#social-engineering — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #social-engineering, aggregated by home.social.
-
DATE: May 14, 2026 at 05:27PM
SOURCE: HEALTHCARE INFO SECURITYDirect article link at end of text block below.
What's Next for the Proposed #HIPAASecurityRule Overhaul? Will @HHSGov Make its Planned May Deadline, and What Changes Will Make the Cut?https://t.co/JDZueelsOH
Here are any URLs found in the article text:
Articles can be found by scrolling down the page at https://www.healthcareinfosecurity.com/ under the title "Latest"
-------------------------------------------------
Private, vetted email list for mental health professionals: https://www.clinicians-exchange.org
Healthcare security & privacy posts not related to IT or infosec are at @HIPAABot . Even so, they mix in some infosec with the legal & regulatory information.
-------------------------------------------------
#security #healthcare #doctors #itsecurity #hacking #doxxing #psychotherapy #securitynews #psychotherapist #mentalhealth #psychiatry #hospital #socialwork #datasecurity #webbeacons #cookies #HIPAA #privacy #datanalytics #healthcaresecurity #healthitsecurity #patientrecords @infosec #telehealth #netneutrality #socialengineering
-
DATE: May 14, 2026 at 05:25PM
SOURCE: HEALTHCARE INFO SECURITYDirect article link at end of text block below.
What's Next for the Proposed HIPAA Security Rule Overhaul? https://t.co/JDZueelsOH
Here are any URLs found in the article text:
Articles can be found by scrolling down the page at https://www.healthcareinfosecurity.com/ under the title "Latest"
-------------------------------------------------
Private, vetted email list for mental health professionals: https://www.clinicians-exchange.org
Healthcare security & privacy posts not related to IT or infosec are at @HIPAABot . Even so, they mix in some infosec with the legal & regulatory information.
-------------------------------------------------
#security #healthcare #doctors #itsecurity #hacking #doxxing #psychotherapy #securitynews #psychotherapist #mentalhealth #psychiatry #hospital #socialwork #datasecurity #webbeacons #cookies #HIPAA #privacy #datanalytics #healthcaresecurity #healthitsecurity #patientrecords @infosec #telehealth #netneutrality #socialengineering
-
DATE: May 14, 2026 at 09:32AM
SOURCE: HEALTHCARE INFO SECURITYDirect article link at end of text block below.
#Utah Moves Ahead With #AI-Powered Rx Refills Despite Pushback: State Says its Addressing Patient Safety, Other Concerns Raised by Medical Board https://t.co/JeLrgNSuV8
Here are any URLs found in the article text:
Articles can be found by scrolling down the page at https://www.healthcareinfosecurity.com/ under the title "Latest"
-------------------------------------------------
Private, vetted email list for mental health professionals: https://www.clinicians-exchange.org
Healthcare security & privacy posts not related to IT or infosec are at @HIPAABot . Even so, they mix in some infosec with the legal & regulatory information.
-------------------------------------------------
#security #healthcare #doctors #itsecurity #hacking #doxxing #psychotherapy #securitynews #psychotherapist #mentalhealth #psychiatry #hospital #socialwork #datasecurity #webbeacons #cookies #HIPAA #privacy #datanalytics #healthcaresecurity #healthitsecurity #patientrecords @infosec #telehealth #netneutrality #socialengineering
-
Erst Signal, jetzt Teams.
"Cybercriminals have increasingly adopted Microsoft Teams in attacks, reaching out to company employees and pretending to be IT and help-desk staff.
The victims are convinced to run a malicious PowerShell command on their systems, which deploys the “ModeloRAT” malware." -
ClickFix Evolves with PySoxy Proxying
A sophisticated ClickFix campaign was observed in April 2026 deploying PySoxy, a decade-old open-source Python SOCKS5 proxy tool, to establish encrypted proxy access on compromised hosts. The attack chain begins with social engineering that tricks users into executing obfuscated PowerShell commands, which then establishes scheduled task persistence and deploys an in-memory PowerShell-based command-and-control agent. Following domain reconnaissance activities, attackers deploy PySoxy to create a redundant encrypted access channel. The persistence mechanism continues attempting re-execution even after initial connections are blocked, demonstrating how single ClickFix executions can evolve into modular post-exploitation chains. This development represents a significant evolution from simple one-time execution to durable access with multiple redundant pathways, requiring comprehensive remediation beyond blocking initial callbacks.
