LastPass Customers Receive Phishing Email In Attempt to Steal Master Password
In an effort to inform and defend customers, LastPass warned that there had been reports of a Phishing email that was being sent to users using the LastPass platform.
Request Demo
Sign Up
14-Day Free TrialNo Credit Card Required.
PhishingBox Newsroom
Cybersecurity News
Threat trends, product updates, and security insights from the PhishingBox team.
Microsoft Warns About Consent Phishing Applications
A new post by the Microsoft security team warns about a new type of phishing attack vector targeting users. Consent Phishing, as they refer to it as, targets users by asking for an egregious amount of permissions from Single-Sign-On allowing the bad actors to abuse the accounts they have been granted access to.
New Phishing Attempt on Instagram for Fake Copyright Violations
Instagram users should be on the lookout for fake copyright notices that have emerged as a new way to try and phish people into handing over the credentials of their accounts. As reported by
Office 365 Users Targeted with Hijacked Oxford Servers using Samsung and Adobe links
As reported by Checkpoint Research, European users of Office 365 have been targeted with phishing emails sent from seemingly legitimate sources after bad actors hijacked Samsung's
Phishing Email Impersonating Black Lives Matter Promotes TrickBot Malware
As is common with real phishing campaigns, bad actors are using current events to take advantage of people and trick them into opening malicious emails.
GitLab Employees Had a 59% Failure Rate in a Recent Phishing Test
GitLab.com recently performed a spear phishing campaign where they targeted 50 of their employees in an attempt to see how vulnerable their team members were to phishing attacks. Using the domain "gitlab.company" and GSuite to deliver emails, those targeted were asked to click on a link to accept an upgraded Laptop from their IT department.
User Credential Theft Prevention
Social engineering is the process of attacking the human, or employee, rather than the technology directly. Through social tactics, an employee is tricked into performing an action,
Verizon Data Breach Investigations Report (DBIR) - 2019
The 2019 Verizon Data Breach Investigations Report (DBIR) provides valuable information on the threats facing organizations today. The DBIR is produced by Verizon with a collaboration of many security entities. The following is a summary of finding that relate to the human element of security.