Security Alerts & News
by Tymoteusz A. Góral

#1259 Researchers go inside a business email compromise scam
LAS VEGAS – Poor operational security on the part of Nigerian scammers running a Business Email Compromise (BEC) scheme has given researchers a window into their operations.

Dell SecureWorks today published a report at Black Hat USA 2016 on what the criminals involved call wire-wire, or “waya-waya.” These attackers aren’t particularly sophisticated malware coders, for example, but the operation is adept at targeting executives in certain industries with phishing attacks that ultimately lead to fraudulent wire transfers, resulting in hundreds of thousands of dollars being lost. Manufacturing firms, chemical operations and other high-value organizations have been targeted by these campaigns that go much deeper than simply spoofing emails ordering confirming wire transfers.

The attackers behind these scams are using malware to attack email servers and sit man-in-the-middle style intercepting and redirecting messages in order to score a big pay day.
Read more
#1260 US health insurer warns 3.7m after cyber-attack
#1259 Researchers go inside a business email compromise scam
#1258 Stealing payment card data and PINs from POS systems is dead easy
#1257 Beware of ransomware hiding in shortcuts
#1256 Report: Only 3 percent of U.S. companies pay attackers after ransomware infections
#1255 What really happened in mass Telegram secure messenger hack
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12