Recruited by a shady Russian hosting company
One morning, an email landed. Subject line: 'your cloud cost reduction setup?' That one lands...
Tag archive
One morning, an email landed. Subject line: 'your cloud cost reduction setup?' That one lands...
Un breach por phishing comprometió a Intuitive Surgical, fabricante del robot da Vinci. Qué pasó, cómo funcionó el ataque y cómo proteger tu empresa hoy.
A new information-stealing malware for macOS, dubbed 'CrashStealer,' is actively being used in targeted attacks. The malware evades Apple's Gatekeeper by using a notarized installer and impersonates the legitimate 'CrashReporter.app' to trick users into entering their system password. Once obtained, CrashStealer unlocks the macOS Keychain to steal saved passwords, browser credentials, and data from dozens of cryptocurrency wallet applications. The campaign appears highly targeted, with distribution from a PIN-protected website.
According to the Sophos 'State of Ransomware 2026' report, compromised identities are now the primary root cause of ransomware attacks, accounting for 79% of incidents. For the first time in four years, malicious email and phishing have surpassed software vulnerability exploitation as the top initial access vector. The report, which surveyed over 2,100 victims, highlights a strategic shift by attackers towards identity-based tactics, even as the average total cost to recover from an attack climbs to $1.7 million.
Iranian state-sponsored APT Nimbus Manticore is using AI-coded malware, phishing, and SEO poisoning to target aviation and software firms across the US, Europe, and Middle East.
Dutch law enforcement suspects local criminals were behind a recent data breach at Odido, a major telecommunications provider in the Netherlands. The attack exposed the personal data of approximately six million customers. The breach was initiated through a phishing attack, where a Dutch-speaking individual impersonated an IT employee over the phone to gain initial access to a customer contact system. While Odido states that sensitive data like passwords, financial details, and call logs were not compromised, the exposed information could still be used for further phishing and fraud. The Dutch High Tech Crime Team is investigating and has urged the impersonator to come forward.
Phishing emails are still one of the most common ways attackers get passwords, recovery codes, and...
International law enforcement agencies have achieved major successes in dismantling cybercrime...
According to the 2026 Sophos State of Ransomware report, identity-based attacks are now the primary root cause for 79% of ransomware incidents, overtaking vulnerability exploitation. Malicious email (26%), phishing (24%), and compromised credentials (23%) are the top three initial access vectors. Alarmingly, 97% of victims who were breached via compromised credentials had multi-factor authentication (MFA) deployed, indicating that attackers are successfully bypassing traditional MFA controls. The findings highlight the need for advanced identity threat detection and phishing-resistant MFA.
This article details a sophisticated phishing campaign that leverages legitimate services and...

Could one phishing email put your business at risk? A simple best practice: enable MFA on every...

Originally published at https://monstadomains.com/blog/lookalike-domain-attacks/ Over 230...