Blog Category Feed News Today : Breaking News, Live Updates & Top Stories | Vimarsana

Stay updated with breaking news from Blog category feed. Get real-time updates on events, politics, business, and more. Visit us for reliable news and exclusive interviews.

Top News In Blog Category Feed Today - Breaking & Trending Today

AiTM phishing attack targeting enterprise users of Gmail

Summary This blog is a follow-up to our recent publication which described the details of a large-scale phishing campaign targeting enterprise users of Microsoft email services. Beginning in mid-July 2022, ThreatLabz started observing instances of adversary-in-the-middle (AiTM) phishing attacks targeted towards enterprise users of Gmail. Upon further analysis of the attack chain, we identified multiple similarities between this campaign and the previous AiTM phishing campaign targeting users of Microsoft email services. G Suite is the business version of Gmail, and is widely used in enterprises. This campaign specifically targeted chief executives and other senior members of various organizations which use G Suite. As we have already covered the technical details of AiTM techniques in our previous blog, we won't describe them again here. However, it is important to note that AiTM phishing kits can be used to target various websites and bypass multi-factor authentication. By using ....

Sudeep Singh , Phish Gmail , Zscaler Threatlabz , Gmail Ai , Security Bloggers Network , Open Redirect , Google Ads , Final Gmail , Blog Category Feed ,

Targeted attack on Thailand Pass customers delivers AsyncRAT

The Zscaler ThreatLabz research team has recently discovered a malware campaign targeting users applying for Thailand travel passes. The end payload of many of these attacks is AsyncRAT, a Remote Access Trojan that can be used to monitor, control, and steal sensitive data from victims' machines. Thailand Pass is an online travel agency that brokers airline tickets to travelers who want to visit Thailand or other foreign countries. Attackers trick victims using a spoof web page that poses as Thailand Pass, ultimately baiting users into downloading AsyncRAT. The Thailand Pass organization has issued an advisory for these malicious campaigns on their official website "tp.consulargoth" as shown below. Figure 1: Advisory by Thailand pass organization. In this blog, our team will provide a deep analysis of the malware campaign that we have observed related to these attacks. The below image shows the complete flow of execution for this malware campaign. Figure 2: Complete a ....

Sv Malawer Powerrunexe , Zscaler Threatlabz , Deobfuscated Async , Trojan Netassemblyinject , Decompiled Async , Phish Thailandpass , Downloader Async , Gayathri Anbalagan , Zscaler Zero Trust Exchange , Security Bloggers Network , Remote Access Trojan , Thailand Pass , Threat Intelligence , Pass Registration System , Victim Machine , Malwarebytes Antivirus , Content Present , Border Yes , Anti Debugging , Remote Access Trojans , Sandbox Report , Zscaler Sandbox , Threat Protection , Zscaler Zero Trust , Blog Category Feed ,

Uncovering new techniques and phishing attack trends from the cloud

Download your free copy of the 2022 ThreatLabz Phishing Report, and check out our infographic. For decades, phishing has been a complex and time-consuming challenge for every security team. As the findings of the ThreatLabz 2022 Phishing Report reveal, the challenge is getting harder: adversaries are getting craftier, and attackers are growing in numbers due to pre-built phishing kits available on the darknet. In this annual report, ThreatLabz offers deep insights on the current phishing threat landscape from a full year’s worth of phishing data from the world’s largest security cloud. Avoiding the latest breed of phishing attacks requires heightened awareness from users, additional context, and a zero trust approach. Report Highlights From imitating popular brands like Microsoft to buying advertisements on Google and other search platforms, threat actors use a range of tactics and techniques to trick users into giving up sensitive information. Analyzing data from more than 200 ....

United States , Zscaler Threatlabz , Rohit Hegde , Zscaler Zero Trust Exchange , Security Bloggers Network , Labz Phishing Report , Internet Access , Zero Trust , Threat Protection , Cloud Firewall , Browser Isolation , Cloud Sandbox , Private Access , Zscaler Zero Trust , Blog Category Feed ,