A new tech support scam is targeting people with fake McAfee, Microsoft, and Norton Lifelock billing notices via email, rather then using your typical shady website advertisements.
According to @VadeSecure, they have filtered over 1 million emails so far in this campaign, with it peaking at over 200K emails in a single day.
Calling the listed numbers led to your typical tech support scam where they babble a constant stream of nonsense as they install remote access software (TeamViewer/AnyDesk) on people's computers.
What made this scam stand out, is their use of a sophisticated (and fake) "Sonicwall approved by NSA" scanner. You can't make this stuff up.
The scanner is nothing more than a Bat2Exe executable with a fake exec and a batch file that clears event logs.
Sadly, too many people fall for these scams, especially elderly people who are not comfortable around computers.
• • •
Missing some Tweet in this thread? You can try to
force a refresh
However, last month @backchannelre learned of a Google Drive folder shared online that contained private adult-themed OnlyFans content from 279 different content creators.
It is not known how much content has been shared without downloading it all but we have been told that at least one of the folders has 10 GBs of videos and images.
In a 'Data Incident' incident notification, SANS states they discovered that one of their employees' email accounts was compromised during a phishing attack.
As part of this attack, a malicous Office 365 addon (most likely an Oauth app) was installed and a rule was created to forward incoming mail to an unknown external email address.
BREAKING: BleepingComputer has confirmed that Garmin received decryptor for their WastedLocker Ransomware attack. bleepingcomputer.com/news/security/…
BleepingComputer has been able to obtain the decryptor received by Garmin after they likely paid the ransom to the WastedLocker operators.
The decryptor was included in a workstation restoration package created by Garmin's IT department that decrypts a workstation and then installs a variety of security software.
TrickBot has ported their Windows Anchor_DNS malware to a native Linux malware executable that can also be used to infect other Windows devices on the network.
The general consensus has always been that you should not defrag an SSD drive to prevent unnecessary wear and tear.
Based on an article by Microsoft's Scott Hanselman, Windows 10 performs a defrag of SSDs once a month if volume snapshots are enabled. hanselman.com/blog/TheRealAn…