They are growing in scale and becoming harder to detect....
AA20-099A: COVID-19 Exploited by Malicious Cyber Actors
vom 235.57 Punkte
Original release date: April 8, 2020SummaryThis is a joint alert from the United States Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA) and the United Kingdom’s National Cyber Security Centre (NCSC).
This al
AA20-099A: COVID-19 Exploited by Malicious Cyber Actors
vom 235.57 Punkte
Original release date: April 8, 2020SummaryThis is a joint alert from the United States Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA) and the United Kingdom’s National Cyber Security Centre (NCSC).
This al
Using ML to Stop Latent Email Attacks That Dodge Early Detection
vom 164.02 Punkte
Editor's Note: This blog post was originally found on the Agari Email Security blog. https://i.redd.it/7c4i38jbupc31.png By Scot Kennedy When implemented effectively, real-world deployments of machine learning (ML)-based email security can block
HiddenEye - Modern Phishing Tool With Advanced Functionality (Android-Support-Available)
vom 161.3 Punkte
Modern Phishing Tool With Advanced Functionality
PHISHING | KEYLOGGER | INFORMATION_COLLECTOR | ALL_IN_ONE_TOOL | SOCIALENGINEERING
DEVELOPERS & CONTRIBUTORS
ANONUD4Y (https://github.com/An0nUD4Y)
USAMA ABDUL SATTAR (https://github.com/usa
Phishing Attacks: Why Energy Companies and Utilities Are Getting Zapped
vom 156.09 Punkte
Editor's Note: This blog post was originally found on the Agari Email Security blog. https://preview.redd.it/q5yly7drhw241.png?width=730&format=png&auto=webp&s=87d8978b3ff0c5f7fd99b9e76195b2d91c4d2f69 By John Wilson The Wall Street Journa
Evilginx 1.1.0 - Phishing Attack Framework with Two-Factor Authentication Bypass written in Python
vom 136.83 Punkte
About Evilginx 1.1.0 - Phishing Attack Framework with Two-factor Authentication Bypass
  Evilginx is a Man-In-The-Middle Attack Framework used for phishing credentials and session cookies of any web service. It's core runs on Nginx HTTP server, which
Phishing-Simulation - Aims To Increase Phishing Awareness By Providing An Intuitive Tutorial And Customized Assessment
vom 128.13 Punkte
Phishing Simulation mainly aims to increase phishing awareness by providing an intuitive tutorial and customized assessment (without any actual setup - no domain, no infrastructure, no actual email address) to assess people's action on any given situation and
Evilginx 2 - Next Generation of Phishing Attack and Bypass 2FA written in Go
vom 124.88 Punkte
About Evilginx 2 - Next Generation of Phishing Attack and Bypass 2FA written in Go
  Evilginx2 is a Man-In-The-Middle Attack Framework used for phishing login credentials along with session cookies, which in turn allows to bypass Two-Factor Authentication protection.  This tool is a successor to Evilginx, released in 2017, which used a custom version of nginx HTTP server to provide m
Understanding why phishing attacks are so effective and how to mitigate them
vom 123.73 Punkte
Posted by Elie Bursztein, Security & Anti-abuse Research Lead, Daniela Oliveira, Professor at the University of Florida
Phishing attacks continue to be one of the common forms of account compromise threats. Every day, Gmail blocks more than 100 million phishing emails and Google Safe Browsin
New research: How effective is basic account hygiene at preventing hijacking
vom 120.16 Punkte
Posted by Kurt Thomas and Angelika Moscicki Every day, we protect users from hundreds of thousands of account hijacking attempts. Most attacks stem from automated bots with access to third-party password breaches, but we also see phishing and targeted attacks. Earli
AA18-284A: Publicly Available Tools Seen in Cyber Incidents Worldwide
vom 115.49 Punkte
Original release date: October 11, 2018Summary
This report is a collaborative research effort by the cyber security authorities of five nations: Australia, Canada, New Zealand, the United Kingdom, and the United States.[1][2][3][4][5]
In it we highlight the use of five publicly
Jeopardize - A Low(Zero) Cost Threat Intelligence & Response Tool Against Phishing Domains
vom 107.53 Punkte
Jeopardize tool is developed to provide basic threat intelligence&response capabilities against phishing domains at the minimum cost as possible. It detects registered phishing domain candidates (typosquatting, homograph etc.), analyzes them and assigns
