Phishing Attack Using Fake Google reCAPTCHA to Steal Credential from Microsoft Users
Phishing Attack Using Fake Google reCAPTCHA to Steal Credential from Microsoft Users
  • Alert & Advisory
  • March 16, 2021

A Microsoft-themed phishing campaign is using phony Google reCAPTCHA in an attempt to steal credentials from senior employees of various organizations. At least 2,500 such emails have been sent to senior-level employees, over the past three months. The emails first take recipients to a fake Google reCAPTCHA system page. Once victims “pass” the reCAPTCHA test, they are then redirected to a phishing landing page, which asks for their Office 365 credentials. After filling out the fake reCAPTCHA system, victims are then directed to what appears to be a Microsoft login screen.

Microsoft Exchange Servers Zero-Day Vulnerability
Microsoft Exchange Servers Zero-Day Vulnerability
  • Alert & Advisory
  • March 8, 2021

Microsoft has confirmed the attacks against the Exchange servers aimed at stealing email addresses and installing malware to gain persistence in the target networks. This attacks campaign has been attributed to China-based hacker group called HAFNIUM who were exploiting unknown software bugs in Exchange Server to steal sensitive data from select targets. The vulnerability is being actively exploited in the wild by several cyber espionage groups, including LuckyMouse, Tick, and Calypso targeting servers around the world.

Advisory on Windows Vulnerabilities
Advisory on Windows Vulnerabilities
  • Alert & Advisory
  • February 25, 2021

Cybercriminals are actively taking advantage of weaknesses in Windows and deploying malware for nefarious purposes. Windows has been a direct target of attacks by malware, more than 80% of malware detected are from windows according to latest discovery. This amongst others includes two updated versions of LodaRAT malware, TrickBot malware and the Zerologon flaws.

Security Advisory on Apple Chips Malware
Security Advisory on Apple Chips Malware
  • Alert & Advisory
  • February 23, 2021

A new malware has been discovered to be crafting multi-architecture applications so that their code will run natively on Apple’s M1 Silicon chips. This is an attempt by malicious actors to target the company’s latest generation of Macs powered by its own processors. The malware is in the form of a Safari adware extension originally written to run on Intel x86 chips. The malicious extension, called "GoSearch22," is a well-known member of the "Pirrit" Mac adware family.

Security Advisory on Phishing Attacks
Security Advisory on Phishing Attacks
  • Alert & Advisory
  • December 15, 2020

Phishing attacks are the most common and effective cyber security threat to individuals, businesses and organizations. Phishing is the delivery mechanism of choice for ransomware and other malware and it is a critical problem that every organization must address through a variety of means. Most phishing messages indicate immediate action is needed to avoid an unwanted time-sensitive consequence. It is important to be suspicious of all requests, and review messages carefully to determine if the message may be a phishing scam.

Related Articles