Each week, the PhishLabs team posts The Week in Cybercrime (TWIC) to recap noteworthy cybercrime articles and reports (open source).
- Advanced Targeting – The Name of the Game (Phishlabs)
Business email compromise (BEC), spear phishing, and social engineering aren’t just buzz words that have gained popularity in the security industry. These tactics have recently been employed by cybercriminals to get around the plethora of security controls deployed to protect organizations.
- Carphone Warehouse Breach May Have Hit 2.4 Million (Info Security)
Personal data including the bank details of over two million Carphone Warehouse customers is at risk after the firm revealed that it has been breached by a “sophisticated cyber attack.”
- Tech Firm Ubiquiti Suffers $46M Cyberheist (Krebs on Security)
Networking firm Ubiquiti Networks Inc. disclosed this week that cyber thieves recently stole $46.7 million using an increasingly common scam in which crooks spoof communications from executives at the victim firm in a bid to initiate unauthorized international wire transfers.
- Wire Fraud Just Got More Challenging (Bank Info Security)
A $46.7 million business email compromise scheme that targeted Ubiquiti Networks Inc. shows just how little cybercriminals have to do to fool employees into unknowingly committing wire fraud.
- Darkhotel expands targets, ups sophistication, leverages Hacking Team exploit (CSO)
Darkhotel -- the elite spying group discovered luxury hotels' Wi-Fi networks last year -- is back with new targets, new defensive capabilities, and a new zero-day exploit courtesy of the Hacking Team leak.
- Hackers charged after pocketing $100m from stolen material (ZDNet)
Two Ukraine-based hackers have been identified as the leaders of a nine-man syndicate which stole media releases from three major newswire companies, and on-sold them to cheat the securities market, raking in $100 million from illegal sales.
- Cisco network kit warning: Watch out for malware in the firmware (The Register)
Cisco has warned users to watch for who's got admin access to kit, because it's seen malicious ROM images in the wild.
- SEC Files Insider Trading Charges After Financial Wire Hack (TechWeek Europe)
Authorities charge 32 people after international group hacked financial newswires to trade shares on the stock market.
- Cybersquatter frenzy as Google becomes Alphabet without owning alphabet.com (Naked Security)
Google's big announcement on Monday that it was creating a new holding company called Alphabet took the business world by surprise.