhiteBear activity was narrowly focused on embassies and consular operations around the world. All of these early WhiteBear targets were related to embassies and diplomatic/foreign affair organizations. Continued WhiteBear activity later shifted to include defense-related organizations … Read More “Russian Hacking Tools Codenamed WhiteBear Exposed” »

New Technique to Hijack Social Media Accounts

Posted on By infossl
fakenews, hacking, impersonation, phishing, Security technology, socialmedia, twitter, twofactorauthentication

Access Now has documented it being used against a Twitter user, but it also works against other social media accounts: With the Doubleswitch attack, a hijacker takes control of a victim’s account through one of several attack vectors. People who have not enabled an app-based form of multifactor authentication for their accounts are especially vulnerable. … Read More “New Technique to Hijack Social Media Accounts” »

Spear Phishing Attacks

Posted on By infossl
academicpapers, phishing, Security technology, socialmedia

Really interesting research: “Unpacking Spear Phishing Susceptibility,” by Zinaida Benenson, Freya Gassmann, and Robert Landwirth. Abstract: We report the results of a field experiment where we sent to over 1200 university students an email or a Facebook message with a link to (non-existing) party pictures from a non-existing person, and later asked them about the … Read More “Spear Phishing Attacks” »

Tainted Leaks

Posted on By infossl
disinformation, espionage, leaks, phishing, russia, Security technology, tamperdetection

Last year, I wrote about the potential for doxers to alter documents before they leaked them. It was a theoretical threat when I wrote it, but now Citizen Lab has documented this technique in the wild: This report describes an extensive Russia-linked phishing and disinformation campaign. It provides evidence of how documents stolen from a … Read More “Tainted Leaks” »

Is WhatsApp Hacked?

Posted on By infossl
hacking, maninthemiddleattacks, phishing, Security technology, whatsapp

Forbes is reporting that the Israeli cyberweapons arms manufacturer Wintego has a man-in-the-middle exploit against WhatsApp. It’s a weird story. I’m not sure how they do it, but something doesn’t sound right. Another possibility is that CatchApp is malware thrust onto a device over Wi-Fi that specifically targets WhatsApp. But it’s almost certain the product … Read More “Is WhatsApp Hacked?” »