Pulse ID: 6a04a9a171b2ad5ef57d9993
Pulse Link: https://otx.alienvault.com/pulse/6a04a9a171b2ad5ef57d9993
Pulse Author: AlienVault
Created: 2026-05-13 16:41:05Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#CyberSecurity #InfoSec #OTX #OpenThreatExchange #PowerShell #Proxy #Python #RAT #RCE #SocialEngineering #bot #socks5 #AlienVault
-
DATE: May 13, 2026 at 04:00PM
SOURCE: HEALTHCARE INFO SECURITYDirect article link at end of text block below.
@AstraZeneca Turns to #AI Agent to Cut #DrugDiscovery Time, Glean Competitive Intelligence https://t.co/pHIDPSzUCY
Here are any URLs found in the article text:
Articles can be found by scrolling down the page at https://www.healthcareinfosecurity.com/ under the title "Latest"
-------------------------------------------------
Private, vetted email list for mental health professionals: https://www.clinicians-exchange.org
Healthcare security & privacy posts not related to IT or infosec are at @HIPAABot . Even so, they mix in some infosec with the legal & regulatory information.
-------------------------------------------------
#security #healthcare #doctors #itsecurity #hacking #doxxing #psychotherapy #securitynews #psychotherapist #mentalhealth #psychiatry #hospital #socialwork #datasecurity #webbeacons #cookies #HIPAA #privacy #datanalytics #healthcaresecurity #healthitsecurity #patientrecords @infosec #telehealth #netneutrality #socialengineering
-
„Wir müssen nur kurz Ihre Rauchmelder prüfen“ – und schon stehen Betrüger in der Wohnung. Kriminelle nutzen aktuell die anstehenden Austauschfristen für Rauchmelder, um sich Zugang zu Wohnungen zu verschaffen. Die Masche: angebliche Pflichtprüfungen, Wartungstermine oder gesetzlich vorgeschriebene Austauschaktionen. Denn tatsächlich müssen viele Rauchmelder nach 10 Jahren ersetzt werden, 2026 betrifft das Millionen Haushalte. #SocialEngineering #Awareness #Betrug #Cybercrime #Rauchmelderpflicht
-
DATE: May 12, 2026 at 06:09PM
SOURCE: HEALTHCARE INFO SECURITYDirect article link at end of text block below.
Why #CyberInsurance Faces New #AI Liability Risks https://t.co/m7Ij6hKFOz
Here are any URLs found in the article text:
Articles can be found by scrolling down the page at https://www.healthcareinfosecurity.com/ under the title "Latest"
-------------------------------------------------
Private, vetted email list for mental health professionals: https://www.clinicians-exchange.org
Healthcare security & privacy posts not related to IT or infosec are at @HIPAABot . Even so, they mix in some infosec with the legal & regulatory information.
-------------------------------------------------
#security #healthcare #doctors #itsecurity #hacking #doxxing #psychotherapy #securitynews #psychotherapist #mentalhealth #psychiatry #hospital #socialwork #datasecurity #webbeacons #cookies #HIPAA #privacy #datanalytics #healthcaresecurity #healthitsecurity #patientrecords @infosec #telehealth #netneutrality #socialengineering
-
DATE: May 12, 2026 at 08:21AM
SOURCE: HEALTHCARE INFO SECURITYDirect article link at end of text block below.
How can #hospitals improve their cyber resilience? https://t.co/9McJbetGnp
Here are any URLs found in the article text:
Articles can be found by scrolling down the page at https://www.healthcareinfosecurity.com/ under the title "Latest"
-------------------------------------------------
Private, vetted email list for mental health professionals: https://www.clinicians-exchange.org
Healthcare security & privacy posts not related to IT or infosec are at @HIPAABot . Even so, they mix in some infosec with the legal & regulatory information.
