Home » phishing attacks

phishing attacks

Financial Phishing Cyberattacks Significantly Increase in Kenya and Nigeria in Q2 of 2022

Emad Haffar, Head of Technical Experts at Kaspersky. According to Kaspersky’s Financial Cyberthreats report, attacks in the financial sector are becoming increasingly corporate-oriented and shifting away from consumers. Kaspersky (www.Kaspersky.co.za) Security Network data shows that the number of financial phishing attempts in the African regions increased significantly from Q1 to Q2 of 2022. Banks, payment systems, and e-commerce websites were attacked. Financial phishing is a deceptive way of stealing information and is gaining momentum in the region. Phishing is a type of online fraud where the scammer sends fake alerts from banks, e-pay systems and other organisations to trick consumers into sharing their financial details. The alerts sent by the scammer can be related to loss of data...

Cross chains, beware! deBridge flags attempted phishing attack, suspects Lazarus Group

Cross-chain protocols and Web3 firms continue to be targeted by hacking groups as deBridge Finance unpacks a failed attack that bears the hallmarks of North Korea’s Lazarus Group hackers. deBridge Finance employees received what looked like another ordinary email from co-founder Alex Smirnov on a Friday afternoon. An attachment labeled ‘New Salary Adjustments’ was bound to pique interest, with various cryptocurrency firms instituting staff layoffs and pay cuts during the ongoing cryptocurrency winter. A handful of employees flagged the email and its attachment as suspicious, but one staff member took the bait and downloaded the PDF file. This would prove fortuitous, as the deBridge team worked on unpacking the attack vector sent from a spoof email address designed to mirror Smirnov’s. The ...

Digital Payments: Survey Reveals 35% South Africans Faced Phishing Scams

Image sourced from isnews.stir.ac.uk According to the Kaspersky Digital Payment survey, 35% of respondents from South Africa faced phishing scams when using online banking or mobile wallet services. 43% have personally encountered fake websites, and 59% experienced scams (via texts or calls) using social engineering. When asked about awareness of threats against digital payment methods, the majority of respondents from South Africa report that they are aware of both financial phishing attacks (94%) and online scams (95%). 78% also stated that they are informed about banking malware on PCs and on mobile. This type of malicious software steals money from users’ bank accounts. However, 98% think that banks and payment companies should educate users more about the threats online. When it comes...

Small Businesses in Kenya Face 47% Increase in Cyber Attacks

When a small business owner is faced with the responsibilities of production economics, financial reports, and marketing all at the same time, cybersecurity can often appear complicated and, at times, unnecessary. However, this disregard for IT security is being exploited by cybercriminals. Kaspersky researchers assessed the dynamics of attacks on small and medium-sized businesses between January and April 2022 and the same period in 2021, to identify which threats pose an increasing danger to entrepreneurs. In 2022, the number of Trojan-PSW (Password Stealing Ware) detections in Kenya increased by 16% when compared to the same period in 2021 – 12 639 detections in 2022 compared to 10 934 in 2021. Trojan-PSW is a malware that steals passwords, along with other account inform...

How to Stop the Costliest Internet Scams

Image sourced from isnews.stir.ac.uk According to Steve Flynn, Sales and Marketing Director at ESET Southern Africa, it’s long past time organisations get a handle on business email compromise scams which generated more losses for victims in 2021 than any other type of cybercrime. While ransomware, hacking, API hacks, and all the other cybersecurity threats make headlines, it’s worth remembering that the costliest internet scam is still business email compromises, according to the latest FBI Internet Crime Report. Among the complaints received by the FBI in 2021, ransomware, business e-mail compromise (BEC) schemes, and the criminal use of cryptocurrency are among the top incidents reported. Technology-based systems are under attack, and they cost organisations around the world billions in...

What You Need to Know About Phishing Attacks

We use cookies on our website to give you the most relevant experience by remembering your preferences and repeat visits. By clicking “Accept All”, you consent to the use of ALL the cookies. However, you may visit “Cookie Settings” to provide a controlled consent.

