Tags » Spearphishing

The Winnti criminal organization is known for industrial cyberespionage campaigns targeting gaming industry.

Kaspersky Lab experts tracking the activity of the Winnti group have discovered an active threat based on a 2006 bootkit installer.  The threat, which Kaspersky Lab has called “HDRoot” after the original tool’s name “HDD Rootkit”, is a universal platform for a sustainable and persistent appearance in a targeted system, which can be used as a foothold for any arbitrary tool. 547 more words


Bitcoin Payment Service BitPay Loses $1.8M in a Classic Phishing Hack

Atlanta’s BitPay, a Bitcoin processor, suffered losses of 5000 Bitcoins, nearly USD $1.8 million due to a spear-phishing attack instigated by a hacker, court documents revealed. 479 more words


Cost of Phishing and Value of Employee Training

The Ponemon Institute has presented the results of it’s study the Cost of Phishing and Value of Employee Training sponsored by Wombat Security. The purpose of this research is to understand how training can reduce the financial consequences of phishing in the workplace. 1,643 more words

Brian Pennington

Officials blame Russia for Pentagon Joint Chiefs of Staff email hack

US officials have laid the blame for an attack against the Pentagon’s Joint Chiefs of Staff unclassified email system firmly on Russia’s doorstep.

Explaining how the second… 501 more words


Analysis of the Breach in Epsilon's E-Mail Database

Public record of the Epsilon breach was fairly obfuscated when it initially took place, and only recently did details about the incident surface: http://krebsonsecurity.com/tag/epsilon-breach/

While we can’t attest to the value of every step taken prior or during the breach, the available information suggests that Epsilon suffered from weak deterrents, preventatives, and technical controls, but excelled at building fault tolerance through strong governance. 325 more words


Important updates to the TS Critical target list

As with many other people in the cybersecurity world, ThreatSTOP received notification today about a spear phishing campaign using some of the zero day vulnerabilities leaked from “Hackinged Team” at the beginning of the month. 107 more words


Spearphishing gets personal as woman scammed out of £50k house deposit

A London woman has been scammed out of almost £50,000, thinking she was sending it to her solicitor as a down-payment on a house purchase, after crooks apparently gained accessed to her email account and monitored her online conversations. 748 more words