-------------------------------------------------
#security #healthcare #doctors #itsecurity #hacking #doxxing #psychotherapy #securitynews #psychotherapist #mentalhealth #psychiatry #hospital #socialwork #datasecurity #webbeacons #cookies #HIPAA #privacy #datanalytics #healthcaresecurity #healthitsecurity #patientrecords @infosec #telehealth #netneutrality #socialengineering
-
DATE: May 11, 2026 at 05:20PM
SOURCE: HEALTHCARE INFO SECURITYDirect article link at end of text block below.
Why #Hospitals Must Rethink Cyber #Resilience:
John Riggi of the @AHAhospitals and Josh Howell of @RubrikInc on Improving Attack Recovery https://t.co/TtgBfUUJVI #AHA #AmericanHospitalAssociation #ransomware #backupHere are any URLs found in the article text:
Articles can be found by scrolling down the page at https://www.healthcareinfosecurity.com/ under the title "Latest"
-------------------------------------------------
Private, vetted email list for mental health professionals: https://www.clinicians-exchange.org
Healthcare security & privacy posts not related to IT or infosec are at @HIPAABot . Even so, they mix in some infosec with the legal & regulatory information.
-------------------------------------------------
#security #healthcare #doctors #itsecurity #hacking #doxxing #psychotherapy #securitynews #psychotherapist #mentalhealth #psychiatry #hospital #socialwork #datasecurity #webbeacons #cookies #HIPAA #privacy #datanalytics #healthcaresecurity #healthitsecurity #patientrecords @infosec #telehealth #netneutrality #socialengineering
-
DATE: May 11, 2026 at 03:53PM
SOURCE: HEALTHCARE INFO SECURITYDirect article link at end of text block below.
@ISMGCorp Editors: The Battle Over Access to Frontier #AI Models: Also: Washington's AI Policy Divide, @US_FDA 's Push for AI-Driven Clinical Trials https://t.co/ALtXtxCGRR
Here are any URLs found in the article text:
Articles can be found by scrolling down the page at https://www.healthcareinfosecurity.com/ under the title "Latest"
-------------------------------------------------
Private, vetted email list for mental health professionals: https://www.clinicians-exchange.org
Healthcare security & privacy posts not related to IT or infosec are at @HIPAABot . Even so, they mix in some infosec with the legal & regulatory information.
-------------------------------------------------
#security #healthcare #doctors #itsecurity #hacking #doxxing #psychotherapy #securitynews #psychotherapist #mentalhealth #psychiatry #hospital #socialwork #datasecurity #webbeacons #cookies #HIPAA #privacy #datanalytics #healthcaresecurity #healthitsecurity #patientrecords @infosec #telehealth #netneutrality #socialengineering
-
Poisoning the well: AI supply chain attacks on Hugging Face and OpenClaw
Threat actors are actively exploiting AI distribution platforms like Hugging Face and ClawHub to deliver malware by embedding malicious code within models, datasets, and agent extensions. Over 575 malicious skills across 13 developer accounts were identified in the OpenClaw ecosystem, targeting Windows and macOS with trojans, cryptominers, and AMOS stealer. Attackers abuse trust relationships between users and AI platforms through indirect prompt injection, where hidden instructions cause AI agents to execute malicious actions on behalf of users. Trojanized skills masquerade as legitimate tools while instructing users to execute encoded commands or install hidden malicious dependencies. On Hugging Face, repositories host payloads within multistep infection chains disguised as legitimate applications. These campaigns employ social engineering, obfuscation, encryption, in-memory execution, process injection, and persistence techniques to evade detection while establishing covert command-and-control communica...
