PINDROP BLOG

Category: Social Engineering

August 17, 2016
DataSploit Framework Automates Intelligence Gathering for Social Engineers
Social engineering is a broad term applied to an ill-defined list of activities, and many of the techniques that criminals and white hats both use are developed ad hoc. But a new tool called DataSploit aims to pull together many of the reconnaisance activities into one framework that will gather large amounts of data on…
Read More →
August 4, 2016
Using Forensic Linguistics to Fight Phone Fraud
LAS VEGAS–One of the difficulties in protecting against phone fraud scams is actually detecting them. Technology certainly helps, but in a lot of cases, it’s up to the potential victim on the other end of the line to figure it out for himself. That has turned out to be a fairly high hurdle for a…
Read More →
July 27, 2016
Google Listing, Political Scams Top Phone Fraud Threats
Nearly 20 percent of all phone fraud calls hitting consumers and businesses this year are part of the fake Google listing scam, more than twice as many as the eight percent that are loan scam calls, according to new data released by Pindrop Labs. The Google listing scam is a relatively new one, having appeared just…
Read More →
July 19, 2016
Banking Trojan Lurks in Legitimate Software
Cybercriminals have been relying on the watering hole attack for many years as a consistent method for getting their malware onto victims’ machines. Recently, security researchers discovered that one group of attackers had compromised the site of a legitimate software company and found a way to insert their banking Trojan’s code into the company’s own downloader. The…
Read More →
June 24, 2016
Seven Jailed in Massive Phone Fraud Scam
Authorities in the U.K. have sentenced seven people to prison for their part in running a wide-ranging phone fraud scam that cost victims more than £1.3 million over the course of several years. The scheme that the gang ran is a common and highly successful one that involves making calls to potential victims and telling them that…
Read More →
June 16, 2016
FTC Shuts Down Fake Charity Phone Scam
Phone fraud comes in many forms, as most crimes do, and it’s not always obvious that a particular version is actually a crime. The FTC has just shut down a company that was running a specific kind of phone fraud scam that involved pressuring victims to make donations to a fake charity for disabled people…
Read More →
June 6, 2016
Ransomware is Dope
Credit where credit is due: Ransomware is kind of brilliant. From a defender’s perspective, it is perhaps the most difficult threat to deal with in the last five or 10 years. It locks up your data, makes it inaccessible and unrecoverable (without backups), and presents you with, at most, two options: Don’t pay the ransom and…
Read More →
June 6, 2016
Bulgarian Sentenced in $6 Million Tax Refund Scheme
The IRS and taxpayers themselves have been the targets of a wide range of attacks and scams for many years, most of which involve some variety of identity theft. The fraudsters behind these operations often go unpunished, but in a rare victory, the U.S. government has convicted and sentenced to nearly four years in prison a Bulgarian…
Read More →
June 1, 2016
Inside the Opsec Habits of Cybercriminals
The fight between attackers and security researchers often is portrayed as a kind of spy versus spy operation, with each side making moves and countermoves in order to stay undetected and continue operating. But while top-tier attackers pay close attention to the details and are adept at hiding their tracks, that doesn’t necessarily hold true for…
Read More →
May 31, 2016
CEO of FACC Fired After Firm Was Hit by Email Scam
An Austrian aerospace manufacturer that lost €50 million in a business email compromise scam earlier this year has fired its CEO over the incident. FACC, which makes components for the aerospace industry, said its board decided last week to fire Walter Stephan for his involvement in the scheme, after previously firing other employees. In January, officials…
Read More →