Some Cyberattacks That Involved Online Phishing Over The Past Few Years

Introduction

• This article aims to provide insights into the diverse range of phishing scams that have targeted innocent victims over recent years, encompassing phishing, smishing, vishing and more.
• The date given for each article was when it was published, not necessarily when the phishing scam took place.

January 13, 2020

Texas school district falls for email scam, hands over $2.3 million

May 13, 2020

Citizen data compromised as Service NSW falls victim to phishing attack

September 01, 2020

Slack users unwittingly phished with malicious payloads

October 29, 2020

A new scam uses Google Drive to send out a deluge of dodgy links

May 20, 2021

Colonial Pipeline confirms it paid $4.4m ransom to hacker gang after attack

August 16, 2021

T-Mobile Is Investigating a Potentially Massive Security Breach | Tech.co

August 20, 2021

Australians hit by 'Flubot' malware that arrives by text message

August 23, 2021

Phishing attack exposes medical information for 12,000 patients at Revere Health

August 29, 2021

Vodafone Phishing Attack | Perception Point

January 30, 2022

OCBC says S$13.7 million lost in phishing scams, up from S$8.5 million

February 14, 2022

Philippine bank customers offered $200 Valentine's Day gift via SMS phishing scam

April 05, 2022

Hackers breached Mailchimp to phish cryptocurrency wallets

May 26, 2022

$70.8 million lost in Singapore due to business email scams

June 01, 2022

Telegram's blogging platform abused in phishing attacks

July 19, 2022

Deakin University data breach impacts 47,000 students

August 06, 2022

August 08, 2022

Allegheny Health Network Announces Data Breach Impacting 8,000 People Following Email Phishing…

August 09, 2022

Twilio suffers data breach after its employees were targeted by a phishing campaign

September 12, 2022

Netflix users warned against convincing scam.

September 17, 2022

Uber suffers massive breach from phishing attack | Poc Network // Tech

October 04, 2022

Fake offer to invest in BHP bonds

October 23, 2022

Outsourcer Interserve fined £4.4m for failing to stop cyber-attack

November 03, 2022

Victims lose $237,000 amid resurgence in SingPost and Singtel phishing scams: Police

November 23, 2022

Gone in three months: Kiwi victims lose $9m to brazen scammers

November 23, 2022

5G scam alert: Researchers warn against rising 4G to 5G SIM upgradation frauds - Times of India

December 02, 2022

Watch out for this triple-pronged PayPal phishing and fraud scam

December 04, 2022

Dropbox Suffers Data Breach Following Phishing Attack

December 04, 2022

Man who lost $149k after clicking on phishing e-mail among at least 10 victims in Case cyber attack

January 06, 2023

New Phishing Scam Masquerades as Microsoft Teams Invite to Target Businesses

January 12, 2023

Guardian confirms it was hit by ransomware attack

January 20, 2023

ICC Cyberattack: ICC launches PROBE after falling victim to PHISHING ATTACK, scammers get away with…

January 23, 2023

NSW man jailed for SMS phishing scam targeting 450 victims | Australian Federal Police

January 24, 2023

Zendesk Hacked After Employees Fall for Phishing Attack

January 24, 2023

Sophisticated SMS Phishing scam Dupes Zendesk Staff

January 25, 2023

Scam alert: Optus impersonation scams

January 26, 2023

U.S. Federal Agencies Fall Victim to Cyber Attack Utilizing Legitimate RMM Software

January 30, 2023

Britain's JD Sports says customer data accessed by cyber attack

January 31, 2023

Hackers attack 12 Australian companies with education phishing scam

February 10, 2023

Reddit was hit with a phishing attack. How it responded is a lesson for everyone

February 20, 2023

Coinbase Employees Targeted by SMS Phishing Attack

March 02, 2023

Trezor crypto wallets under attack in SMS phishing campaign

March 09, 2023

City of Solvang Falls Victim to Phishing Scam, Loses $538,000 | Local News | Noozhawk

April 14, 2023

Millions of Commonwealth Bank customers warned of this text message

April 17, 2023

Uncovering the Latest ATO Phishing Campaign | Cofense

April 30, 2023

300 Million People's Data Sold, 3200 Phishing Profiles Involved in Scam, AT&T Email Hack - Find…

May 15, 2023

This scammer cloned crypto exchange HitBTC to steal $15M

May 17, 2023

Microsoft Azure accounts hit with phishing attacks to hijack virtual machines

June 06, 2023

Over 100,000 reports received, life savings lost over 'NZTA toll' scam

June 10, 2023

Millions of Gmail users warned over verification scam: 'Most certainly a bug'

