Phishing
Scam targets LastPass users with fake death certificate claims
A malicious scam is targeting users of the password manager LastPass through fraudulent emails. These messages falsely claim that the recipient has died and involve bogus death certificate notifications. The scheme was reported by TechRadar on October 27, 2025.
Surfshark launches email scam checker to fight phishing
Surfshark has introduced a new feature designed to protect users from phishing scams, particularly those targeting email passwords. The email scam checker addresses the estimated 3.4 billion phishing scams sent daily.
Iranian MuddyWater hackers use compromised mailboxes in phishing scams
The Iranian hacking group known as MuddyWater has been using compromised email mailboxes to conduct global phishing campaigns. Their attacks aim to infect victims through malicious Word macros. The campaign was reported by TechRadar on October 23, 2025.
Crypto industry must evolve to match security risks
Adrian Ludwig of Tools for Humanity argues that the cryptocurrency sector needs to shift from placing security burdens solely on users to designing systems resilient against real-world threats like phishing and physical attacks. As the ecosystem grows to trillions in value, he calls for treating breaches as design feedback rather than user errors. Innovations in wallets and authentication methods offer promising paths forward.
Microsoft warns of payroll pirate scam targeting university employees
AI에 의해 보고됨
Microsoft has alerted organizations to a phishing campaign dubbed 'Payroll Pirate' that compromises Workday accounts to divert employee paychecks. The scam, active since March 2025, has affected accounts at multiple universities. Attackers use sophisticated tactics to bypass multi-factor authentication and hide their changes.