15,000 phishing packages found in NPM repository


A blog report by Checkmarx has found over 15,000 phishing packages in the NPM repository. The packages were designed to mimic legitimate packages, but actually contained malicious code that would steal sensitive information from users. The phishing packages were uploaded to the npm repository by attackers who were able to bypass the security measures in place. The packages were able to remain...

Financial Industry Regulatory Authority warns about an ongoing phishing campaign


The Financial Industry Regulatory Authority (FIRA) has announced the presence of an ongoing phishing campaign. The campaign is spearheaded by the impersonation of the Regulatory Authority. The authority announced that a number of people were receiving emails that claimed to be from a representative from the FIRA. The phishing campaign deploys the domain name Claims-FINRA.org. We want to...

Phishing attacks in Singapore increased by 829% in 2021


Zscaler ThreatLabz has released the State of Phishing Report 2022. The Report highlights different trends related to phishing scams in the previous year.  According to the report, phishing scams increased worldwide by 23%. The US is the most phished country in the world with it attracting more than 60% of all attacks. The US is followed by Singapore, Germany and the Netherlands. However, the most...

When Department of Labor domain name was spoofed


While going through my research related to domain names, I stumbled upon this awesome podcast called Federal Drive with Tom. In an episode, Mr. Roger Kay came as a guest and talked about an interesting phishing scam related to the Department of Labor.  Kay during his work noticed a pattern in a number of cases reported by users. They were all about a scam related to the DOL. The scamsters...

An explosion in Online Pharmacy scams


Covid despite its adversity also gave a window for new innovations to emerge. One of the stark innovations, in user behaviour, has emerged in the way people buy medicines. More and more people are moving towards online pharmacies considering their increased vitality during the pandemic and lockdowns. However, this also brought an undesired demon along with it, Cyber Scams. With an increased...

December 2021 was the most Phished month of all time


APWG.org published its quarterly phishing report. The report shows worrying trends related to the prevalent online scam. The report noted a sharp rise in the number of phishing scams with December 2021 being the highest ever month since APWG began publishing its reports in 2004. 316,747 phishing attacks were seen by APWG in December. Even if compared to the figures reported in January 2021(which...

Half million Coronavirus domain names registered


The pandemic is slowly receding. The world is beginning to stand on its feet again. However, it is also the time to analyse the events that accumulated into the once in a lifetime (hope so) pandemic . CSC has brought a two-year analysis into the digital world with a special emphasis on the domain names. With the onset of the pandemic, the number of  related domain names surged. The number of...

What’s special about the new DomainTools Iris Detect?


In a previous post we talked about the acquisition of Farsight Security by DomainTools. After 5 years of partnership between the two companies, both of them finally decided to merge. Now jointly, they have launched an innovative new product. It is called DomainTools Iris Detect. The new tool discovers and monitors fraudulent domain names impersonating popular brand names at an astonishing speed...

Fraudsters registering Covid test kit domain names


In January, the US Government under President Biden launched a new service of postal delivery of Covid Test kits. People could order their free test kits through domain name COVIDtests.gov. Another domain name related to US Postal Services special.USPS.com, was also promoted where people can order their kits. However, one month after this welfare step, several cases of fraud domain names started...

Join us on Instagram

Instagram has returned empty data. Please authorize your Instagram account in the plugin settings .
Verified by ExactMetrics