phishing

The USA's Cybersecurity and Infrastructure Security Agency (CISA) and the Multi-State Information Sharing & Analysis Center (MS-ISAC) are reporting the large-scale re-emergence of the Emotet trojan. Since July 2020, CISA has seen increased activity involving Emotet-associated indicators. During that time, CISAs EINSTEIN Intrusion Detection System, which protects federal, civilian executive branch networks, has detected roughly 16,000 alerts related to Emotet activity. CISA observed Emotet being executed in phases during possible targeted campaigns. Emotet used compromised Word documents (.doc) attached to phishing emails as initial insertion vectors. It spreads via links in e-mails and as macros in .doc files attached to e-mails.

Russian criminals are offering a service of downloading entire websites and breaching the intellectual property rights of website content owners.

But that's not the only fascinating thing about the criminals' approach.

Basically, they are selling the rod and line to phishermen.

Want to create a fake bank website complete with contact forms? Here's how....

A warning from Vortex Centrum Limited, publisher of PleaseBeInformed.com and its various publications.

"We discovered that our data source was modified by an unauthorized agent" says the e-mail that purports to be from LinkedIn. But it isn't. And there's even a little hint at the end to prove it.

IMPORTANT UPDATE

It's not rocket science. Ever since (I think) 1998 when the BBC's lawyers blocked an explanation I gave to BBC TV on how the nature of HTML facilitates on-line fraud (the feared that it would increase the number of criminals using it) criminals have, indeed, used certain features of HTML to hide what they are up to and ordinary people have lost many millions of dollars and have suffered innumerable attacks on their computers simply because of one, very simple, trick, writes Nigel Morris-Cotterill