• Some users have recently had their accounts hijacked. It seems that the now defunct EVGA forums might have compromised your password there and seems many are using the same PW here. We would suggest you UPDATE YOUR PASSWORD and TURN ON 2FA for your account here to further secure it. None of the compromised accounts had 2FA turned on.
    Once you have enabled 2FA, your account will be updated soon to show a badge, letting other members know that you use 2FA to protect your account. This should be beneficial for everyone that uses FSFT.

phishing

  1. cageymaru

    Phone Phishing Scams Are Becoming More Sophisticated

    Phone phishing scams are becoming more sophisticated as scam artists gain access to stolen data. They are now calling victims with spoofed Caller ID numbers that look like their financial institution and are armed with information like the last 4 digits of your credit or debit card, address...
  2. FrgMstr

    Kolledge Stoodints R Stoopid

    Did you ever wonder who those folks were that click on phishing emails? Well now we know. OSU UoA did a faux phishing mail campaigns on their own students in the name are getting more smarter and found out that about 20% of the students probably should not be allowed to own an iPhone. Don't...
  3. FrgMstr

    Ukraine Phishing Boss Arrested Again

    If at first your don't succeed, try, try, again. While there is little information on the arrest this time, it is a follow-up arrest to one a little over a year ago that was highly publicized as a win again cybercrime. Sadly, the "Avalanche" mastermind escaped fairly quickly last time. Check...
  4. FrgMstr

    Site Admins Take Note of Your /.well-known/ Directory Hosting Hidden Phishing Sites

    400 new phishing sites have been identified recently and those share a common origin in terms of how those are being hidden on webservers without their admins knowing. I have quoted the important points below in what you need to look for especially if you are using Let's Encrypt HTTPS. However...
  5. Schtask

    Massive Phishing Campaign Mimics Google Docs

    Gmail users were hit by a massive and interesting phishing campaign today. What makes this phishing campaign unique is that it was coupled with a dummy app that mimics Google Docs. If opened, the user would be redirected to a real Google account page that asks them to give Gmail access to the...
  6. Bees

    Punycode Exploit the Newest Phishing Attack

    In the newest wave of phishing attacks, hackers have seemingly found a method to spoof SSL connected URLs using Punycode exploits. Said exploits are quite clever, and even the most careful user could fall susceptible to this attack. By default, many web browsers use ‘Punycode’ encoding to...
  7. Schtask

    Over 15,000 Fraudulent PayPal Certificates Issued to Phishing Sites

    Let's Encrypt was launched publicly in December of 2015 under the premise that websites would be encrypted and served to the end user over Transport Layer Security (TLS). The thought was that TLS would protect user data from pilfering. Many Cyber Security experts expressed fear that free...
    • Schtask
    • Thread
    • certificate authority certificates encryption let's encrypt phishing tls
    • Replies: 43
    • Forum: HardForum Tech News
  8. Zarathustra[H]

    Even Tech Savvy Organizations can Fall for Phishing Schemes

    The Department of Justice yesterday unsealed an indictment against a Lithuanian man who successfully swindled $100 million out of two American tech companies. (Here, have the verge link too, because reading bureaucrat can be tiring.) The 48 year old Latvian man reportedly opened a business in...
Back
Top