How Emails Can Cause Cybersecurity Vulnerabilities in Your Organisation

Sourced from International IDEA Since the start of the pandemic, many businesses have shifted to remote work. Cybercriminals saw the opportunity to target businesses’ remote users leaving unprepared businesses vulnerable to cyberattacks. Phishing attacks have become one of the most prominent data security problems for a number of businesses in South Africa. “Remote working increased organisation’s reliance on email, creating the perfect conditions for email fraud and phishing,” says Riaan de Villiers, Business Analyst at LAWtrust Information Security. In the Mimecast State of Email Security 2020 study, businesses in South Africa reported a 53% increase in phishing attempts and a 46% increase in incidences of impersonation fraud compared to previous years. Email is a common channel used for...

How to Be Safe From the “Reset Password” Email Scam

Image sourced form Broad Media Most online services have built-in security systems that alert employees when the systems detect “unusual” activity on their accounts. For example, legitimate email services or similar will send notifications about attempts to reset the phone number and e-mail address linked to the account, or the password. Of course, as soon as such messages became commonplace, enterprising cybercriminals tried to imitate this mechanism to attack corporate users. As cyberattacks rely on the human factor more often each year, and as cybersecurity technologies progress, such tricks are becoming more and more common and are being registered in multiple mailouts around the world. The scenario is usually as follows: if it’s a public online service attacker it will usually make ev...

4 Types of Hackers That You Probably Didn’t Know Existed

Image sourced from Pixabay A security hacker is someone who explores methods for breaching defences and exploiting weaknesses in a computer system or network. To the laymen, hackers are known as the bad guys of the internet, but it is way more than that, and there are many types of hackers that you probably have never heard of before. The most common attacks on the internet include malware, phishing, Man-in-the-Middle (MITM) attacks, Denial-of-Service (DOS) attacks, SQL injections, zero-day exploits, password attacks, and cross-site scripting. And all these types of attacks are the ones that gave hacking sort of a bad name. According to Kaspersky, MIT (Massachusetts Institute of Technology) became one of the first homes of hacking in 1969. They started out by altering software and hardware...

Beware: Microsoft is One of the Most Impersonated Brands in Phishing Attacks

Image sourced from NS Energy. Check Point Research for the second quarter of 2021 found that Microsoft was the most popular brand used to lure unsuspecting individuals and employees. This isn’t hard to believe because Microsoft’s Active Directory, continues to dominate the market share globally in 2021 and as a result is still the most popular target for phishing. The weight of this risk is emphasised by the fact that in 2021, phishing attacks increased by 47% in just the first quarter alone. The threats are smart, capable, and worrying – increasing in volume every year. Companies are facing an onslaught of risk that’s designed to fool employees into making mistakes that can cost the company money and reputation. “The risk is when employee credentials are stolen, this can lead to detriment...

Protect Yourself: Top 10 Most Common Phishing Email Subject Lines

KnowBe4, the provider of one of the world’s largest security awareness training and simulated phishing platform, has announced the results of its Q3 top-clicked phishing report. “Social engineering attacks continue to be one of the top ways malicious hackers breach organizations and/or cause damage,” said Stu Sjouwerman, CEO, KnowBe4. “We are seeing a continued increase in phishing, including more use of common HR types of communications and less reliance on obvious social media phishing campaigns. By equipping security professionals with more data on likely tactics and templates used by cybercriminals executing phishing attacks, infosec professionals can strengthen their human firewall. Now more than ever, end-users need to remain vigilant and remember to stop and think before they click....

Beware: These Are The Top 10 Brands Imitated in Phishing Attacks

Image sourced from Kaspersky. Check Point Research (CPR), the Threat Intelligence arm of Check Point Software Technologies, a leading provider of cyber security solutions globally, has published its new Brand Phishing Report for Q3 2021. The report highlights the brands which were most frequently imitated by criminals in their attempts to steal individuals’ personal information or payment credentials during July, August and September. In Q3, Microsoft continued its reign as the brand most frequently targeted by cybercriminals, albeit at a slightly lower rate. Twenty-nine per cent of all brand phishing attempts were related to the technology giant, down from 45% in Q2 2021, as threat actors continue to target vulnerable, distributed workforces during the COVID-19 pandemic. Amazon has replac...

  • 1
  • 2