Today, SlashNext Threat Labs observed a flurry of spear-phishing attacks targeting companies at the forefront of Covid-19 vaccines and therapeutics development. These attacks are active, and as of this writing,…
As we write this post, SlashNext Threat Labs is witnessing an active attack on Google’s App Engine service via Appspot.com designed to steal Office 365 user credentials. The subpages are…
It's no secret that popular cloud and web services are a prime target for hackers to host phishing sites. The highly reputable domains and infrastructures used by these cloud services…
The recent Twitter breach involving Bitcoin transfer scams is not a new concept. SlashNext’s Threat Lab sees dozens of Bitcoin phishing sites each day because cybercriminals see it as an easy way to make money. Here are a few examples.
With the rising popularity of iOS and Android devices for everything from sending a client an SMS to attending a Zoom call, it was only a matter of time before…
With cybersecurity defenses improving, threat actors are turning to socially engineered attacks to exploit human vulnerabilities with phishing.
SlashNext discovered a new trend of injecting obfuscated malicious JavaScript into compromised websites, then redirect users to malicious tech support scams.
