Social Engineering

After Reports of Abuse, Developer Disables Phonecord Bot
Social Engineering

After Reports of Abuse, Developer Disables Phonecord Bot

The developer of the Phonecord bot has disabled it for the time being after security researchers discovered that threat actors were using the bot for harassing calls, including some to federal law enforcement agencies. Phonecord is a bot designed for use on the Discord communications app, which is used by […]

New Phone Bot Being Used in Harassing Calls
Phone Fraud, Social Engineering

New Phone Bot Being Used in Harassing Calls

Some attackers have taken to using a new phone bot for the Discord chat and voice app to send large numbers of harassing and nuisance calls to individual victims, retailers, and even law enforcement agencies. Known as Phonecord, the bot is being used in a number of different ways. But unlike […]

Unicode Domain Phishing Attack Resurfaces
Hacking, Social Engineering

Unicode Domain Phishing Attack Resurfaces

Researchers are warning about a phishing attack that abuses the way some browsers handle unicode characters to display attack domains that are identical to legitimate ones. The concept behind the attack is quite old, but it has resurfaced in the current versions of both Firefox and Chrome. The attack relies […]

Inside the Tech Support Scam Ecosystem
Phone Fraud, Social Engineering

Inside the Tech Support Scam Ecosystem

A pair of doctoral students and their advisor, looking for insights into the inner workings of tech support scams, spent eight months collecting data on and studying the tactics and infrastructure of the scammers, using a purpose-built tool. What they uncovered is a complex, technically sophisticated ecosystem supported by malvertising and […]