Category: Security Spotlight
Spotit SOC Fraud Investigation – officeboxonline.com
Spotit SOC receives reports of suspected fraudulent invoices from customers every day. These attempts to conduct fraud are usually made by delivery of e-mail. SOC activities are accelerated by automated threat intelligence analysis, i.e. e-mail domains and senders, and any URL’s are checked for known malicious or suspicious activities.
An invoice was delivered by mail to the Spotit BV office in Merelbeke, Belgium. This invoice was immediately flagged as potentially fraudulent by the Spotit Finance Department as no such vendor is known to the company.
Clipping the Canary’s wings: Bypassing AiTM Phishing Detections
TL;DR Introduction CSS Based Canary/Honey Tokens Bypass methods 1. The regex way 2. Proxying the...
Read MoreGraphSpy – The Swiss Army Knife for Attacking M365 & Entra
Introduction Device Code Phishing Recap – The king of all Phishing Tactics? Why GraphSpy?...
Read MoreFlaw in Evilginx allows instant detection by scanners despite blacklisting
Introduction Earlier this week, Spotit’s detection engineering team reached out to our red...
Read MoreIn technology we trust. Building Security With Confidence.
Technology is technology is technology. But is it really? One of the reasons why I fell in love...
Read MorePhishing leverages encrypted RPMSG to steal MS credentials
Recently, one of our customers reported an email that struck them as being fishy. The email came...
Read MoreFunerable Friday – 9th of February 2024
As we race towards the weekend we are being hit by several hard-hitting security bulletins being...
Read MoreDevice Code Phishing
Spotit Red Team At Spotit we run red team engagements for customers and internally on the company....
Read MoreAI chat bots – revolutionary or illegal?
You have most likely heard, seen, or even tried an Artificial Intelligence chatbot in these past...
Read More