Tag: businessemailcompromise
10 articles

630M Passwords Stolen: Exclusive Insight on Risk
630M passwords stolen — it’s a wake-up call: this massive leak fuels automated account takeovers and fraud, so now’s the time to detect compromises, force resets, adopt MFA, and stop password reuse.

ClickFix Phishing Exclusive: Critical Hotel Malware Alert
Imagine a routine support ticket that silently installs malware—attackers are using ClickFix‑style pages sent from compromised hotel emails to steal credentials or drop remote‑access tools like PureRAT. Be cautious: don’t paste commands or log in from unexpected support links—verify the sender and the page first.

Singapore Officials Targeted in Stunning Damaging Scam
A stunning Singapore officials scam has exposed shocking vulnerabilities—discover how the damaging scheme unfolded and what it means for public trust.

Payroll Pirate Crew: Exclusive Risky Threat to Campuses
Microsoft warns a cybercriminal group dubbed the Payroll Pirate Crew is targeting U.S. universities with phishing attacks that hijack HR systems to quietly reroute paychecks, leaving staff suddenly unpaid and campuses scrambling. Universities should tighten MFA, limit admin privileges, and require out‑of‑band verification for bank‑detail changes to protect employees and reputations.

payment diversion fraud: Must-Have Critical Alert
Worried that the bank details in that email really belong to your solicitor? The NCA warns house buyers are being hit by payment diversion fraud—sometimes losing over £80,000—so always independently verify payment instructions and use secure channels to protect your sale.

African-based scam syndicates: Exclusive Risky Takedown
Interpol’s Operation Contender 3.0 led to 260 arrests across Africa, disrupting the networks behind romance, investment and business-email scams. It’s a powerful coordinated strike — but experts warn arrests must be paired with better tech, policy and victim support to truly curb these adaptable, cross-border fraud rings.

scam camps: Shocking Risky Shift to Vulnerable Countries
As international crackdowns shutter traditional fraud hubs, organized scam camps are quietly relocating to countries with weak governance and porous oversight — making detection harder, amplifying harm to victims, and turning fragile communities into unwitting havens.

Serengeti 20: Stunning $97M Seizure, Major Win
Interpol’s Serengeti 2.0 swept across Africa, leading to 1,209 arrests and roughly $97 million in seized assets. The operation dealt a major blow to transnational cybercrime and shows why sustained, cross-border cooperation is essential to stop these lucrative fraud networks.

Operation Serengeti 20: Stunning Success, Urgent Lessons
Interpol’s Operation Serengeti 2.0 scored a major win—1,209 arrests across Africa and $97.4 million recovered—but it also lays bare how much more cross-border cooperation, stronger safeguards, and support for victims are needed to turn tactical successes into lasting change.

CRM platform Risky Breach: Stunning Contact Exposure
Workday says its core systems were untouched, but a third-party CRM was breached — exposing business contacts that could fuel phishing, BEC and credential-stuffing attacks. Treat contact data as compromised: tighten MFA, audit integrations, and warn teams to watch for targeted social engineering.