Pulse ID: 6a01c2363e7f67fcbed473cb
Pulse Link: https://otx.alienvault.com/pulse/6a01c2363e7f67fcbed473cb
Pulse Author: AlienVault
Created: 2026-05-11 11:49:10Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#AMOS #CryptoMiner #CyberSecurity #Encryption #HuggingFace #InfoSec #Mac #MacOS #Malware #OTX #OpenThreatExchange #Rust #SocialEngineering #SupplyChain #Trojan #Windows #bot #AlienVault
-
Your phishing program has great metrics. Your employees are still clicking.
At BSides312, Mr. Sprawl is sharing a proven blueprint for phishing programs that actually change behavior. One startup went from a 40% click rate to under 10% in a year. No magic tool. Just a better approach.
Professional phisher. Social engineering enthusiast.
May 16th. Chicago.
🎟️ https://bsides312.org
#BSides312 #InfoSec #CyberSecurity #Phishing #SocialEngineering #SecurityAwareness #Chicago -
DATE: May 11, 2026 at 09:08AM
SOURCE: HEALTHCARE INFO SECURITYDirect article link at end of text block below.
Which US state is the latest to grill @Conduent about the company's 2024 #hacking incident that affected more than 25 million people? https://t.co/9AH00Mg53o
Here are any URLs found in the article text:
Articles can be found by scrolling down the page at https://www.healthcareinfosecurity.com/ under the title "Latest"
-------------------------------------------------
Private, vetted email list for mental health professionals: https://www.clinicians-exchange.org
Healthcare security & privacy posts not related to IT or infosec are at @HIPAABot . Even so, they mix in some infosec with the legal & regulatory information.
-------------------------------------------------
#security #healthcare #doctors #itsecurity #hacking #doxxing #psychotherapy #securitynews #psychotherapist #mentalhealth #psychiatry #hospital #socialwork #datasecurity #webbeacons #cookies #HIPAA #privacy #datanalytics #healthcaresecurity #healthitsecurity #patientrecords @infosec #telehealth #netneutrality #socialengineering
-
OPERATION SILENTCANVAS: JPEG BASED MULTISTAGE POWERSHELL INTRUSION
A sophisticated multi-stage intrusion campaign was identified leveraging a weaponized PowerShell payload disguised as a JPEG image file (sysupdate.jpeg) to deploy a trojanized ConnectWise ScreenConnect instance for covert remote access. The attack likely originates through social engineering techniques including phishing emails or malicious attachments. Upon execution, the malware establishes a staging environment, retrieves additional payloads from attacker-controlled infrastructure, and dynamically compiles a custom launcher using Microsoft's legitimate .NET compiler (csc.exe) to evade detection. The intrusion abuses ComputerDefaults.exe and a malicious ms-settings registry hijack to perform a fileless UAC bypass and obtain elevated privileges. Once elevated, the malware deploys a persistent service masquerading as OneDriveServers and launches a modified ScreenConnect framework capable of credential interception, remote command execution, surveillance operations, SYSTEM-level execution, encrypted command...
Pulse ID: 6a008382641183db3b20fef5
Pulse Link: https://otx.alienvault.com/pulse/6a008382641183db3b20fef5
Pulse Author: AlienVault
Created: 2026-05-10 13:09:22Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#ConnectWise #CyberSecurity #EDR #Email #InfoSec #Malware #Microsoft #NET #OTX #OpenThreatExchange #Phishing #PowerShell #RAT #RCE #RemoteCommandExecution #ScreenConnect #SocialEngineering #Trojan #Troll #bot #AlienVault
-
🚨 BREAKING NEWS: Techies discover that using Obsidian plugins for social engineering is a bad idea! Who knew? 😂 Meanwhile, finance and crypto pros are accidentally downloading "PHANTOMPULSE" RAT, proving once again that clicking random links is a brilliant security strategy. 👏🔒
https://cyber.netsecops.io/articles/obsidian-plugin-abused-in-campaign-to-deploy-phantom-pulse-rat/ #ObsidianPlugins #SocialEngineering #CyberSecurity #TechFails #CryptoSecurity #HackerNews #ngated -
Had a schizo or I cannot sleep thing this morning.
Decided to look up DEF CON Singapore 2026 Slides.
