Cybercrime & Digital Threats

A new business email compromise (BEC) scheme, where attacker tricks the recipients into rerouting paychecks by direct deposit, has emerged.

Microsoft notified affected users of a security breach caused by the compromised credentials of a support agent. Hackers were able to access email addresses, subject lines of emails, and folder names.

The threat actors behind Emotet are hijacking older email threads and reviving them with new replies to make their messages seem more convincing.

The threat actor London Blue has been refining its BEC techniques and expanding its scope for both targets and regions.

A severe ransomware attack has crippled operations of local government offices in Genesee County, Michigan. More severe than originally thought, services are still stalled after almost a week. The county reports that data has not been taken.

Tax season is upon us (again), and so are IRS tax scammers. How prepared are you when it comes to filing your taxes and defending against IRS tax fraud? Learn more about these scams and how you can protect yourself.

More than 13,000 Internet Small Computer Systems Interface (iSCSI) clusters were found to be unsecured and accessible over the public internet due to their owners’ failing to password-protect them.

Researchers discovered hundreds of compromised CMS sites delivering malicious payloads such as Shade ransomware and phishing pages to users.

Personal health information of over 350,000 consumers were potentially compromised after nine employees of the Oregon Department of Human Services (DHS) fell victim to a phishing attack.