Credential-stuffing

Credential Stuffing Phishing

In a few surveys, it was estimated that nearing 81% of users reuse the same login and 25% use the same password across multiple accounts. Given that there are many cybercriminals that are successfully breaching various systems, all they have to have is stolen credentials that consist of usernames, emails and the corresponding passwords. Credential stuffing is a cyberattack that makes use of this information by automating logins to anywhere
Explaining Tabnabbing Phishing

Explaining Tabnabbing Phishing

Tabnabbing has been one of the tried and true forms of phishing since around 2010. The attacker takes advantage of the fact that many people are busy and don’t pay attention to the tabs that they open in their browser. The cyber criminal’s ability to imitate credible website views allows them to appear like a webpage so that the user can input their credentials.  The name tabnabbing was created by
Job Post

False jobs Sites

There are a large number of South Africans looking for working and any advert is an opportunity for an unemployed person to submit their details and hope for the best. A popular job site on Facebook received a post advertising employment, using a short link (abbreviated url) to send job seekers to a page where there was an advert for Checkers looking for staff. The Facebook page states that “We
browser warning

Local website hacked for phishing expedition

A webserver hosted on the Telkom network, has been breached and used to host a phishing site.  Urlscan lists the site as naphotography.co.za with three levels of file systems as shown below. Cyber criminals do this to hide phishing sites. Naphotography.co.za / 83de / journal / citi Urlscan.io has confirmed that the domain had been comprised and used for phishing. Harvesting information from victims is used by cyber criminals to
phishing solutions-davinci

Anti-Phishing Simulation Solutions

Who is the weakest link in an organisation? The staff member... Almost half of all social engineering attacks involve some form of phishing. When dealing with targeted attacks, this number increases to over 90 percent. Cyber attackers are playing the long game against large companies, but all businesses of all sizes are vulnerable to targeted attacks. In fact, the number of spear-phishing campaigns targeting employees increased 55% in 2015. (Symantec