An OpenAI talk about prompt injection?
Hmm, as I predicted, prompt injections gonna evolve into Social Engineering complexity.
#cybersecurity #ai #infosec #llm #promptinjection #socialengineering
-
#Signal plant Änderungen zum Schutz vor #Phishing | heise online https://www.heise.de/news/Signal-will-per-Warnhinweis-vor-Phishing-warnen-11288331.html @signalapp #Datenschutz #privacy #SocialEngineering
-
Most phishing emails create urgency — your account is locked, a payment failed, something expires tonight. That urgency is the tell.
Legitimate services don't pressure you into clicking links. If the email is pushing you to act fast, slow down. Verify through official channels, not the link in the message.
#InfoSec #Cybersecurity #Phishing #SocialEngineering #SecurityAwareness #ThreatIntel
-
'ClickFix' attack tricks users into hacking themselves, ACSC warns:
"Verify that you are human" prompt used to deliver Vidar Stealer malware.
The Australian Cyber Security Centre (ACSC) has stepped in to warn users of an active attack campaign targeting Windows users with Vidar Stealer malware, which is delivered through the so-called ClickFix social engineering technique.
#clickfix #acsc #malware #vidar #stealing #VidarStealer #australia #socialengineering
-
DATE: May 8, 2026 at 05:06PM
SOURCE: HEALTHCARE INFO SECURITYDirect article link at end of text block below.
#Missouri Alleges #Conduent is Stonewalling State on Hack: State #Insurance Officials Seeking Details About Service Firm's Mega #DataBreach https://t.co/9AH00MfxdQ
Here are any URLs found in the article text:
Articles can be found by scrolling down the page at https://www.healthcareinfosecurity.com/ under the title "Latest"
-------------------------------------------------
Private, vetted email list for mental health professionals: https://www.clinicians-exchange.org
Healthcare security & privacy posts not related to IT or infosec are at @HIPAABot . Even so, they mix in some infosec with the legal & regulatory information.
-------------------------------------------------
#security #healthcare #doctors #itsecurity #hacking #doxxing #psychotherapy #securitynews #psychotherapist #mentalhealth #psychiatry #hospital #socialwork #datasecurity #webbeacons #cookies #HIPAA #privacy #datanalytics #healthcaresecurity #healthitsecurity #patientrecords @infosec #telehealth #netneutrality #socialengineering
-
📬 GothFerrari: Vom Discord-Scam zur Jagd auf Hardware-Wallets
#OnlineBetrug #Rechtssachen #Cybercrime #Discord #DoJ #GothFerrari #HardwareWallets #HomeInvasion #Kryptowährungen #MarlonFerro #socialengineering #WrenchAttacks https://sc.tarnkappe.info/23c98e -
ClickFix campaign uses fake macOS utilities lures to deliver infostealers
Threat actors are leveraging ClickFix-style social engineering tactics to distribute infostealers targeting macOS users through fake system utility lures. Attackers host malicious Terminal commands on blog sites and content platforms, disguised as troubleshooting advice for macOS issues. When executed, these commands download infostealers including Macsync, Shub Stealer, and AMOS, which exfiltrate browser credentials, cryptocurrency wallets, iCloud data, Keychain entries, and media files. The campaign has evolved to use Terminal-based script execution that bypasses Gatekeeper verification. Three distinct campaigns employ different tradecraft, with some replacing legitimate cryptocurrency wallet applications with trojanized versions and establishing persistence through LaunchAgents and LaunchDaemons that masquerade as legitimate services.
Pulse ID: 69fb97e43f09a3b9ae3a39b9
Pulse Link: https://otx.alienvault.com/pulse/69fb97e43f09a3b9ae3a39b9
Pulse Author: AlienVault
Created: 2026-05-06 19:35:00Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#AMOS #Browser #Cloud #CyberSecurity #ICS #InfoSec #InfoStealer #Mac #MacOS #OTX #OpenThreatExchange #RAT #ScriptExecution #SocialEngineering #Trojan #bot #cryptocurrency #AlienVault
