Stay informed with Security World Trend Now! Discover the latest security trends, technologies, and strategies to protect your data, networks, and digital identity. Get expert insights and practical advice for ensuring your online safety. Explore now!
The W3LL Gang: A Sophisticated Phishing Empire The Scale of the Threat In a recent investigation conducted by Group-IB, it has been revealed that a threat actor known as W3LL has successfully compromised over 8,000 corporate Microsoft 365 business accounts in the last 10 months. The operations of the W3LL gang have extended globally, with…
Mac Security Survey 2023 Unveils Cybersecurity Myths and Online Behavior Inconsistencies A recent Mac Security Survey conducted in 2023 has shed light on critical insights regarding the state of cybersecurity among Mac users. The survey, aimed at exploring the level of awareness and adherence to best practices, reveals concerning trends that pose risks to the…
Cybercrime Researchers Identify High-Grade Phishing Kits Attacking Microsoft 365 Accounts The Exploitation of Microsoft 365 Accounts In a recent report, researchers from Group-IB have uncovered the activities of a cybercrime group called W3LL. This previously undocumented group has been operating since 2017 and has created a private ecosystem of phishing tools for compromising corporate email…
Cybersecurity Provider Hornetsecurity Launches Plan 4 ‘Compliance & Awareness’ Solution A Higher Level of Defense and Compliance Leading cybersecurity provider Hornetsecurity has recently announced the launch of its Plan 4 ‘Compliance & Awareness’ solution, which is part of the 365 Total Protection Suite. This new plan offers organizations a higher level of defense and compliance…
EvilProxy Phishing Campaign Targets Microsoft 365 Executives: An Alarming Rise in Account Takeovers Introduction A recent phishing campaign known as EvilProxy has targeted thousands of Microsoft 365 user accounts worldwide. Over a three-month period between March and June, attackers sent 120,000 phishing emails to more than 100 organizations across the globe, with the primary goal…
The Storm-0558 Breach: A Further-Reaching and Impactful Threat The recent Storm-0558 breach, which granted Chinese advanced persistent threat (APT) actors access to emails within 25 US government agencies, has revealed a potential risk that goes beyond what was initially anticipated. The breach not only put Microsoft cloud services at risk but also highlighted deficiencies in…
Microsoft Addresses Logging Concerns and Chinese Espionage Campaign Microsoft Responds to Customer Feedback Microsoft has dropped the fees associated with expanded logging access for all levels of 365 license holders, following complaints that the cloud service provider was effectively imposing a “logging tax” on customers. This move comes in response to demands from commercial and…
A New Era of Accessibility: Greatness Phishing-as-a-Service Tool The Rise of a New Phishing Tool: Greatness The cyber world today has witnessed the emergence of a new phishing-as-a-service (PaaS) tool that is enabling even amateurs to create and execute well-crafted and omnipotent phishing attacks on businesses. The tool, dubbed “Greatness,” has come with an all-in-one…
Report: New ‘Greatness’ Phishing-as-a-Service Targets Microsoft 365 Accounts A new phishing-as-a-service (PaaS) tool, called ‘Greatness’, has been deployed to carry out phishing campaigns on Microsoft 365 accounts mainly in US manufacturing, healthcare, technology, and real estate sectors. Since mid-2022, the service has been used in several phishing campaigns in the UK, Australia, Canada, and South…