Hot Topics

Social Engineering

Social Engineering

DonkeyHotey (cc:by-sa)

Don’t Mess With Texas Privacy: AG Sues GM for $18 BILLION

| | Consumer IoT, Texas Data Privacy and Security Act, vehicle cybersecurity
KP♡TX PII: “General Motors has engaged in egregious business practices that violated Texans’ pri­vacy … in unthinkable ways,” rants state attorney general Ken Paxton (pictured) ...
Security Boulevard
U.S. Election Meddling Iran Biden Trump

Google: Iranian Group APT42 Behind Trump, Biden Hack Attempts

| | Biden-Harris, Iran Hacking Groups, Trump
Google cybersecurity researchers confirm that the Iranian-sponsored APT42 threat group is being ongoing phishing campaigns against President Biden, Vice President Harris, and ex-President Trump in an attempt to influence the upcoming presidential ...
Security Boulevard
The word “Tuesday” in cutout paper letters on a textured background

August Patch Pileup: Microsoft’s Zero-Day Doozy Dump

| | Adobe patch, august patch tuesday, CVE-2024-21302, CVE-2024-38106, CVE-2024-38107, CVE-2024-38178, CVE-2024-38189, CVE-2024-38193, CVE-2024-38199, CVE-2024-38200, CVE-2024-38202, CVE-2024-38213, Microsoft patch tuesday, Microsoft Patch Tuesday August 2024, Patch Tuesday, SB Blogwatch
See These CVEs: Patch Tuesday—ten zero-days, seven Critical vulns, zero time to waste ...
Security Boulevard
North Korea

WTH? DPRK WFH Ransomware Redux: 3rd Person Charged

| | Andrew M., DPRK, Korea, Korean military, Korean ransomware, Matthew Isaac Knoot, North Korea, North Korean Hacking, North Korean Threat Actors, northkorea, Noth Korea, SB Blogwatch
North Korean army of remote IT workers enabled by Matthew Isaac Knoot, alleges DoJ ...
Security Boulevard
The War for Control of DNS Encryption | Paul Vixie | WWHF Deadwood 2020 Virtual

Sleeping With the Phishes

| | Hacking, Penetration Testing, Phishing, Red Team, social engineering
PHISHING SCHOOLHiding C2 With Stealthy Callback ChannelsWrite a custom command and control (C2) implant — Check ✅Test it on your system — Check ✅Test it in a lab against your client’s endpoint detection and response (EDR) product — Check ✅Convince a target ...
Posts By SpecterOps Team Members - Medium
North Korea fake IT worker scam PCs

DOJ Shuts Down Another North Korean ‘Laptop Farm’

| | Department of Justice (DOJ), fake IT worker scam, North Korean Hacking
The DOJ shut down another "laptop farm" link to a North Korean fake IT worker scam that the country uses to illegally bring in money for its nuclear and ballistic weapons program ...
Security Boulevard
cybersecurity Iran Russia Trump disinformation elections

Trump Campaign Hack Points to Growing U.S. Election Threats

| | Donald Trump, election disinformation, Iranian hackers, Russia
The Trump campaign is claiming a hack is the work of Iranian operatives, adding to expanding election-interference campaigns that also include China and Russia, which the federal government calls the "predominant threat ...
Security Boulevard
How Hackers Steal Your RFID Cards

How Hackers Steal Your RFID Cards

| | Blog, Cybersecurity, Red Team, RFID, Security Awareness & Education, Technical, Threat & Attack Simulation, Vulnerability Management & Penetration Testing
Radio Frequency Identification (RFID) cards are ubiquitously used to authenticate using a physical token. This technology is often embedded in […] ...
The Guiding Point | GuidePoint Security
vishing, romance scams generative AI pig butchering

This Caller Does Not Exist: Using AI to Conduct Vishing Attacks

| | mobile attacks, Mobile Threats, Phishing, social engineering, vishing
The best way to defend against vishing attacks is by educating ourselves on how threat actors operate, and to become familiar with the tools, techniques and procedures used to carry out these ...
Security Boulevard
TikTok Abuses Kids, say DoJ and FTC

TikTok Abuses Kids, say DoJ and FTC

| | Bytedance, children, Children and smartphones, Children's Online Privacy Protection Act (COPPA), china, chinese government, Coppa, Privacy, SB Blogwatch, social media, spyware, TikTok, TikTok Ban, Won’t somebody think of the children?
For You Plague: U.S. Justice Dept. and Federal Trade Commission file lawsuit, alleging TikTok broke the COPPA law, plus a previous injunction ...
Security Boulevard
Load more

Application Security Check Up