Recent Posts

Recent Blog Posts

The PhishLabs Blog

Romanian Cybercriminals Sentenced for Phishing Campaign

Posted by John LaCour on Jul 25, '19

This week, the Department of Justice for the U.S. Attorney’s Office for the Northern District of Georgia announced the final of three sentences to be carried out by cybercriminals that plead guilty to carrying out phishing campaigns involving vishing and SMiShing. I’m proud to say that the apprehension and conviction of these criminals was supported in part by intelligence PhishLabs provided in cooperation with federal law enforcement officials.

Read More

Topics: Vishing, SMiShing, Phishing Incident Response

Romanian Vishing/SMiShing Threat Actors Plead Guilty

Posted by Elliot Volkman on Mar 15, '19

In May of 2018, we reported on three Romanian threat actors who were extradited to the U.S. for their involvement in a SMiShing and Vishing fraud scheme. At the time of reporting, the expected losses were listed around $18 million but have since risen to more than $21 million.

Read More

Topics: Vishing, SMiShing

Prep for Taxes? Prep for Tax Scammers!

Posted by Alexa Villanueva on Jul 26, '18

Tax season may be over, but that doesn't stop fraudsters from trying to convince you that your taxes could land you in jail. It's a common vishing scheme, powered by robocalls, and there are just as many email phishing schemes to go along with it.

Read More

Topics: Phishing, Vishing

Two Romanian Threat Actors Extradited to US After $18M Fraud Scheme

Posted by Elliot Volkman on May 15, '18

One of the most frustrating things about cyber crime is how rarely threat actors receive real punishment, particularly when they’re based abroad.

Read More

Topics: Phishing, Threat Intelligence, Vishing, SMiShing

With Spoofed Calls on the Rise, FCC Seeks New ID Authentication Program

Posted by Elliot Volkman on Mar 14, '18

Spoofing a phone number is not a new concept, you probably get several calls from them a day, but with the accessibility of VoIP solutions and open source software spoofing a phone number is a breeze.

Telemarketers, robocalls, spammers, scammers, and even prank callers use it, and what once started as a simple grab and go of any available phone number has since evolved.

Read More

Topics: Vishing, Phone Fraud, Spoofing

The Evolution of Mobile Banking Trojans… and What To Do About Them (Part I)

Posted by Joshua Shilko on Aug 8, '17

Over the past few years the way people interact with the Internet has changed.

In the past, the vast majority of people (over 80 percent) accessed the Internet using Windows desktop and laptop machines, with similar OSX devices taking a distant second spot.

But by the end of 2016, everything had changed. Android mobile devices overtook Windows desktops as the most common means of accessing the Internet.

Naturally, this trend hasn’t gone unnoticed.

Read More

Topics: Phishing, Trojan, Vishing, Rogue Mobile Applications

Password Manager Breach, Phone Scams on the Rise, Hijacked Medical Devices and more | TWIC - June 19, 2015

Posted by Lindsey Havens on Jun 19, '15


Each week, the PhishLabs team posts The Week in Cybercrime (TWIC) to recap noteworthy cybercrime articles and reports (open source).

Read More

Topics: Phishing, The Week in Cybercrime, Vishing, Crimeware, Data Breach, Ransomware, Hacked

Top blog posts from PhishLabs: 2014 review

Posted by Lindsey Havens on Dec 30, '14

It has been an eventful year in cybercrime. We hope you have been able to follow our blog for updates in the cyber security arena but in case you missed one or two, we’ve compiled the most popular posts published by PhishLabs in 2014:

Read More

Topics: Phishing, Malware, ZeuS, Hacker Tools, Vishing, Vawtrak, Banking Trojan

As expected, Shellshock is being used for phishing attacks

Posted by Stacy Shelley on Oct 17, '14

Via Lancope, a botnet built by exploiting the Shellshock vulnerability is being used for phishing attacks:

Read More

Topics: Phishing, Vishing, Shellshock

Vishing campaign steals card data from customers of dozens of banks

Posted by John LaCour on Apr 29, '14

Vishing is alive and well -- and impacting midsize banks

Multiple recent vishing attacks (Voice over IP phishing) have been stealing payment card data from the customers of U.S. banks. In an attack last week, customers of a midsize bank received SMS text messages claiming their debit card was deactivated and requesting they provide the card and PIN numbers to reactivate it. 

PhishLabs investigated the attack and uncovered a cache of stolen payment card data belonging to customers of dozens of financial institutions. Based on analysis of the recovered cache, we estimate the vishing crew responsible for the attack has stolen the data of 250 cards per day in this vishing campaign. Further investigation also indicated that one of the phone numbers used in the campaign has likely been used in vishing attacks since October of 2013. 

Read More

Topics: Phishing, Threat Analysis, Threat Intelligence, Vishing

What's this all about?

The PhishLabs Blog is where we share our insights and thoughts on cybercrime and online fraud.

Recent Posts

Subscribe to Email Updates

Posts by Topic

see all