FlagerLive reports: The Flagler County school district was the target of electronic fraud involving what Flagler County Sheriff Rick Staly described as a “pretty significant amount of money,” in a scheme having all the makings of phishing–a common method by fraudsters of impersonating familiar contacts either to induce a swindle or to make the recipient…
Category: Phishing
French national pleads guilty to fraud and aggravated identity theft
Past coverage on DataBreaches about Sebastien Raoult can be found linked from “Raoult.” Since he was first detained in 2022, both he and everyone involved in ShinyHunters have denied that he was ever part of that group, yet DOJ seems to have gotten him to plea to a conspiracy count involving ShinyHunters. From the plea…
Broomfield Skilled Nursing and Rehabilitation Center settles breach-related charges with Colorado Attorney General
Colorado Attorney General Phil Weiser recently announced a settlement with Broomfield Skilled Nursing and Rehabilitation Center, LLC stemming from a 2021 data breach. The following is the state’s press release: Sept. 22, 2023 (DENVER) – Attorney General Phil Weiser announced today a settlement with Broomfield Skilled Nursing and Rehabilitation Center, LLC., for failing to protect the personal…
New AtlasCross hackers use American Red Cross as phishing lure
It seems we are finding out about new groups on a daily basis recently. Now Bill Toulas reports on another one: A new APT hacking group named ‘AtlasCross’ targets organizations with phishing lures impersonating the American Red Cross to deliver backdoor malware. Cybersecurity firm NSFocus identified two previously undocumented trojans, DangerAds and AtlasAgent, associated with…
Facebook Messenger phishing wave targets 100K business accounts per week
Bill Toulas reports: Hackers use a massive network of fake and compromised Facebook accounts to send out millions of Messenger phishing messages to target Facebook business accounts with password-stealing malware. The attackers trick the targets into downloading a RAR/ZIP archive containing a downloader for an evasive Python-based stealer that grabs cookies and passwords stored in…
Ukraine’s CERT Thwarts APT28’s Cyberattack on Critical Energy Infrastructure
Seen on The Hacker News: The Computer Emergency Response Team of Ukraine (CERT-UA) on Tuesday said it thwarted a cyber attack against an unnamed critical energy infrastructure facility in the country. The intrusion, per the agency, started with a phishing email containing a link to a malicious ZIP archive that activates the infection chain. “Visiting…