KI-Tool klont Webseiten und macht #Phishing kinderleicht | heise online https://www.heise.de/news/KI-Tool-klont-Webseiten-und-macht-Phishing-kinderleicht-10363070.html #CyberCrime #ArtificialIntelligence
#KIMissbrauch Ein neues #Phishing-Toolkit namens #Darcula nutzt #KI, um jede beliebige Website automatisch zu klonen.
Nach Eingabe der URL erstellt es täuschend echte Kopien, inklusive Übersetzung und passender Eingabemasken. Angriffe erfolgen oft per #Smishing über #SMS oder #RCS-Nachrichten. Die Software funktioniert nach dem SaaS-Modell und erhöht das Risiko gezielter #Phishing-Attacken deutlich.
https://www.heise.de/news/KI-Tool-klont-Webseiten-und-macht-Phishing-kinderleicht-10363070.html
Neue Form von #Phishing per Mail: Sehen aus wie eine typische Eingangsbestätigung, kommen scheinbar von diversen Stadtwerken, Banken und Reiseveranstaltern. Tatsächlich kommen sie über Google-Mailserver bzw. bei Google angelegten Mailinglisten und zeigen auf URLs, die garantiert nichts mit dem angeblichen Absender zu tun haben, auch wenn die Websites dahinter so ähnlich aussehen sollten (hab keine angeklickt). Augen auf!
@bojerlanski Übrigens auch eine tolle Regel gegen #Phishing und Betrug: Wenn eine Mail starke Gefühle auslöst, will sie häufig deine wichtigen rationalen Schranken unterlaufen.
Phone Scam spoofing Vatican phone number
A sophisticated phone scam is using spoofed Vatican City caller ID (+379 67641975) to create false legitimacy, when in fact this prefix is not actually in use by Vatican City. Scammers can try to employ various religious pretexts to collect personal information, financial details, and payments from victims.
**Never answer unexpected calls from unfamiliar international numbers as they're likely scams using spoofed caller IDs. Never call back to such numbers, they may be tricks for you to call a premium number. If you answer and someone claims to be from a known company or the government, always hang up (and don't pick up again) - then contact the institution through their official website or phone number.**
#cybersecurity #infosec #scam #phishing #activescam
https://beyondmachines.net/event_details/phone-scam-spoofing-vatican-phone-number-c-u-z-l-v/gD2P6Ple2L
Did you know simple-looking SVG image files (like logos or icons) can secretly contain executable JavaScript? Phishing attacks using this trick are up a staggering 1,800%! Wild. #Phishing #TechNews
https://www.bleepingcomputer.com/news/security/tycoon2fa-phishing-kit-targets-microsoft-365-with-new-tricks/
Possible Phishing 
on: 
hxxps[:]//tq[.]ejsbvi0[.]za[.]com/personal[.]html
Analysis at: https://urldna.io/scan/68067e573b7750000a2f950d
#cybersecurity #phishing #infosec #urldna #scam #infosec
Gmail’s New #Encrypted Messages Feature Opens a Door for #Scams
#Google is rolling out an end-to-end encrypted email feature for business customers, but it could spawn #phishing attacks, particularly in non-Gmail inboxes.
#gmail #e2ee #encryption
https://www.wired.com/story/gmail-end-to-end-encryption-scams/
Zscaler, from yesterday: Beyond the Inbox: ThreatLabz 2025 Phishing Report Reveals How Phishing Is Evolving in the Age of GenAI https://www.zscaler.com/blogs/security-research/beyond-inbox-threatlabz-2025-phishing-report-reveals-how-phishing-evolving @threatlabz #cybersecurity #infosec #phishing
AI tool clones websites and makes phishing child's play
A phishing toolkit automatically clones any website after entering the URL. Even laypersons can spy out passwords and access data in this way.
Cybercriminals switch up their top initial access vectors of choice – Source: www.csoonline.com https://ciso2ciso.com/cybercriminals-switch-up-their-top-initial-access-vectors-of-choice-source-www-csoonline-com/ #ThreatandVulnerabilityManagement #IdentityandAccessManagement #rssfeedpostgeneratorecho #CyberSecurityNews #IncidentResponse #vulnerabilities #cyberattacks #Cybercrime #CSOonline #CSOOnline #Phishing
KI-Tool klont Webseiten und macht Phishing kinderleicht
Ein Phishing-Toolkit klont nach Eingabe der URL automatisch jede beliebige Webseite. Auch Laien können so Passwörter und Zugangsdaten ausspähen.
#Phishing: Kundschaft der #Sparkasse zu Datenverifizierung angehalten: https://www.verbraucherzentrale.nrw/phishing
Hmmm... 
#Phishing attacks leveraging HTML code inside SVG files https://securelist.com/svg-phishing/116256/ #spam #malware
Google's New End-to-End Encrypted Email: A Double-Edged Sword for Security
Google's recent announcement of a streamlined end-to-end encryption tool for Gmail raises both excitement and concern in the cybersecurity community. While it promises enhanced email security for busi...
Today, two people I live with received a letter. It told them about an upcoming change to the agreement of their (shared, presumably) Halifax #CreditCard.
Except... they don't have a shared Halifax credit card. Could it be a #scam? Some sort of #phishing attempt, maybe, or perhaps somebody taking out a credit card in their names?
I happened to be in earshot and asked to take a look at the letter, and was surprised to discover that all of the other details - the last four digits of the card, the credit limit, etc. - all matched MY Halifax credit card.
So yeah: Halifax sent a letter to me, about my credit card... but addressed it to... two other people I live with‽
I spent on the phone with Halifax, with two different advisors, who couldn't fathom what had happened or how. My credit card is not (and has never been) a joint credit card, and the only financial connection I have to the people on the letter is that I share a share a mortgage with them.
Halifax have promised to to respond to my complaint within... eight weeks. Just brilliant.
"Between late 2024 and early 2025, INTERPOL led a major operation across seven African countries to dismantle online fraud rings. Over 300 people were arrested for running scams through fake investment platforms" www.interpol.int/en/Crimes/Cy... #cybercrime #cybersec #phishing #data #tech #security
Cybercrime – our response
"The 2024 Internet Crime Report combines information from 859,532 complaints of suspected internet crime & details reported losses exceeding $16 billion—a 33% increase in losses from 2023" The #FBI Report >> www.fbi.gov/news/press-r... #cybersec #cybercrime #data #ransomware #phishing #tech #natsec
FBI Releases Annual Internet C...
More: 