June 21, 2023

UPS discloses data breach after exposed customer info used in SMS phishing

July 05, 2023

Sophisticated Email Attacks Target Cryptocurrency Wallets

July 25, 2023

Hackers using Google Collection for phishing attacks: Report - Times of India

July 26, 2023

Qantas Frequent Flyer customers warned of fake texts scam

August 03, 2023

Salesforce Email Service Zero-Day Exploited in Phishing Campaign

August 14, 2023

Massive EvilProxy Phishing Attack Campaign Bypasses 2FA, Targets Top-Level Executives

September 02, 2023

Chinese Smishing Triad Gang Hits US Users in Extensive Cybercrime Attack

September 05, 2023

Phishing attack uses QR code

September 07, 2023

Crypto whale loses $24M in staked Ethereum to phishing attack

September 07, 2023

Google Looker Studio abused in cryptocurrency phishing attacks

September 11, 2023

Microsoft Teams phishing scam dupes workers on vacation time | Digital Trends

September 12, 2023

Hack of Vitalik Buterin's X Account Leads to $691K Stolen

September 12, 2023

Guarding Against the Unseen: Investigating a Stealthy Remcos Malware Attack on Colombian Firms …

September 18, 2023

Retool Falls Victim to SMS-Based Phishing Attack Affecting 27 Cloud Clients

September 18, 2023

Dallas Mavericks Owner And Billionaire Tech Investor, Mark Cuban, Falls Victim To Phishing Attack…

September 19, 2023

Massive Phishing Attack Targeting 40+ Prominent Companies

September 21, 2023

City of Fort Lauderdale loses $1.2 million after falling victim to phishing scam

September 21, 2023

Kraken User Falls Victim to $4.5M USDT Loss in Phishing Scam

September 29, 2023

APT34 Deploys Phishing Attack With New Malware

October 03, 2023

New Phishing Scam: Bank of Queensland (BOQ) Customers Warned to Stay Vigilant

October 10, 2023

Binance Crypto Phishing Scammers Steal $450,000 From Hong Kong Victims

October 17, 2023

D-Link confirms data breach after employee phishing attack

October 21, 2023

Phishing Alert: Blockstream Customers Targeted by Mail Scam

October 24, 2023

Booking.com customers targeted by scam 'confirmation' emails

MetaCert Security For Desktops

• In December 2017, MetaCert started a social experiment to see if it was possible to build an entirely different solution for domain ownership verification, a process that could reduce the risk of phishing by more than 95%.
• MetaCert built and published a browser extension called Cryptonite for various web browsers that verifies domains owned by cryptocurrency exchanges, projects, wallets and more.
• Cryptonite gained over 50,000 active users in the first six weeks of launch.
• MetaCert now receive requests from some of the biggest exchanges in their respective jurisdictions, from Sweden to Malaysia, to verify their domains as their communities are complaining about not being verified by MetaCert.

1, Green Shield

• When a user visits a site that is “Verified by MetaCert” like Binance, Cryptonite changes the color of the Cryptonite shield on the browser bar from black to green, thereby indicating they are on the real Binance website and not a new phishing domain that hasn’t been discovered yet.

2, Black Shield

• Websites that display a black shield are unknown / unclassified and have not been verified by MetaCert. This means you should exercise caution.

3A, MetaCert will automatically detect and block websites that are known to hijack computers and computer networks for the purpose of mining cryptocurrencies.

3B, As soon as you open a link to a dangerous website, MetaCert
will block access before harm can be done.

Cryptonite Demonstration

MetaCert’s ‘Zero Trust’ SMS Solution

See a live demo below:

Conclusion

Why Is Zero Trust The Answer For SMS Messaging?

• MetaCert have inverted the traditional model. Using industry-tested Zero Trust methodology, MetaCert protection is proactive. Instead of attempting to block dangerous links when they have already been detected, MetaCert only delivers links that are known to be safe. Using their unique URL categorisation technology subscribers are protected via customisable block pages whenever they are sent URLs that could be malicious. 100% protection from all possible threats.
• MetaCert use the best of modern URL classification technology that they built internally, to tell you which links are safe, and which websites you can actually trust. With millions of URLs verified as safe, MetaCert’s software reduces the risk of all cyberattacks that start with dangerous URLs by more than 99%. Customers who use MetaCert no longer worry about malware, phishing or ransomware attacks and the company make it virtually impossible to sign into the wrong website.
• The MetaCert service detects when an SMS message contains a link to a URL and categorises that link into one of three statuses:
• Safe — The domain name is known and has been verified as safe to access.
  Unknown — The domain name is unknown and has not been verified as safe.
  Dangerous — The domain name is known to be used for phishing or smishing.
• Using this classification system, every message recipient can make an informed choice whether they should click on a link and provide their personal information if requested.