Weekly Top 3 - ED #15.2015

By Jon Phish, Fri 10 April 2015, in category News

bitcoin, game, medical, PCDA, weekly

The Weekly Top 3 are the three most relevant news stories for the week that are related to phishing scams reported in the media, security blogs and security magazines on the internet. This week, we look at phishing scams related to Steam, PCDA and Coinbase.

Fake Steam Pages Hide Malware

Steam Greenlight is a community developed by Valve to give indie developers a platform for promoting their games on Steam. Earlier this week, one indie developer was surprised to find that there was a copy of their Steam page in the 'Concepts' section. Unfortunately, the page provided a malicious link that would direct the user to a download site containing malware. There has been other reports of fake Steam pages as well. Valve has removed these fake pages and are taking steps to deal with anyone involved with this phishing campaign. Click the link below to read more.

http://steamed.kotaku.com/warning-scammers-are-hiding-malware-behind-fake-steam-1696247784

PCDA Website Hacked, Veterans Threatened

The Principal Controller of Defense Accounts (PCDA) website had been hacked last month. The organization believes that the personal information and login credentials of US Army officers were compromised. The personal information included officer's name, badge numbers, bank account numbers, date of birth and commission date. Furthermore, the organization advised that it is highly likely that phishing campaigns will directed at these officers because of the breach. Click the link below to read more.

http://www.igovernment.in/news/1002941/pcda-website-hacked

SendGrid Email Breach Used to Attack Coinbase Customers

SendGrid is a mass e-mail service used by companies for the purpose of alerting customers to company updates and their account updates. Earlier this week, SendGrid confirmed that one of their Bitcoin clients was compromised. Coinbase later confirmed that their account with SendMail was hacked. As a result, hackers were using this e-mail service to craft phishing e-mails with malicious links for the purpose of stealing Bitcoin users' login credentials. Accessing these accounts allows hackers to potentially steal millions of dollars worth of bitcoins. Click the link below to read more.

http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/?_r=0