Security news aggregator

Latest coverage for Scam

Scams use deception to steal money, credentials, or sensitive data, making them a cybersecurity risk for individuals and organizations.

3 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

Scams are deceptive schemes intended to make people surrender money, credentials, sensitive information, or access. In information security, they commonly use phishing messages, impersonation, fraudulent websites, business-email compromise, fake technical support, or malicious attachments. Their defining feature is manipulation: the attacker creates a credible pretext and pressures the target to act before verifying the request.

Security teams should treat scams as an attack surface spanning email, messaging, telephone calls, social media, and payment workflows. Material risks include account takeover through stolen credentials, unauthorized payments, disclosure of personal or company data, and malware execution from deceptive content. Useful controls include phishing-resistant authentication, secure payment-change procedures with independent verification, filtering and domain protections, user training focused on reporting, and rapid review of suspicious messages or transactions. Incident handling may require revoking sessions, resetting credentials, contacting financial institutions, preserving evidence, and notifying affected parties where applicable.

Showing 3 most recent headlines Filtered view
Bank Info Security 2 years, 4 months ago

BlackCat Ransomware Group 'Seizure' Appears to Be Exit Scam

Affiliate Claims Administrators Kept All $22 Million Paid by Change HealthcareThe administrators of the BlackCat ransomware-as-a-service group claim law enforcement has shut down their operation. But experts and affiliates accuse the group's leadership of running an exit scam on the heels of a $22 million ransom payment by a recent victim - Optum's Change Healthcare unit.

Bank Info Security 2 years, 4 months ago

Mobile-Driven Phishing Spoofs FCC, Cryptocurrency Giants

Researchers Say Hackers Used Fake Login Pages to Trick 100 Victims, Crypto WorkersA new phishing campaign is targeting victims through mobile devices by mirroring legitimate login pages for the Federal Communications Commission and large cryptocurrency platforms including Binance and Coinbase. At least 100 victims, including crypto company employees, have fallen for the scam.

Bank Info Security 2 years, 4 months ago

Scam Companies Flourish in an Ocean of Breached Data

Expert Discussed Need for Enhanced Verification, AI Tools to Detect Fake CompaniesAbout 20% of new companies created in the U.K. every day - or some 800 firms - are scams. These fake businesses are being created from an ocean of stolen high-quality data related to real people, making it hard to spot the fraudsters, said Graham Barrow, director of "The Dark Money Files" podcast.