Phishing Attack Grabs Thousands of Tumblr Logins

Beijing rejects notion it was involved in phishing campaign

(NEWSER) - China has rejected the notion that it was involved in a phishing campaign that hacked into the Gmail accounts of US government officials and Chinese activists, the BBC and the Telegraph report today. Google yesterday claimed the campaign originated in Jinan , although it did not directly blame the Chinese government. Even so, a foreign ministry spokesperson says that "blaming these misdeeds on China is unacceptable," adding that "the claims of so-called Chinese state support for hacking are completely fictitious and have ulterior motives." More»

Not if you're tech savvy...

(NEWSER) - If you're sitting at a computer reading this story, chances are you've received an email—or two or three—from the likes of Citibank or Best Buy or Walgreens apologizing for the Epsilon email breach . But just how worried or angry should you actually be about the incident? Perhaps not very, at least if you're a savvy tech user. Since the attackers only have your name and email address, the "most worrisome" possibility is a targeted phishing attack, an expert tells Fast Company . More»

Kroger, TiVo, Citi, Capitol One are among those affected

(NEWSER) - Look out for email scams—ones that appear to come from a legitimate business, not a Nigerian lawyer—in the near future. That's because the nation's biggest email marketer has been hacked, reports Security Week . The breach at Epsilon means that the names and email addresses of customers at its client companies have been exposed. The only bit of good news is that nothing more serious than email addresses appear to have been compromised. More»

Simple precautions can keep info out of scammers' hands

(NEWSER) - Phishing scams are becoming a lot more sophisticated. Unwary Internet users can easily end up with their bank account and credit card details in the hands of crooks. CNET lists the best ways to avoid becoming a victim:

• Change passwords regularly. Experts recommend that passwords be changed every three months or so, and warn against using the same password for multiple sites.
• Click with caution. Any apparently legitimate email asking you to click a link to another site—especially if it mentions updating security information—could be from a rogue site. It's safer just to type in the URL yourself.

Phishing scheme scores password information

(NEWSER) - Hackers went Facebook-phishing yesterday, nabbing the passwords of an undisclosed number of users, Reuters reports. Facebook is working to restore the site and has blocked accounts hit in what it believes was a ploy to spread future spam. Hackers broke into accounts, sending users’ friends emails that contained links to fake sites resembling the Facebook homepage; these sites asked visitors to log in, thereby giving up their passwords. More»